Bill<p>Geez, TWENTY-TWO ICS advisories from CISA today? Is that as awful as it sounds?</p><p><a href="https://www.cisa.gov/news-events/alerts/2025/05/15/cisa-releases-twenty-two-industrial-control-systems-advisories" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">cisa.gov/news-events/alerts/20</span><span class="invisible">25/05/15/cisa-releases-twenty-two-industrial-control-systems-advisories</span></a></p><p><a href="https://infosec.exchange/tags/ics" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ics</span></a> <a href="https://infosec.exchange/tags/cisa" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cisa</span></a></p>
101010.pl is one of the many independent Mastodon servers you can use to participate in the fediverse.
101010.pl czyli najstarszy polski serwer Mastodon. Posiadamy wpisy do 2048 znaków.
Administered by:
Server stats:
505active users
101010.pl: About · Status · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.4.0-alpha.5
#ics
1 post · 1 participant · 0 posts today
Pen Test Partners<p>We found unauthenticated remote code execution on an industrial PLC without ever touching the hardware.<br> <br>By unpacking publicly available firmware for the KUNBUS Revolution Pi, our Adam Bromiley discovered four vulnerabilities. Two of them allowed RCE with no authentication required.<br> <br>We dug into a misconfigured Node-RED instance, bypassed authentication in PiCtory, and chained bugs together to gain full control. This could affect safety-critical systems in the real world.<br> <br>The upside? Disclosure was handled properly. KUNBUS and CISA coordinated the response well, and advisories and fixes for all four CVEs are now live.<br> <br>📌Get the full breakdown and links to the advisories here: <a href="https://www.pentestpartners.com/security-blog/rces-and-more-in-the-kunbus-gmbh-revolution-pi-plc/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">pentestpartners.com/security-b</span><span class="invisible">log/rces-and-more-in-the-kunbus-gmbh-revolution-pi-plc/</span></a></p><p> <a href="https://infosec.exchange/tags/ICS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ICS</span></a> <a href="https://infosec.exchange/tags/PLC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PLC</span></a> <a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a> <a href="https://infosec.exchange/tags/RCE" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RCE</span></a> <a href="https://infosec.exchange/tags/OTSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OTSecurity</span></a></p>
Bytes Europe<p>Forescout reports rise of state-sponsored hacktivism, as geopolitics rewrites cyber threat landscape <a href="https://www.byteseu.com/969179/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="">byteseu.com/969179/</span><span class="invisible"></span></a> <a href="https://pubeurope.com/tags/Blackjack" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Blackjack</span></a> <a href="https://pubeurope.com/tags/ControlSystems" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ControlSystems</span></a> <a href="https://pubeurope.com/tags/CriticalInfrastructure" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CriticalInfrastructure</span></a> <a href="https://pubeurope.com/tags/DDoS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DDoS</span></a> <a href="https://pubeurope.com/tags/Energy" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Energy</span></a> <a href="https://pubeurope.com/tags/FinancialServices" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FinancialServices</span></a> <a href="https://pubeurope.com/tags/ForescoutTechnologies" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ForescoutTechnologies</span></a> <a href="https://pubeurope.com/tags/Geopolitics" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Geopolitics</span></a> <a href="https://pubeurope.com/tags/Government" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Government</span></a> <a href="https://pubeurope.com/tags/HandalaGroup" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>HandalaGroup</span></a> <a href="https://pubeurope.com/tags/ics" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ics</span></a> <a href="https://pubeurope.com/tags/IndianCyberForce" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IndianCyberForce</span></a> <a href="https://pubeurope.com/tags/IndustrialControl" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IndustrialControl</span></a> <a href="https://pubeurope.com/tags/logistics" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>logistics</span></a> <a href="https://pubeurope.com/tags/Manufacturing" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Manufacturing</span></a> <a href="https://pubeurope.com/tags/MilitarySystems" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MilitarySystems</span></a> <a href="https://pubeurope.com/tags/NoName057" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NoName057</span></a>(16) <a href="https://pubeurope.com/tags/OT" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OT</span></a> <a href="https://pubeurope.com/tags/telecommunications" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>telecommunications</span></a> <a href="https://pubeurope.com/tags/Transportation" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Transportation</span></a></p>
