• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to footer
  • Jobs
  • Career
    • Cyber Security Training
    • Work from Home
    • Cyber Security Analyst
    • Remote Work – Six Ways to Keep Your Data Safe When Working Remotely
  • Field Guide
  • Newsletter Signup
  • Deals
  • News
AskCyberSecurity.com

AskCyberSecurity.com

Cyber Security News & Information

  • Home
  • Data Privacy
    • Gamers
    • Government Cyber Security
      • Legislation
      • Standards
        • What are the risks of computer security?
        • Medical Cyber Security
    • Social Media
  • Security
    • Data Breaches
    • Scams
    • Malware
  • Software
    • Apps
    • Web Browsers
  • Glossary
    • Cyber Security Acronyms
  • About Ask Cyber Security
    • Authors
    • Contact Us
  • VPN
    • How Do I Know If My VPN is Working?
    • Best Free VPN iPhone
    • Why Use a VPN?
    • NordVPN vs IPVanish
    • Private Internet Access Download
    • Best VPN for Streaming
      • TikTok VPN
    • VPN Porn
    • Computer Security Software – What You Really Need
  • Tutorials
  • ChatGPT
    • Does ChatGPT Save Data?
AskCyber Home » News » News » Feds Warn of Cyber Ongoing Cyber Threats to Critical Infrastructure System

Feds Warn of Cyber Ongoing Cyber Threats to Critical Infrastructure System

2021-10-14 by Michelle Dvorak

Feds Warn Cyber Threats

Ongoing Threats to U.S. Water, Wastewater Systems, IT, OT Networks Prompt Warning

Four US Federal agencies – the Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Agency (CISA), the Environmental Protection Agency (EPA), and the National Security Agency (NSA) issued a joint advisory warning of ongoing cyber security threats.

Cybercriminals are continuing their attempts to compromise IT system integrity via unauthorized access to water. Targets include information technology (IT), operational technology (OT) networks, and US Water and Wastewater Systems (WWS) Sector facilities.

Cybercriminals use speaphishing to target employees and gain access to IT systems. Once they gain access the hackers then move laterally through the network to compromise OT systems if they are connected.

Due to COVID-19, corporations are increasingly using Remote Desktop Protocol (RDP) to allow employees to connect to work networks. Hackers attempt to exploit vulnerabilities in RDP applications and infect an IT system with ransomware.

“If the RDP is used for process control equipment, the attacker could also compromise WWS operations,” says the advisory.

WWS organizations tend to prioritize equipment over IT systems when it comes to allocating budget. Cybercriminals know this and target their operations.

Like any organization, security threats could also come from former employees who still have access to IT systems.

FBI, CISA, EPA, and NSA recommend WWS facilities use a risk-informed analysis

The advisory lists five major attacks on WWS facilities in since 2019. In one incident ransomware infected a California WWS facility. Three supervisory control and data acquisition (SCADA) servers were compromised with ransomware.

“To secure WWS facilities—including Department of Defense (DoD) water treatment facilities in the United States and abroad—against the TTPs listed below, CISA, FBI, EPA, and NSA strongly urge organizations to implement the measures described in the Recommended Mitigations section of this advisory,” says the joint advisory. 

WWS Monitoring Personnel should check for the following suspicious activities

  • Legitimate WWS personnel are locked out of systems
  • Data windows or system alerts appearing on SCADA system controls
  • Detection of abnormal operating parameters
  • Access of SCADA systems by unauthorized users
  • Indicators that SCADA systems user credentials are compromised
  • Unexplained SCADA system restarts
  • Unchanging parameter values that normally fluctuate.

 

 

 

Filed Under: News

About Michelle Dvorak

Michelle writes about cyber security, data privacy focusing on social media privacy as well as how to protect your IoT devices. She has worked in internet technology for over 20 years and owns METRONY, LLC. Michelle earned a B.S. in Engineering from Rensselaer Polytechnic Institute. Michelle published a guide to Cyber Security for Business Travelers


LinkedInTwitterFacebook

Primary Sidebar

Subscribe to Our Free Newsletter

We Don't Share or Sell Your Info

Web Browsers

Where Are My Saved Passwords in Chrome?

Google Removes 70 Malicious Browser Add-ons from Chrome Web Store

Firefox 75 Reports Your Browser Settings to Mozilla

Categories

Cyber Security Field Guide

Computer Security While TravelingGet Our Cyber Security Field Guide - Available on Amazon!

Recent Posts

Security Marketing Manager – Remote

Sr. Associate, Cybersecurity Architect – Pfizer

Strategic Customer Success Manager – Cybersecurity – Opportunity for Working Remotely

Top 20 Passwords Leaked on Dark Web

ISU Cybersecurity Leader Job Opening

Cyber Security News

Top 20 Passwords Leaked on Dark Web

… [Read More...] about Top 20 Passwords Leaked on Dark Web

Apple Warns of Actively Exploited Zero-Day Flaw

… [Read More...] about Apple Warns of Actively Exploited Zero-Day Flaw

IRS Stops Facial Recognition System for Online Access

… [Read More...] about IRS Stops Facial Recognition System for Online Access

National Cybersecurity Alliance Announces Data Privacy Week

… [Read More...] about National Cybersecurity Alliance Announces Data Privacy Week

More Cyber Security News

Tags

amazon Android Apple bitcoin China chrome CISA credit card DarkSide DHS DOJ Equifax Europe Facebook facial recognition FBI Firefox FTC games GDPR Google Government hacker identity theft India iPhone Iran IRS LinkedIn Microsoft North Korea PayPal phishing phishing email ransomware REvil Russia smartphone T-Mobile TikTok tutorial VPN WhatsApp WiFi Windows

Government

CBP Looks to Access Airline Passenger Data

FTC Releases Cyber Threat Video Playlist

Malware Found on US Government Funded Phones

UK NCA Reaches Out to Youth to Deter Cybercrimes

More Posts from this Category

Footer

Menu

  • Home
  • About
  • Authors
  • Newsletter Signup
  • PRIVACY POLICY

Search

Why Use a VPN?

NordVPN vs IPVanish VPN Review

NAVIGATION

  • Data Breaches
  • Data Privacy
  • Gamers
  • Scams
  • Malware

MEMBER NJCCIC

New Jersey Cybersecurity & Communications Integration Cell

STAY CONNECTED

  • Facebook
  • Instagram
  • Pinterest
  • YouTube
  • Twitter
  • RSS

Copyright © 2023 · AskCyberSecurity.com · METRONY, LLC

Go to mobile version