19 July A post on the legal aspects of managing industrial cyber risks:
5 Steps For Legal Teams To Mitigate Industrial Cyber Risk – Law360
20 July CISA has issued an alert over an older Chinese spearphishing activity targeting US oil and gas pipeline companies:
Chinese Gas Pipeline Intrusion Campaign, 2011 to 2013 | CISA
21 July In order to help energy sector stakeholders understand the new cyber risks to their information technology (IT) and operational technology (OT) systems and to measure the maturity of their cybersecurity capabilities, the US DOE has released version 2.0 of the Cybersecurity Capability Maturity Model, first published in 2012. This now addresses current issues such as increasing supply chain threats:
Department of Energy Releases Updated Cybersecurity Capability Maturity Model | Department of Energy
Cybersecurity Capability Maturity Model (C2M2) | Department of Energy
21 July The “aftershocks” of the cyber attacks on the Indian electricity system at the end of 2021:
21 July An ongoing attack in France linked to APT31, affecting several French organisations:
🇫🇷/🇬🇧 Campagne d’attaque du mode opératoire APT31 ciblant la France – CERT-FR (ssi.gouv.fr)
22 July Cyber attack on South African ports?
EXCLUSIVE-Cyber attack disrupts major South African port operations | Reuters
28 July Webinar: Scanners, Tunnels, and Sims, Oh My! Control Things with Justin Searle
Registration (gotowebinar.com)
Translated by DeepL