OTX Bot<p>The Return of Pharmacy-Themed Spam</p><p>Pharmaceutical-themed spam campaigns continue to target individuals and organizations, particularly in the healthcare and pharmaceutical sectors. Recent observations reveal a bulk spam campaign using spoofed identities and compromised infrastructure to send deceptive emails. The attackers employ tactics such as domain spoofing, DKIM signature manipulation, and the use of compromised servers running malicious PHP scripts. The emails contain links that redirect users to fraudulent websites posing as legitimate Canadian pharmacies, often including a fake security verification step. These campaigns aim to trick recipients into revealing sensitive information or potentially installing malware. The persistence of pharmacy-themed spam highlights the need for continued vigilance and awareness of common scam tactics.</p><p>Pulse ID: 680cb26edefa55cafa886d51<br>Pulse Link: <a href="https://otx.alienvault.com/pulse/680cb26edefa55cafa886d51" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">otx.alienvault.com/pulse/680cb</span><span class="invisible">26edefa55cafa886d51</span></a> <br>Pulse Author: AlienVault<br>Created: 2025-04-26 10:16:14</p><p>Be advised, this data is unverified and should be considered preliminary. Always do further verification.</p><p><a href="https://social.raytec.co/tags/Canadian" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Canadian</span></a> <a href="https://social.raytec.co/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a> <a href="https://social.raytec.co/tags/Email" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Email</span></a> <a href="https://social.raytec.co/tags/Healthcare" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Healthcare</span></a> <a href="https://social.raytec.co/tags/ICS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ICS</span></a> <a href="https://social.raytec.co/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a> <a href="https://social.raytec.co/tags/Mac" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Mac</span></a> <a href="https://social.raytec.co/tags/Malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Malware</span></a> <a href="https://social.raytec.co/tags/OTX" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OTX</span></a> <a href="https://social.raytec.co/tags/OpenThreatExchange" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenThreatExchange</span></a> <a href="https://social.raytec.co/tags/PHP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PHP</span></a> <a href="https://social.raytec.co/tags/Pharmacy" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Pharmacy</span></a> <a href="https://social.raytec.co/tags/Spam" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Spam</span></a> <a href="https://social.raytec.co/tags/bot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>bot</span></a> <a href="https://social.raytec.co/tags/AlienVault" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AlienVault</span></a></p>
Bytes Europe<p>Integrating AI and ML technologies across OT, ICS environments to enhance anomaly detection and operational resilience <a href="https://www.byteseu.com/938379/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="">byteseu.com/938379/</span><span class="invisible"></span></a> <a href="https://pubeurope.com/tags/AI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AI</span></a> <a href="https://pubeurope.com/tags/AnomalyDetection" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AnomalyDetection</span></a> <a href="https://pubeurope.com/tags/Armis" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Armis</span></a> <a href="https://pubeurope.com/tags/ArtificialIntelligence" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ArtificialIntelligence</span></a> <a href="https://pubeurope.com/tags/ControlSystem" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ControlSystem</span></a> <a href="https://pubeurope.com/tags/Darktrace" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Darktrace</span></a> <a href="https://pubeurope.com/tags/GenerativeAI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GenerativeAI</span></a> <a href="https://pubeurope.com/tags/ics" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ics</span></a> <a href="https://pubeurope.com/tags/industrial" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>industrial</span></a> <a href="https://pubeurope.com/tags/IndustrialControl" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IndustrialControl</span></a> <a href="https://pubeurope.com/tags/ML" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ML</span></a> <a href="https://pubeurope.com/tags/Nvidia" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Nvidia</span></a> <a href="https://pubeurope.com/tags/OperationalResilience" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OperationalResilience</span></a> <a href="https://pubeurope.com/tags/OT" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OT</span></a> <a href="https://pubeurope.com/tags/ThreatIntelligence" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ThreatIntelligence</span></a> <a href="https://pubeurope.com/tags/ThreatGEN" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ThreatGEN</span></a></p>
