Skip to main content

Tag: critical infrastructure

498 articles

Industrial facility with smokestacks and aircraft in foreground.

US, Iran Escalate Strikes on Infrastructure Targets

Tensions are running high as the US and Iran exchange blows, with President Trump vowing to hit hard and expand targets to power plants and bridges, sparking a week of escalating strikes and counterattacks on infrastructure across the region. The Pentagon is ramping up its military presence, shifting aviation and tanker assets into position to support the growing conflict.

Analyst 207
Industrial control equipment and network switch on a rack in a brightly-lit control room.

Siemens ROX II Zero-Days Expose Critical Infrastructure Risks

Our research team, in close collaboration with Siemens, uncovered a critical vulnerability chain of three zero-day exploits in Siemens ROX II operational-technology switches, posing significant risks to critical infrastructure security. This chained exploit could allow attackers to escalate from basic reconnaissance to full root-level control.

Analyst 207
Government building with tall windows and daylight streaming in, abstract agents in background.

US Indicts Russians for Running Bulletproof Hosting Services

The FBI has struck a major blow against cybercrime by indicting three Russian nationals and two companies for operating bulletproof hosting services that enabled devastating attacks on US critical infrastructure. This significant move disrupts the backbone of cybercriminal operations, dealing a crucial win for online safety.

Analyst 207
Federal courthouse interior with subtle law enforcement presence.

US Charges Russian Nationals for Bulletproof Hosting Services

US authorities have charged three Russian nationals with operating illicit bulletproof hosting services that enabled cybercrime, affecting victims across 21 states, including banks, schools, hospitals, and media companies. The accused, Aleksandr Volosovik, Yulia Pankova, and Kirill Zatolokin, allegedly facilitated a range of malicious activities through their services.

Analyst 207
Laptop screen displays virtual private network setup on neutral desk in office.

US Treasury Disrupts Ransomware Networks with Sanctions on VPN, Malware Providers

The US Treasury has cracked down on ransomware networks by sanctioning a VPN provider and its administrator, who allegedly helped cybercrime groups hide their tracks and evade detection. This move aims to disrupt the tools and services that enable devastating attacks causing billions of dollars in losses to US critical infrastructure providers.

Analyst 207
Technicians monitor rows of networking equipment with blinking lights in a dimly lit control room.

Russian Hackers Target Network Devices With Exploits

Russian hackers, linked to the Federal Security Service's Center 16, have been actively targeting critical US and foreign networks across multiple sectors, including defense, energy, and healthcare, for over a decade. This ongoing threat has compromised networks in various industries, posing significant risks to national security and global stability.

Analyst 207
Control room with industrial equipment and officials monitoring power distribution systems.

UK, EU Attribute Poland Cyberattack to Russian Spies, Warn Infrastructure Operators

The UK and EU have called out Russia's Federal Security Service for a brazen cyberattack on Poland's power grid, saying it's just another example of their reckless attempts to wreak havoc across Europe. The attack, attributed to FSB's Centre 16, was foiled, but serves as a stark warning for infrastructure operators to stay vigilant.

Analyst 207
European Union officials gather in a formal council meeting room with symbolic representations of official seals in the…

EU Targets Russian Hackers with Sanctions Over Europe Cyberattacks

The European Union is cracking down on Russian hackers, imposing sanctions on nine individuals and four entities linked to malicious cyber operations that threaten the continent's security and stability. This move targets those behind a foiled attack on Poland's critical infrastructure, which could have left 500,000 people in the dark during winter.

Analyst 207
Rows of generic routers on a rack in a neutral-colored server room with blank labels.

Russian Hackers Target Routers Globally, Warn Cybersecurity Agencies

A brazen plot by Russian hackers to disrupt global networks was thwarted, but not before cybersecurity agencies warned of a potentially catastrophic attack that could have left 500,000 citizens shivering in the dark. The hackers, linked to Russia's Federal Security Service, targeted vulnerable routers worldwide using simple and easily exploitable passwords.

Analyst 207
Large empty internet router centered on a rack in a neutral-colored industrial network closet.

Russian Hackers Target Critical Infrastructure via Router Exploits

Russian state-backed hackers have infected 18,000 routers in 120 countries, sparking a multinational warning about the threat to critical infrastructure networks. The alarming campaign is linked to Russia's Federal Security Service (FSB) Centre 16, notorious for exploiting poorly configured routers to gain access to sensitive networks.

Analyst 207
Government building with a stylized network pattern in the foreground, symbolizing cybersecurity regulation.

Australia Urged to Empower ACSC as Cybersecurity Regulator

As cyber threats increasingly put Australia's critical infrastructure, economy, and national resilience at risk, the country faces a critical choice: rely on voluntary measures or establish a robust cybersecurity regulator with the power to enforce minimum standards and hold organizations accountable. Empowering the Australian Cyber Security Centre (ACSC) as a formal regulator could be the key to bolstering the nation's cyber defenses.

Analyst 207
US AI Clearinghouse Must Bridge Vulnerability Gap

US AI Clearinghouse Must Bridge Vulnerability Gap

The US AI cybersecurity clearinghouse has a crucial role to play in bridging the vulnerability gap, but time is of the essence - AI tools are surfacing vulnerabilities at a pace that's outstripping our ability to act on them. With a 30-day deadline now expired, the clearinghouse must swiftly coordinate efforts to scan, discover, and prioritize critical infrastructure vulnerabilities.

