Cybersecurity and Energy and Utilities - Information Management Today

Energizing business outcomes: How data-driven AI and cybersecurity shape the future of Energy & Utilities

CGI

OCTOBER 30, 2024

The Energy and Utilities sector is undergoing rapid transformation, driven by decarbonization goals, changing consumer demands and technological advancements.

Energy and Utilities

Energy and Utilities Cybersecurity Marketing Risk

FERC, NERC joint report on cyber incident response at electric utilities

Security Affairs

SEPTEMBER 21, 2020

The US FERC and NERC published a study on cyber incident response at electric utilities that also includes recovery best practices. Federal Energy Regulatory Commission (FERC) and the North American Electricity Reliability Corporation (NERC) released a study on cyber incident response and recovery best practices for electric utilities.

Energy and Utilities

Energy and Utilities Compliance Communications Cybersecurity

CISA JCDC Will Focus on Energy Sector

Security Affairs

APRIL 5, 2023

This effort began with the 2018 establishment of the Cybersecurity and Infrastructure Security Agency (CISA) , a Department of Homeland Security division. Strengthen operational integration and collaboration with members of the energy sector. Not long after, attackers targeted six stations in the Pacific Northwest.

Energy and Utilities

Energy and Utilities Risk Cybersecurity Compliance

Webinars

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

U.S. FERC Proposes Revisions to Cybersecurity Incentives for Utilities

Data Matters

OCTOBER 1, 2022

On September 22, 2022, the Federal Energy Regulatory Commission (FERC) issued a Notice of Proposed Rulemaking (NOPR) regarding Incentives for Advanced Cybersecurity Investment, requesting comment on proposed revisions to regulations implementing the Federal Power Act (FPA).

Energy and Utilities

Energy and Utilities Cybersecurity Sales Privacy

Monitoring the dark web to identify threats to energy sector organizations

Security Affairs

MAY 17, 2023

Searchlight Cyber researchers warn of threat actors that are offering on the dark web access to energy sector organizations. Dark web intelligence firm Searchlight Cyber published a report that analyzes how threat actors in the dark web prepare their malicious operations against energy organizations.

Energy and Utilities

Energy and Utilities Access Sales Data collection

A massive phishing campaign using QR codes targets the energy sector

Security Affairs

AUGUST 16, 2023

A phishing campaign employing QR codes targeted a leading energy company in the US, cybersecurity firm Cofense reported. “Beginning in May 2023, Cofense has observed a large phishing campaign utilizing QR codes targeting the Microsoft credentials of users from a wide array of industries.”

Phishing

Phishing Energy and Utilities Insurance Manufacturing

Dept. of Energy announced the Liberty Eclipse exercise to test electrical grid against cyber attacks

Security Affairs

AUGUST 6, 2018

This is the first time the Department of Energy will test the electrical grid’s ability to recover from a blackout caused by cyberattacks. According to the E&E News website, the Department of Energy plans to conduct a weeklong experiment, dubbed ‘Liberty Eclipse,’ that will take place starting Nov.

Energy and Utilities

Energy and Utilities Security Cybersecurity IT

Resecurity Released a 2024 Cyber Threat Landscape Forecast

Security Affairs

DECEMBER 26, 2023

Cybersecurity company Resecurity has published the 2024 Cyber Threat Landscape Forecast. Resecurity, a Los Angeles-based cybersecurity company protecting Fortune 100 and government agencies worldwide, has compiled a comprehensive forecast outlining the imminent threats and novel security challenges anticipated in the upcoming year.

Energy and Utilities

Energy and Utilities Artificial Intelligence Ransomware Data breaches

Top 5 tech predictions for the energy and resources sector in 2025

OpenText Information Management

DECEMBER 16, 2024

The energy and resources sector is undergoing a profound transformation driven by the global push toward sustainability, energy technological advancements, geopolitical risks, and increasing regulatory pressures in some areas of the world. Every digital fabric has horizontal and vertical digital threads. Digital twins are no different.

Energy and Utilities

Energy and Utilities IoT Customer Experience Manufacturing

US Officials Urged to Examine Chinese Risk to Electric Grid

Data Breach Today

MARCH 23, 2023

Utility Vendors Have Cut Back on Buying Chinese Transformers Due to Security Risks Utility companies have increasingly refrained from purchasing large power transformers from China given greater awareness of the security risks.

Risk

Risk Manufacturing Cybersecurity Security

Hackers Target Oil Producers During COVID-19 Slump

Security Affairs

MAY 19, 2020

Data from Barracuda cybersecurity researchers identified a 667% increase in spear-phishing attacks between the end of February and the following month. Real-Life Examples of Spear-Phishing Attacks in the Energy Production Sector. The threat of spear-phishing for energy companies is, unfortunately, not a theoretical one.