AntoineÐ<p><span>Pour une semaine d’événement, un agenda sur NextCloud a été créé et c’est super.<br><br>Par contre pour en faire une version imprimée c’est moche et peu lisible…<br><br>Est‑ce que vous connaissez des outils qui convertissent des .ics en un visuel lisible et beau ?<br><br></span><a href="https://kwak.cab/tags/agenda" rel="nofollow noopener" target="_blank">#agenda</a><span> </span><a href="https://kwak.cab/tags/calendrier" rel="nofollow noopener" target="_blank">#calendrier</a><span> </span><a href="https://kwak.cab/tags/ics" rel="nofollow noopener" target="_blank">#ics</a></p>
🦅 🪿RKeller Photography🏳️🌈<p>Light tunneling and squiggles.</p><p><a href="https://toot.community/tags/PhotoHour" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PhotoHour</span></a> <a href="https://toot.community/tags/abstract" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>abstract</span></a> <a href="https://toot.community/tags/AbstractPhotography" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AbstractPhotography</span></a> <a href="https://toot.community/tags/improvisation" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>improvisation</span></a> <a href="https://toot.community/tags/night" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>night</span></a> <a href="https://toot.community/tags/nightphotography" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>nightphotography</span></a> <a href="https://toot.community/tags/street" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>street</span></a> <a href="https://toot.community/tags/interstate" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>interstate</span></a> <a href="https://toot.community/tags/I80" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>I80</span></a> <a href="https://toot.community/tags/icm" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>icm</span></a> <a href="https://toot.community/tags/ics" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ics</span></a> <a href="https://toot.community/tags/photography" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>photography</span></a> <a href="https://toot.community/tags/AltText" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AltText</span></a></p>
🦅 🪿RKeller Photography🏳️🌈<p>Sprites & sinusoidal waves.</p><p>Walking near I-80 last night so decided to head up to a nearby walking bridge that crosses it. Haven't done one of these in a few yrs. Don't have a cityscape as a backdrop to my traffic pics so I "liven" them up.</p><p><a href="https://toot.community/tags/StormHour" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>StormHour</span></a> <a href="https://toot.community/tags/ics" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ics</span></a> <a href="https://toot.community/tags/abstract" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>abstract</span></a> <a href="https://toot.community/tags/AbstractPhotography" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AbstractPhotography</span></a> <a href="https://toot.community/tags/photography" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>photography</span></a> <a href="https://toot.community/tags/AltText" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AltText</span></a></p>
sekurak News<p>Rośnie liczba ataków na przemysłowe systemy sterowania (ICS/OT) – komunikat Ministra Cyfryzacji</p><p>Krzysztof Gawkowski, Minister Cyfryzacji (a jednocześnie Pełnomocnik Rządu ds. Cyberbezpieczeństwa), wydał komunikat w sprawie zwiększonej liczby ataków na przemysłowe systemy sterowania (ICS/OT) dostępne bezpośrednio z Internetu. Odnotowano zdarzenia, w których atak miał realny wpływ na działanie fizycznych systemów, a jego konsekwencje były odczuwalne dla użytkowników końcowych dostarczanej usługi. Jako główne...</p><p><a href="https://mastodon.com.pl/tags/WBiegu" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>WBiegu</span></a> <a href="https://mastodon.com.pl/tags/Awareness" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Awareness</span></a> <a href="https://mastodon.com.pl/tags/Cyberawareness" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cyberawareness</span></a> <a href="https://mastodon.com.pl/tags/Cyberbezpiecze%C5%84stwo" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cyberbezpieczeństwo</span></a> <a href="https://mastodon.com.pl/tags/Ics" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ics</span></a> <a href="https://mastodon.com.pl/tags/Ot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ot</span></a></p><p><a href="https://sekurak.pl/rosnie-liczba-atakow-na-przemyslowe-systemy-sterowania-ics-ot-komunikat-ministra-cyfryzacji/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">sekurak.pl/rosnie-liczba-atako</span><span class="invisible">w-na-przemyslowe-systemy-sterowania-ics-ot-komunikat-ministra-cyfryzacji/</span></a></p>
