Hackers exploited Zimbra flaw as zero-day using iCalendar files
Researchers monitoring for larger .ICS calendar attachments found that a flaw in Zimbra Collaboration Suite (ZCS) was used in zero-day attacks at the beginning of the year. [...]
ICS security covers industrial control systems running physical processes and relying on reliable networks, where failures may affect safety and availability.
Search across headline titles and summaries.
Background for this topic.
Industrial control systems (ICS) are the computers, networks, programmable controllers, sensors, and actuators that monitor and operate physical processes. They include supervisory control and data acquisition (SCADA), distributed control systems, and plant-floor automation in sectors such as manufacturing, energy, transport, and water. Their critical assets are the control logic and process data, while their dependencies include engineering workstations, operator consoles, industrial protocols, communications links, and sometimes connections to enterprise or remote-access systems.
ICS security must protect availability, process integrity, and safety as well as confidentiality. Unauthorized changes to controller logic, compromised remote access, vulnerable engineering software, or disruption of communications can produce unsafe conditions or halt operations, though impact depends on the process and its safeguards. Defenses commonly include accurate asset inventories, network segmentation, tightly controlled and monitored remote access, secure configuration, tested backups of control logic, and vulnerability management that accounts for maintenance windows and the risks of disrupting real-time systems. Incident response may require isolating affected equipment while preserving safe operation or manual fallback.
Weekly headline count for the current query.
Researchers monitoring for larger .ICS calendar attachments found that a flaw in Zimbra Collaboration Suite (ZCS) was used in zero-day attacks at the beginning of the year. [...]
Ivanti has released security updates for Ivanti Connect Secure (ICS), Ivanti Policy Secure (IPS), and Ivanti Secure Access Client (ISAC) to address multiple vulnerabilities, including three critical severity problems. [...]
CISA warned today of threat actors trying to breach critical infrastructure networks by targeting Internet-exposed industrial devices using "unsophisticated" methods like brute force attacks and default credentials. [...]
Rockwell Automation warned customers to disconnect all industrial control systems (ICSs) not designed for online exposure from the Internet due to increasing malicious activity worldwide. [...]
Microsoft reversed the fix for an Outlook bug causing erroneous security warnings after installing December 2023 security updates [...]
Microsoft has fixed an issue that triggers erroneous Outlook security alerts when opening .ICS calendar files after installing the December 2023 Outlook Desktop security updates [...]
Microsoft is investigating an issue that triggers Outlook security alerts when trying to open .ICS calendar files after installing December 2023 Patch Tuesday Office security updates. [...]
Ivanti has disclosed two Connect Secure (ICS) and Policy Secure zero-days exploited in the wild that can let remote attackers execute arbitrary commands on targeted gateways. [...]
Russian state hackers have evolved their methods for breaching industrial control systems by adopting living-off-the-land techniques that enable reaching the final stage of the attack quicker and with less resources [...]
About 100,000 industrial control systems (ICS) were found on the public web, exposed to attackers probing them for vulnerabilities and at risk of unauthorized access. Among them are power grids, traffic light systems, security and water systems. [...]
Mandiant security researchers have discovered a new OT known as CosmicEnergy that targets operational technology (OT), raising concerns about potential disruptions to electric power systems worldwide. [...]
The National Security Agency (NSA) and CISA have issued guidance on how to secure operational technology (OT) and industrial control systems (ICSs) part of U.S. critical infrastructure. [...]
A threat actor is infecting industrial control systems (ICS) to create a botnet through password "cracking" software for programmable logic controllers (PLCs). [...]
Pwn2Own Miami 2022 has ended with competitors earning $400,000 for 26 zero-day exploits (and several bug collisions) targeting ICS and SCADA products demoed during the contest between April 19 and April 21. [...]
A joint cybersecurity advisory issued by CISA, NSA, FBI, and the Department of Energy (DOE) warns of government-backed hacking groups being able to hijack multiple industrial control system (ICS) and supervisory control and data acquisition (SCADA) devices. [...]
The Russian state-sponsored hacking group known as Sandworm tried on Friday to take down a large Ukrainian energy provider by disconnecting its electrical substations with a new variant of the Industroyer malware for industrial control systems (ICS) and a new version of the CaddyWiper data destruction malware. [...]