Energy and Utilities

Energy and Utilities Phishing Cybersecurity Ransomware

US indicted 4 Russian government employees for attacks on critical infrastructure

Security Affairs

MARCH 25, 2022

has indicted four Russian government employees for their role in cyberattacks targeting hundreds of companies and organizations in the energy sector worldwide between 2012 and 2018. According to the indictment, the campaigns against the energy sector campaign involved two phases. and international Energy Sector organizations. .

Energy and Utilities

Energy and Utilities Government Cybersecurity Military

Breach Reveal: PG&E Exposed 30,000 Sensitive Records

Data Breach Today

AUGUST 28, 2018

Previously Unnamed Utility Reached Record $2.7 energy company that agreed to a record $2.7 million settlement after it left 30,000 records about its information security assets exposed online for 70 days in violation of energy sector cybersecurity regulations has been named as California utility PG&E.

Information Security

Information Security Cybersecurity Security IT

Everest gang demands $200K for data stolen from South Africa state-owned electricity company ESKOM

Security Affairs

OCTOBER 9, 2022

Eskom transforms inputs from the natural environment – coal, nuclear, fuel, diesel, water, and wind – into more than 90% of the energy supplied to a wide range of customers in South Africa and the Southern African Development Community (SADC) region. Government of the Republic of South Africa owned utility ESKOM Hld SOC Ltd.

Energy and Utilities

Energy and Utilities Ransomware Access Cybersecurity

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Security Affairs

FEBRUARY 28, 2024

The Federal Bureau of Investigation (FBI), National Security Agency (NSA), US Cyber Command, and international partners released a joint Cybersecurity Advisory (CSA) to warn that Russia-linked threat actors are using compromised Ubiquiti EdgeRouters (EdgeRouters) to evade detection in cyber operations worldwide.

Energy and Utilities

Energy and Utilities Military Government Phishing

Digital twins reimagined at scale for energy and resources

OpenText Information Management

SEPTEMBER 16, 2024

1 The ratio between man and machine All industries use machines, yet the energy and resources sector including utilities , oil and gas , chemicals , and metals & mining industries is the most capital intensive. trillion of annual capital investment is made in the energy industry today and by some estimates will grow to $9.2

Energy and Utilities

Energy and Utilities e-Delivery Analytics Mining

RedEnergy Stealer-as-a-Ransomware employed in attacks in the wild

Security Affairs

JULY 5, 2023

RedEnergy is a sophisticated stealer-as-a-ransomware that was employed in attacks targeting energy utilities, oil, gas, telecom, and machinery sectors. Zscaler ThreatLabz researchers discovered a new Stealer-as-a-Ransomware named RedEnergy used in attacks against energy utilities, oil, gas, telecom, and machinery sectors.

Ransomware

Ransomware Energy and Utilities Encryption Manufacturing

Cybersecurity in utilities: Critical questions for securing distributed energy resources (DERs)

CGI

JUNE 17, 2019

Cybersecurity in utilities: Critical questions for securing distributed energy resources (DERs). The energy transition is driving a shift toward the increasing use of distributed energy resources (DERs). From a cybersecurity perspective, DERs pose new and unique challenges for utilities.

Energy and Utilities

Energy and Utilities Cybersecurity CMS Security

A new piece of Snake Ransomware targets ICS processes

Security Affairs

JANUARY 28, 2020

It is for these same reasons that some RaaS (Ransomware as a Service) offerings utilize the language as well. “ The Snake ransomware targets files associated with SCADA platforms, enterprise management tools, and system utilities. One such example would be Project Root.

Ransomware

Ransomware Energy and Utilities Manufacturing Encryption

MY TAKE: ‘IOWN’ makes the business case for fostering diversity, respecting individual privacy

The Last Watchdog

JULY 10, 2023

To tap the full potential of massively interconnected, fully interoperable digital systems we must solve privacy and cybersecurity, to be sure. IOWN is all about supporting increased bandwidth, capacity and energy efficiency. Each sensor in each shroud must be uniquely smart and use next to zero energy.

Energy and Utilities

Energy and Utilities Privacy Communications Big data

UK, US agencies warn of large-scale brute-force attacks carried out by Russian APT

Security Affairs

JULY 1, 2021

US and UK cybersecurity agencies said the Russia-linked APT28 group is behind a series of large-scale brute-force attacks. US and UK cybersecurity agencies published a joint alert about a series of large-scale brute-force conducted by the Russia-linked APT28 group. ” reads the joint report.