OTX Bot<p>Targeting of freelance developers</p><p>North Korea-aligned cybercriminals are targeting freelance software developers through fake job offers and coding challenges containing malware. The campaign, dubbed DeceptiveDevelopment, uses two main malware families - BeaverTail and InvisibleFerret - to steal cryptocurrency wallets and login credentials. Attackers pose as recruiters on platforms like LinkedIn and GitHub, providing trojanized projects as part of fake interview processes. The malware steals browser data, cryptocurrency wallets, and system information, and can deploy remote access tools. Hundreds of victims globally have been observed across Windows, Linux and macOS systems. The operation shows increasing sophistication and is expected to continue evolving its tactics to target cryptocurrency users.</p><p>Pulse ID: 67b81609424eb59f7dd64a0b<br>Pulse Link: <a href="https://otx.alienvault.com/pulse/67b81609424eb59f7dd64a0b" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">otx.alienvault.com/pulse/67b81</span><span class="invisible">609424eb59f7dd64a0b</span></a> <br>Pulse Author: AlienVault<br>Created: 2025-02-21 05:58:33</p><p>Be advised, this data is unverified and should be considered preliminary. Always do further verification.</p><p><a href="https://social.raytec.co/tags/Browser" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Browser</span></a> <a href="https://social.raytec.co/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a> <a href="https://social.raytec.co/tags/GitHub" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GitHub</span></a> <a href="https://social.raytec.co/tags/ICS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ICS</span></a> <a href="https://social.raytec.co/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a> <a href="https://social.raytec.co/tags/Korea" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Korea</span></a> <a href="https://social.raytec.co/tags/LinkedIn" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>LinkedIn</span></a> <a href="https://social.raytec.co/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Linux</span></a> <a href="https://social.raytec.co/tags/Mac" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Mac</span></a> <a href="https://social.raytec.co/tags/MacOS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MacOS</span></a> <a href="https://social.raytec.co/tags/Malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Malware</span></a> <a href="https://social.raytec.co/tags/NorthKorea" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NorthKorea</span></a> <a href="https://social.raytec.co/tags/OTX" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OTX</span></a> <a href="https://social.raytec.co/tags/OpenThreatExchange" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenThreatExchange</span></a> <a href="https://social.raytec.co/tags/RAT" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RAT</span></a> <a href="https://social.raytec.co/tags/Trojan" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Trojan</span></a> <a href="https://social.raytec.co/tags/Windows" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Windows</span></a> <a href="https://social.raytec.co/tags/bot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>bot</span></a> <a href="https://social.raytec.co/tags/cryptocurrency" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cryptocurrency</span></a> <a href="https://social.raytec.co/tags/developers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>developers</span></a> <a href="https://social.raytec.co/tags/AlienVault" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AlienVault</span></a></p>
Kerry Tomlinson<p>It's rap time! This year's <a href="https://mastodon.social/tags/S4x25" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>S4x25</span></a> OT security conf rap riffed on organizer Dale Peterson's keynote re: be an "OT security artist."</p><p>References to his talk, Grammy's Song of the Year "Not Like Us" by<br>Kendrick Lamar w/line "I see dead people" & a Picasso-attributed quote re: wield the rules like a pro, then break them like an artist. </p><p>Read the rap straight up in bold & yellow highlight and/or read the reference notes below each line.</p><p><a href="https://mastodon.social/tags/OTSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OTSecurity</span></a> <a href="https://mastodon.social/tags/OTCybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OTCybersecurity</span></a> <a href="https://mastodon.social/tags/ICS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ICS</span></a> <a href="https://mastodon.social/tags/ICSSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ICSSecurity</span></a> <a href="https://mastodon.social/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cybersecurity</span></a></p>
