Control Loop: The OT Cybersecurity Podcast
BlackCat ransomware gang hits Luxembourg energy company. Predatory Sparrow's assault on Iran's steel industry. MOXA issues patches for two vulnerabilities. ICS security advisories. Two security bills pass the US House. Insider threat: Spain arrests nuclear plant employees. The human risk to OT systems.
BlackCat ransomware gang hits Luxembourg energy supplier Creos (Computing)
Luxembourg energy provider Encevo Group battles ransomware attack by BlackCat (Tech Monitor)
BlackCat ransomware claims attack on European gas pipeline (BleepingComputer)
Luxembourg energy companies struggling with alleged ransomware attack, data breach (The Record by Recorded Future)
Predatory Sparrow: Who are the hackers who say they started a fire in Iran? (BBC News)
Hacktivists claiming attack on Iranian steel facilities dump tranche of 'top secret documents' (CyberScoop)
Moxa NPort Device Flaws Can Expose Critical Infrastructure to Disruptive Attacks (SecurityWeek)
Two Moxa Zerodays — ICSRange.com - Powered by En Garde Security (ICSRange.com - Powered by En Garde Security)
Inductive Automation Ignition (CISA)
Honeywell Safety Manager (CISA)
Honeywell Saia Burgess PG5 (CISA)
MOXA NPort 5110 (CISA)
Mitsubishi MELSEC and MELIPC Series (Update D) (CISA)
Rockwell Products Impacted by Chromium Type Confusion Vulnerability (CISA)
Mitsubishi FA Engineering Software (Update B) (CISA)
Mitsubishi Electric Factory Automation Engineering Software (Update C) (CISA)
Mitsubishi Electric Factory Automation Products Path Traversal (Update C) (CISA)
Mitsubishi Electric Factory Automation Engineering Products (Update H) (CISA)
Mitsubishi Electric FA Engineering Software Products (Update F) (CISA)
Delta Electronics DIAEnergie (Update C) (CISA)
Delta Electronics DIAEnergie (Update C) (CISA)
House Passes Cybersecurity Bills Focusing on Energy Sector, Information Sharing (SecurityWeek)
Spanish police arrest two accused of hacking radioactivity alert system (Record by Recorded Future)
The 2022 State of Operational Technology (SCADAfence)
Bryson Bort from SCYTHE, on threat emulation for critical infrastructure, season 3 of Hack the Plant with the Atlantic Council, and the ICS Village at Def Con in collaboration with CISA.
Jim Gilsinn, Technical Leader at Dragos Global Services Team, discusses Security Directive Pipeline-2021-02C, pipeline cybersecurity mitigation actions, contingency planning, and testing, with Mark Urban, VP of Product Market Strategy at Dragos.
U.S. Transportation Safety Administration (TSA) Pipeline Security Directive
Subscribe to the Control Loop Newsletter here with new editions published every month.
Learn more about your ad choices. Visit megaphone.fm/adchoices