Energy and Utilities

Energy and Utilities Military Cloud Cybersecurity

U.S. FERC Proposes Revisions to Cybersecurity Incentives for Utilities

Data Matters

SEPTEMBER 30, 2022

On September 22, 2022, the Federal Energy Regulatory Commission (FERC) issued a Notice of Proposed Rulemaking (NOPR) regarding Incentives for Advanced Cybersecurity Investment, requesting comment on proposed revisions to regulations implementing the Federal Power Act (FPA). The post U.S.

Energy and Utilities

Energy and Utilities Cybersecurity Sales Privacy

Iran-linked Mint Sandstorm APT targeted US critical infrastructure

Security Affairs

APRIL 19, 2023

Mint Sandstorm also used custom tools in selected targets, notably organizations in the energy and transportation sectors. The group rapidly weaponized N-day vulnerabilities in popular enterprise applications by using publicly disclosed POCs.

Energy and Utilities

Energy and Utilities Military Education Phishing

SilverTerrier gang uses COVID-19 lures in BEC attacks against healthcare, government organizations

Security Affairs

MAY 9, 2020

The attacks targeted a major utility provider, a university, and a government agency in the United States, a health agency in Canada, a health insurance provider, an energy company in Australia, and a European medical publishing company to deliver various malware families.

Government

Government Energy and Utilities Insurance Phishing

NERC $10,000,000 Fine of Public Utility Highlights the Need for Cybersecurity Preparedness and CIP Compliance Programs

Data Matters

FEBRUARY 26, 2019

Critically, the utility had in place an internal compliance program at the time of the violations. The Settlement Agreement is heavily redacted in places, including redactions of the utility’s name, so as not to disclose sensitive information about the utility’s cyber defenses and/or in any way compromise the bulk power system.

Energy and Utilities

Energy and Utilities Compliance Cybersecurity Risk

MY TAKE: The role of semiconductors in bringing the ‘Internet of Everything’ into full fruition

The Last Watchdog

DECEMBER 11, 2022

Power modules must continue to advance; energy consumption of big digital systems must continue to become more and more efficient to support the smart commercial buildings and transportation systems of the near future, Rosteck says. Energy at the edges. How microcontrollers distribute energy is a very big deal. comes into play.

Energy and Utilities

Energy and Utilities IoT Artificial Intelligence Cloud

Incentivizing public utilities to enhance cybersecurity: FERC’s proposed regulation

Data Protection Report

FEBRUARY 11, 2021

Because technology changes faster than regulatory standards, in 2020, FERC staff “reasoned that an incentive-based framework would allow a public utility to tailor its request for incentives to the potential challenges it faces and take responsive action. FERC proposed two approaches for cybersecurity investment incentives. 5, 2021).).

Cybersecurity

Cybersecurity Energy and Utilities Risk Security

Leaked documents from Russian firm NTC Vulkan show Sandworm cyberwarfare arsenal

Security Affairs

APRIL 2, 2023

Energy utilities and oil and gas, but also water utilities and transportation systems, are privileged targets of nation-state actors. ” concludes the report. . ” concludes the report.

Energy and Utilities

Energy and Utilities Education Ransomware IT

DHS CISA warns of Critical issues in Medtronic Medical equipment

Security Affairs

NOVEMBER 9, 2019

The US DHS Cybersecurity & Infrastructure Security Agency (CISA) issued a security advisory to warn of three recently patched flaws in Medtronic Valleylab products that could be exploited to install a non-root shell. and below, Valleylab FT10 Energy Platform (VLFT10GEN) software version 4.0.0 Apply defense-in-depth strategies.

Energy and Utilities

Energy and Utilities Cybersecurity Access Passwords

What the Blockchain Taught Us about IT Security

Security Affairs

AUGUST 29, 2018

It is not just about security, but in utilizing Blockchain to secure your company and your information. But it is not just about security, but in utilizing Blockchains to secure your company and your information. Energy Efficiency. Securi ty Affairs – blockchain, cybersecurity). What Does IT Stand For? Smart Contracts.

Blockchain

Blockchain Energy and Utilities Security IT

MY TAKE: Iran’s cyber retaliation for Soleimani assassination continues to ramp up

The Last Watchdog

FEBRUARY 3, 2020

This escalation of reconnaissance is being closely monitored by the global cybersecurity and intelligence communities. Here are a few key things everyone should understand about the cybersecurity ramifications spinning out of the Soleimani assassination. Grimes, a data defense expert at cybersecurity training vendor KnowBe4.