Analyst 207
Multiple vessels and infrastructure operate in close proximity along a crowded Pacific coastline.

Pacific Seabed Becomes Contested Zone in Regional Power Struggle

The Pacific seabed, once a vast and empty space, has become a hotly contested zone as a growing number of nations and interests converge on its valuable resources, transforming the way power and risk are distributed in the region. This emerging crowded landscape is sparking new tensions, as mining, military operations, and other activities increasingly overlap and collide.

Analyst 207
Officials inspect and manage neatly stacked containers in a secure storage facility.

Democracies Need Critical-Minerals Stockpile Alignment

Democratic governments are taking a proactive approach to securing their critical mineral supplies, with Australia's recent announcement of a Critical Minerals Strategic Reserve being the latest example. This move is part of a growing trend to build resilience and reduce reliance on vulnerable supply chains dominated by a single country.

Analyst 207
Secure government room with computer workstations and large blank screen on wall.

DHS Probes Breach of Homeland Security Information Network

The Department of Homeland Security is investigating a recent cyber breach targeting a legacy information sharing environment used by its Homeland Security Information Network. This platform is a critical tool for sharing sensitive information among partners to protect communities and respond to incidents.

Analyst 207
Two government officials shake hands outdoors in a tropical setting with palm trees.

Australia Secures Modified Pacific Pact with Vanuatu Amid China's Rise

Vanuatu's Prime Minister Jotham Napat revealed that last-minute concerns over a single clause - specifically the wording around third-party investment in critical infrastructure - led to his country's dramatic decision to decline signing the Nakamal Agreement with Australia. The clause sparked fears that Vanuatu might have to compromise its sovereignty or limit partnerships with other nations.

Analyst 207
Quantum computing research setup with laptop and scientific instruments in a laboratory setting.

Microsoft Accelerates Quantum-Safe Transition Amid Rising Risks

Microsoft is speeding up its transition to quantum-safe cryptography, aiming to protect critical products and services from the growing threat of quantum computer attacks by 2029. The move is a response to rapid advances in quantum research, which have brought the risks of quantum computing closer than expected.

Analyst 207
Prime Minister Keir Starmer speaks at a facility with a military aircraft model behind him.

UK Boosts Defense Spending to $105 Billion by 2029

The UK is set to bolster its defense capabilities with a significant boost in spending, reaching $105 billion annually by 2029, as Prime Minister Keir Starmer vows to prioritize national security. This substantial increase, from 2.3% to 2.7% of GDP, is just the beginning, with a target of 3% in the next parliament.

Analyst 207
Diverse groups from government and private sectors discuss cybersecurity in a meeting room overlooking cityscape.

DHS Revives Cybersecurity Council for Critical Infrastructure

The Department of Homeland Security is launching the Alliance of National Councils for Homeland Operational Resilience – Critical Infrastructure program to boost cybersecurity coordination between government agencies and private sector partners. This new initiative aims to bring together experts from various fields to tackle the latest threats and protect critical infrastructure.

Analyst 207
Liquefied natural gas tanker with sandbagged machine gun positions on deck sailing past coastline.

Russia Arms Commercial Tanker with Heavy Machine Guns

Meet the Marshal Vasilevskiy, a 945-foot LNG tanker that's moonlighting as a heavily armed behemoth, sporting sandbagged machine-gun positions on its deck. This unusual floating fortress is Russia's only floating storage and regasification vessel, supplying the exclave of Kaliningrad with a secure gas supply.

Analyst 207
Southeast Asian cityscape with industrial control system hinted in background.

China-Linked Hackers Deploy TinyRCT Backdoor in Southeast Asian Infrastructure Attacks

For years, a stealthy China-linked hacking group has been quietly targeting critical infrastructure in Southeast Asia, with a clear strategic interest in disrupting or monitoring key regional industries. Their sophisticated attacks have zeroed in on state-owned energy and government sectors, using a potent tool called the TinyRCT backdoor.

Analyst 207
FCC Tightens Cybersecurity Rules for Emergency Alert Systems, Undersea Cables

FCC Tightens Cybersecurity Rules for Emergency Alert Systems, Undersea Cables

The FCC has just tightened cybersecurity rules for emergency alert systems and undersea cables to prevent vulnerabilities that could be exploited by rogue actors, foreign governments, or cybercriminals to spread chaos and misinformation. This move aims to safeguard the nation's primary public-warning platforms, including the Emergency Alert System and Wireless Emergency Alerts.

Analyst 207
Water utility company's outdoor infrastructure with personnel and subtle computer systems.

Iranian Hackers Exploit Credentials in Cal Water Breach

Cal Water swiftly sprang into action when an Iranian-linked group, Handala, claimed to have hacked their system, activating their cybersecurity response plan and launching a thorough investigation. Thankfully, experts from Mandiant found that the breach was limited to third-party accounts, containing no evidence of a larger-scale attack.

Analyst 207
Futuristic tech facility with blurred AI servers and data storage.

Australia's Security Threats Converge as AI Compresses Risk Timeline

When Australia's critical infrastructure is disrupted, it will be a shock, but not a surprise - and with AI supercharging threats, that disruption may come sooner than we think. The warning signs are clear: AI is rapidly expanding the offensive toolkit, making threats more immediate, concurrent, and devastating.

Analyst 207