Paul Shread<p>Just what we need, another Russian threat group tampering with critical infrastructure control panels. <br><a href="https://masto.ai/tags/Russia" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Russia</span></a> <a href="https://masto.ai/tags/ThreatIntelligence" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ThreatIntelligence</span></a> <a href="https://masto.ai/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cybersecurity</span></a> <a href="https://masto.ai/tags/CriticalInfrastructure" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CriticalInfrastructure</span></a> <a href="https://masto.ai/tags/OT" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OT</span></a> <a href="https://masto.ai/tags/ICS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ICS</span></a> <a href="https://masto.ai/tags/SCADA" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SCADA</span></a> <a href="https://masto.ai/tags/Hackers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Hackers</span></a> <a href="https://masto.ai/tags/Security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Security</span></a> <a href="https://masto.ai/tags/NationalSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NationalSecurity</span></a> </p><p><a href="https://cyble.com/blog/dark-web-activity-new-hacktivist-group-emerges/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">cyble.com/blog/dark-web-activi</span><span class="invisible">ty-new-hacktivist-group-emerges/</span></a></p>
Pyrzout :vm:<p>Researcher Says ABB Building Control Products Affected by 1,000 Vulnerabilities <a href="https://www.securityweek.com/researcher-says-abb-building-control-products-affected-by-1000-vulnerabilities/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">securityweek.com/researcher-sa</span><span class="invisible">ys-abb-building-control-products-affected-by-1000-vulnerabilities/</span></a> <a href="https://social.skynetcloud.site/tags/building" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>building</span></a> <a href="https://social.skynetcloud.site/tags/ICS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ICS</span></a>/OT <a href="https://social.skynetcloud.site/tags/ICS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ICS</span></a></p>
Weird Socks<p>Last week I mentioned a SCADA mgr position available at Seattle Public Utilities (SPU). </p><p>That listing is now live:</p><p><a href="https://www.governmentjobs.com/careers/seattle/jobs/4752080/scada-operations-technology-manager-mgr-3" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">governmentjobs.com/careers/sea</span><span class="invisible">ttle/jobs/4752080/scada-operations-technology-manager-mgr-3</span></a></p><p>This position leads, manages, organizes, and directs SPU’s SCADA 23 person OT team. They maintain a standalone zero trust network, servers, workstations, and 250 remote sites used to monitor and control the public water and wastewater systems.</p><p><a href="https://social.seattle.wa.us/tags/water" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>water</span></a> <a href="https://social.seattle.wa.us/tags/OT" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OT</span></a> <a href="https://social.seattle.wa.us/tags/ICS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ICS</span></a> <a href="https://social.seattle.wa.us/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>infosec</span></a> </p><p>I am not the hiring mgr. I am just a deeply invested colleague.</p><p>PLEASE BOOST!!</p>
mle✨<p>Our team at <span class="h-card" translate="no"><a href="https://infosec.exchange/@censys" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>censys</span></a></span> has studied Internet exposure of <a href="https://infosec.exchange/tags/ICS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ICS</span></a> for the better part of a year, learning more about the products, protocols, and nuances of this space. </p><p>Today I'm excited to share our third annual ✨State of the Internet Report detailing what we've learned! A few highlights:</p><p>🛜 Most ICS protocols and HMIs we've observed run on 5G/LTE (e.g., Verizon) or SOHO/business-grade ISPs (e.g., Comcast). We initially observed this in the U.S. and in this most recent research found that it's a global phenomenon. This surprised me initially, but industrial devices often need to run in places where a wired connection might not be available. While great for connectivity, use of such networks makes it often impossible to determine who owns or operates a given service, as the host metadata points back to the telco itself. </p><p>💧 Analysis of over 200 C-More human-machine interfaces (HMIs) revealed over a third appear to be related to water and wastewater systems (WWS). WWS has seen increased targeting over the last ~year, and these exposures suggest still more work is needed to adequately protect and defend this sector. </p><p>⛔️ We found nearly 200 hosts globally running HMIs alongside products banned by U.S. NDAA Section 889. While this act applies only to a specific set of operators within the U.S. federal government, it's interesting to note what technologies operators implement alongside potentially critical services.</p><p><a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>infosec</span></a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cybersecurity</span></a> <a href="https://infosec.exchange/tags/OT" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OT</span></a> </p><p>You can find a copy of the report with all the details here! 👇</p><p><a href="https://censys.com/the-2024-state-of-the-internet-report/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">censys.com/the-2024-state-of-t</span><span class="invisible">he-internet-report/</span></a></p>