Energy and Utilities

Energy and Utilities Access Passwords Cybersecurity

US Cyber Command warns of Iran-linked hackers exploiting CVE-2017-11774 Outlook flaw

Security Affairs

JULY 2, 2019

Malware is currently delivered from: 'hxxps://customermgmt.net/page/macrocosm' #cybersecurity #infosec — USCYBERCOM Malware Alert (@CNMF_VirusAlert) July 2, 2019. These executables are both downloaders that utilize powershell to load the PUPY RAT. Most of the targets were in the Middle East, others were in the U.S.,

Energy and Utilities

Energy and Utilities Phishing Government Passwords

Cybersecurity Risks of 5G – And How to Control Them

eSecurity Planet

SEPTEMBER 1, 2021

Table of Contents What Are the Cybersecurity Risks of 5G? What Are the Cybersecurity Risks of 5G? In a year where cybersecurity’s gotten its share of major media attention, the U.S. Here we’ll discuss the most significant risks posed by 5G, how U.S. NTIA and CISA: Memos from the Feds What is 5G? How is 5G Different?

Risk

Risk Cybersecurity IoT Computer and Electronics

The State of Blockchain Applications in Cybersecurity

eSecurity Planet

JULY 28, 2021

We’ll look at what blockchain technology is, how its development relates to cybersecurity, and the state of blockchain-based security solutions. For advantages, private blockchains are more scalable and energy-efficient with suggested use cases of banking and supply chain management. Blockchain-Powered Cybersecurity Vendors.

Blockchain

Blockchain Cybersecurity Energy and Utilities IoT

SHARED INTEL: Poll shows companies pursuing ‘Digital Trust’ reap benefits as laggards fall behind

The Last Watchdog

FEBRUARY 21, 2024

DigiCert polled some 300 IT, cybersecurity and DevOps professionals across North America, Europe and APAC. In visiting our customers over the past 18 months, I’ve seen a newfound energy for closely examining and more effectively managing PKI infrastructure, both internally and externally,” he says.

Energy and Utilities

Energy and Utilities IoT Manufacturing Encryption

Optimizing energy production with the latest smart grid technologies

IBM Big Data Hub

JULY 25, 2023

New technologies are shaping the way we produce, distribute and consume energy. alone has installed nearly 10,000 electricity generation units, connected by more than 300,000 miles of transmission lines and capable of generating over a million megawatts of energy. Historically, the power grid has been a one-way street.

Energy and Utilities

Energy and Utilities Analytics Data Privacy Communications

China-linked hackers target government agencies by exploiting flaws in Citrix, Pulse, and F5 systems, and MS Exchange

Security Affairs

SEPTEMBER 15, 2020

“The Cybersecurity and Infrastructure Security Agency (CISA) has consistently observed Chinese Ministry of State Security (MSS)-affiliated cyber threat actors using publicly available information sources and common, well-known tactics, techniques, and procedures (TTPs) to target U.S. 1 ] continues the advisory.

Government

Government Energy and Utilities Healthcare Access

Protecting America’s Critical Infrastructure

Thales Cloud Protection & Licensing

JULY 23, 2019

From taking a shower, to brewing your coffee, and watching the news, your morning routine is fueled by the energy sector. But the energy sector also underpins our emergency and response systems, our hospitals and healthcare, our schools, our businesses, and virtually everything we do as a society. The Rising Threat.

Energy and Utilities

Energy and Utilities Digital transformation Encryption Systems administration

MY TAKE: Memory hacking arises as a go-to tactic to carry out deep, persistent incursions

The Last Watchdog

MARCH 4, 2019

In fact, memory attacks have quietly emerged as a powerful and versatile new class of hacking technique that threat actors in the vanguard are utilizing to subvert conventional IT security systems. That’s Gartner’s estimate of global spending on cybersecurity in 2017 and 2018. Instead, memory attacks are transient.

Energy and Utilities

Energy and Utilities Systems administration Access Cybersecurity

The journey to a mature asset management system

IBM Big Data Hub

APRIL 19, 2024

This blog series discusses the complex tasks energy utility companies face as they shift to holistic grid asset management to manage through the energy transition. Cybersecurity reduces risk exposure for cyberattacks on digitally connected assets.

