Johnson Controls sustains cyberattack. Nearly 100,000 ICS services exposed to the Internet. FBI anticipates an increase in Chinese and Russian targeting of the energy sector. Joint advisory warns of Beijing’s “BlackTech” threat activity. CISA's push for hardware bills of materials. Cybersecurity in the US industrial base. Guest Michael Toecker, Cyber Security Advisor at the United States Department of Energy’s Office of Cybersecurity, Energy Security, and Emergency Response, continues his discussion of community defense and Neighborhood Keeper. On the Learning Lab, Mark Urban is joined by Alex Baretta, a senior solution architect at Dragos, for part two of their discussion about secure remote access.
https://www.oig.dhs.gov/sites/default/files/assets/2023-09/OIG-23-57-Sep23-Redacted.pdf
Building automation giant Johnson Controls hit by ransomware attack (BleepingComputer)
Bitsight identifies nearly 100,000 exposed industrial control systems (BitSight)
FBI warns energy sector of likely increase in targeting by Chinese, Russian hackers (The Record)
CISA, NSA, FBI and Japan Release Advisory Warning of BlackTech, PRC-Linked Cyber Activity (CISA)
Hardware Bill of Materials (HBOM) Framework for Supply Chain Risk Management (CISA)
CISA task force aims to improve supply chain security with new hardware standards (Nextgov)
Guest is Michael Toecker, Cyber Security Advisor at the United States Department of Energy’s Office of Cybersecurity, Energy Security, and Emergency Response, continues his discussion of community defense and Neighborhood Keeper.
On the Learning Lab, Mark Urban concludes his conversation about secure remote access with Alex Baretta, senior solution architect at Dragos.
A companion monthly newsletter is available through free subscription and on the CyberWire's website.
Learn more about your ad choices. Visit megaphone.fm/adchoices