Lesley Carhart :unverified:<p>Critical infrastructure / <a href="https://infosec.exchange/tags/ICS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ICS</span></a> system owners should be watching these three discrete <span class="h-card" translate="no"><a href="https://infosec.exchange/@BleepingComputer" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>BleepingComputer</span></a></span> stories regarding vulnerable (and popular) perimeter devices: </p><p>- <a href="https://bit.ly/3OlV5I9" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">bit.ly/3OlV5I9</span><span class="invisible"></span></a></p><p>- <a href="https://bit.ly/3AJty0n" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">bit.ly/3AJty0n</span><span class="invisible"></span></a></p><p>- <a href="http://bit.ly/48YvT3X" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">http://</span><span class="">bit.ly/48YvT3X</span><span class="invisible"></span></a></p><p>It’s almost always the perimeter.</p>
Lesley Carhart :unverified:<p>Critical infrastructure / <a href="https://infosec.exchange/tags/ICS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ICS</span></a> system owners should be watching these three @bleepincomputer stories regarding vulnerable (and popular) perimeter devices: </p><p><a href="https://bit.ly/3OlV5I9" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">bit.ly/3OlV5I9</span><span class="invisible"></span></a></p><p><a href="https://bit.ly/3AJty0n" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">bit.ly/3AJty0n</span><span class="invisible"></span></a></p><p><a href="http://bit.ly/48YvT3X" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">http://</span><span class="">bit.ly/48YvT3X</span><span class="invisible"></span></a></p>
deep Entertainment<p>Icarus (my handy <a href="https://mastodon.gamedev.place/tags/ICAL" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ICAL</span></a> processor toolkit) has a merge feature in the new version 2.7.0, which allows the user to merge another (possibly filtered) <a href="https://mastodon.gamedev.place/tags/ICS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ICS</span></a> file into the current input stream and return the merged result.</p><p>I thought it could come handy for some.</p><p>Check it out: <a href="https://github.com/dploeger/icarus" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">github.com/dploeger/icarus</span><span class="invisible"></span></a></p><p><a href="https://mastodon.gamedev.place/tags/calendar" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>calendar</span></a> <a href="https://mastodon.gamedev.place/tags/tools" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>tools</span></a> <a href="https://mastodon.gamedev.place/tags/opensource" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>opensource</span></a></p>
Patrick C Miller :donor:<p>Excited to share insights at <a href="https://infosec.exchange/tags/ISCCPH2024" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ISCCPH2024</span></a> on how <a href="https://infosec.exchange/tags/AI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AI</span></a>, <a href="https://infosec.exchange/tags/ML" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ML</span></a>, and <a href="https://infosec.exchange/tags/LLMs" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>LLMs</span></a> are driving changes in <a href="https://infosec.exchange/tags/OT" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OT</span></a> and <a href="https://infosec.exchange/tags/ICS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ICS</span></a> security. Let’s explore how these technologies are reshaping industrial environments. Ping me for a discount code! <a href="https://insightevents.dk/isc-cph/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">insightevents.dk/isc-cph/</span><span class="invisible"></span></a> </p><p>📅 Nov 12-14<br>📍 Copenhagen, Denmark</p>
Patrick C Miller :donor:<p>Looking forward to speaking at <a href="https://infosec.exchange/tags/ISCCPH2024" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ISCCPH2024</span></a> on how <a href="https://infosec.exchange/tags/AI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AI</span></a>, <a href="https://infosec.exchange/tags/ML" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ML</span></a>, and <a href="https://infosec.exchange/tags/LLMs" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>LLMs</span></a> are shaping <a href="https://infosec.exchange/tags/OT" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OT</span></a> and <a href="https://infosec.exchange/tags/ICS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ICS</span></a> security. Join me to explore these emerging technologies and their impact on industrial environments. DM me for a discount code!<br><a href="https://insightevents.dk/isc-cph/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">insightevents.dk/isc-cph/</span><span class="invisible"></span></a> </p><p>📅 Nov 12-14 📍 Copenhagen, Denmark</p>
ExploreLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
Create accountLoginDrag & drop to upload