Energy and Utilities

Energy and Utilities Risk IoT Access

NIST Updates Cybersecurity Framework

Data Matters

APRIL 18, 2018

On April 17, the National Institute for Standards and Technology (NIST) released an updated version of its standard-setting Cybersecurity Framework. Commerce Secretary Wilbur Ross announced the new release with a statement saying the “Cybersecurity Framework should be every company’s first line of defense” and “adopting version 1.1

Cybersecurity

Cybersecurity Energy and Utilities Risk Communications

The Scammers’ Playbook: How Cybercriminals Get Ahold of Your Data

eSecurity Planet

SEPTEMBER 14, 2022

A major focus of cybersecurity as an industry is its efforts to detect, root out, and respond to potential fraudsters attempting to trick companies and people out of their money, data, or both. This made a lot of sense, especially in the earlier days of the Internet where cybersecurity measures were nowhere near as robust as they are today.

Energy and Utilities

Energy and Utilities Phishing Blockchain Cybersecurity

China’s Cybersecurity Law Undergoes Third Reading

Hunton Privacy

NOVEMBER 2, 2016

On October 31, 2016, the Standing Committee of the National People’s Congress of China held a third reading of the draft Cybersecurity Law (the “third draft”). As we previously reported , the second draft of the Cybersecurity Law was published for comment in June.

Cybersecurity

Cybersecurity Energy and Utilities Communications Government

Tiao Discusses Utilities’ Concerns in Sharing Information with the Government

Hunton Privacy

APRIL 28, 2014

Tiao was featured on Platts Energy Week discussing the importance of the homeland security partnership between electric utility companies and the U.S. View the Platts Energy Week feature with Paul Tiao. government. In the feature, “U.S. The leak of the memo has undermined that trust.

Energy and Utilities

Energy and Utilities Government Risk Security

Energizing business outcomes: How data-driven AI and cybersecurity shape the future of Energy & Utilities

FERC, NERC joint report on cyber incident response at electric utilities

Webinars

Trending Sources

CISA JCDC Will Focus on Energy Sector

Webinars

U.S. FERC Proposes Revisions to Cybersecurity Incentives for Utilities

Monitoring the dark web to identify threats to energy sector organizations

A massive phishing campaign using QR codes targets the energy sector

Dept. of Energy announced the Liberty Eclipse exercise to test electrical grid against cyber attacks

Resecurity Released a 2024 Cyber Threat Landscape Forecast

Top 5 tech predictions for the energy and resources sector in 2025

US Officials Urged to Examine Chinese Risk to Electric Grid

Hackers Target Oil Producers During COVID-19 Slump

US indicted 4 Russian government employees for attacks on critical infrastructure

Breach Reveal: PG&E Exposed 30,000 Sensitive Records

Everest gang demands $200K for data stolen from South Africa state-owned electricity company ESKOM

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Digital twins reimagined at scale for energy and resources

RedEnergy Stealer-as-a-Ransomware employed in attacks in the wild

Cybersecurity in utilities: Critical questions for securing distributed energy resources (DERs)

A new piece of Snake Ransomware targets ICS processes

MY TAKE: ‘IOWN’ makes the business case for fostering diversity, respecting individual privacy

UK, US agencies warn of large-scale brute-force attacks carried out by Russian APT

U.S. FERC Proposes Revisions to Cybersecurity Incentives for Utilities

Iran-linked Mint Sandstorm APT targeted US critical infrastructure

SilverTerrier gang uses COVID-19 lures in BEC attacks against healthcare, government organizations

NERC $10,000,000 Fine of Public Utility Highlights the Need for Cybersecurity Preparedness and CIP Compliance Programs

MY TAKE: The role of semiconductors in bringing the ‘Internet of Everything’ into full fruition

Incentivizing public utilities to enhance cybersecurity: FERC’s proposed regulation

Leaked documents from Russian firm NTC Vulkan show Sandworm cyberwarfare arsenal

DHS CISA warns of Critical issues in Medtronic Medical equipment

What the Blockchain Taught Us about IT Security

MY TAKE: Iran’s cyber retaliation for Soleimani assassination continues to ramp up

US Cyber Command warns of Iran-linked hackers exploiting CVE-2017-11774 Outlook flaw

Cybersecurity Risks of 5G – And How to Control Them

The State of Blockchain Applications in Cybersecurity

SHARED INTEL: Poll shows companies pursuing ‘Digital Trust’ reap benefits as laggards fall behind

Optimizing energy production with the latest smart grid technologies

China-linked hackers target government agencies by exploiting flaws in Citrix, Pulse, and F5 systems, and MS Exchange

Protecting America’s Critical Infrastructure

MY TAKE: Memory hacking arises as a go-to tactic to carry out deep, persistent incursions

The journey to a mature asset management system

NIST Updates Cybersecurity Framework

The Scammers’ Playbook: How Cybercriminals Get Ahold of Your Data

China’s Cybersecurity Law Undergoes Third Reading

Tiao Discusses Utilities’ Concerns in Sharing Information with the Government

Stay Connected