Critical Infrastructure Protection


Today’s interdependent and interconnected world requires joint efforts and holistic approaches to protect critical infrastructure assets from the growing number of attacks and to address ever-evolving cyber threats to government, energy, healthcare, education, banking, transportation, telecommunication and other critical sectors.

With a dedicated section focusing on Critical Infrastructure protection, we aim to enhance cooperation and engage security professionals through news, articles and in-depth analysis of emerging threats and technologies.


NEWS

  • Inside the criminal groups using disinformation to sell fake COVID passes

    December 8, 2021

    “For all those who do not wish to be vaccinated, here is an alternative.” This is how fake or fraudulent EU COVID certificates are being advertised online by criminal groups. Sky News has found evidence of these passes, which could be used as proof of vaccination to enter the UK, being advertised in at least nine European ...

  • State of Cybersecurity in Germany in 2021

    December 7, 2021

    According to Germany’s Federal Office for Information Security (BSI), the country faces a grave and growing threat as society becomes more digitally connected and criminals more sophisticated. The BSI said threat levels have reached red alarm levels. Threat level increased BSI published their annual report “The State of IT Security in Germany in 2021.” It highlights that ...

  • Sensitive information of 30k Florida healthcare workers exposed in unprotected database

    December 3, 2021

    More than 30,000 US healthcare workers’ personal information was recently exposed due to a non-password protected database, according to security researcher Jeremiah Fowler and a team of ethical hackers with Website Planet. Fowler discovered a database run by Gale Healthcare Solutions with 170,239 exposed records that included names, emails, home addresses, photos and in some cases ...

  • Indicators of Compromise Associated with Cuba Ransomware

    December 2, 2021

    The FBI has identified, as of early November 2021 that Cuba ransomware actors have compromised at least 49 entities in five critical infrastructure sectors, including but not limited to the financial, government, healthcare, manufacturing, and information technology sectors. Cuba ransomware is distributed through Hancitor malware, a loader known for dropping or executing stealers, such as ...

  • Colorado energy company loses 25 years of data after cyberattack while still rebuilding network

    December 2, 2021

    Colorado’s Delta-Montrose Electric Association (DMEA) is still struggling to recover from a devastating cyberattack last month that took down 90% of its internal systems and caused 25 years of historical data to be lost. In an update sent to customers this week, the company said it expects to be able to begin accepting payments through its ...

  • DHS Announces New Cybersecurity Requirements for Surface Transportation Owners and Operators

    December 2, 2021

    WASHINGTON – DHS’s Transportation Security Administration (TSA) today announced two new Security Directives and additional guidance for voluntary measures to strengthen cybersecurity across the transportation sector in response to the ongoing cybersecurity threat to surface transportation systems and associated infrastructure. These actions are among several steps DHS is taking to increase the cybersecurity of U.S. ...

  • Queensland government energy generator hit by ransomware

    November 30, 2021

    Queensland government-owned energy generator CS Energy said on Tuesday it was responding to a ransomware incident that occurred over the weekend. First reported by Energy Source & Distribution, the company said the incident has not impacted electricity generation at Callide and Kogan Creek power station, and it was looking to restore its network. ANZ regional director at ...

  • Railway Cybersecurity – Good Practices in Cyber Risk Management

    November 27, 2021

    This report aims to be a reference point for current good practices for cyber risk management approaches that are applicable to the railway sector. It offers a guide for railway undertakings and infrastructure managers to select, combine or adjust cyber risk management methods to the needs of their organisation. It builds upon the 2020 ENISA ...

  • UK government transport website caught showing porn

    November 25, 2021

    A UK Department for Transport (DfT) website was caught serving porn earlier today. The particular DfT subdomain behind the mishap, on most days, provides vital DfT statistics for the public and the department’s business plan. Racy traffic ahead The UK DfT’s charts.dft.gov.uk website was seen serving porn today, as confirmed by BleepingComputer. Read more… Source: Bleeping Computer  

  • ICCECIP 2021 international scientific conference

    November 25, 2021

    The ICCECIP 2021 – 3rd International Conference on Central European Critical Infrastructure Protection was held this year on 15th November. This year conference was the third after the 2019 and 2020 ones. This event as part of the Hungarian Science Festival was organized by the Bánki Donát Faculty of Mechanical and Safety Engineering of the ...

  • Sophisticated Tardigrade malware launches attacks on vaccine manufacturing infrastructure

    November 25, 2021

    Security researchers are warning biomanufacturing facilities around the world that they are being targeted by a sophisticated new strain of malware, known as Tardigrade. The warning comes from the non-profit Bioeconomy Information Sharing and Analysis Center (BIO-ISAC) which revealed that at least two large facilities working on manufacturing bio-drugs and vaccines have been hit by the ...

  • The dangers of “connected” healthcare: predictions for 2022

    November 23, 2021

    For a second consecutive year, the time for Kaspersky to make its predictions for the healthcare sector comes amid the global COVID-19 pandemic. Unfortunately, the virus still dominates most aspects of our lives, and, of course, the pandemic remained the biggest and most-discussed topic in medicine. Part of our predictions last year were based on the ...

  • TSA makes changes to new cyber requirements after industry feedback

    November 23, 2021

    The Transportation Security Administration is softening the deadlines on new cybersecurity requirements for major passenger and freight rail operators, as the agency’s leader said it learned from efforts earlier this year to begin regulating the cybersecurity of the pipeline sector. TSA is expected to issue the new security directives for major railroad and rail transit entities ...

  • Cyberthreats to financial organizations in 2022

    November 23, 2021

    A look back on the year 2021 and what to expect in 2022 First of all, we are going to analyze the forecasts we made at the end of 2020 and see how accurate they were. Then we will go through the key events of 2021 relating to attacks on financial organizations. Finally, we will make ...