19 July A post on the legal aspects of managing industrial cyber risks:

5 Steps For Legal Teams To Mitigate Industrial Cyber Risk – Law360

20 July CISA has issued an alert over an older Chinese spearphishing activity targeting US oil and gas pipeline companies:

Chinese Gas Pipeline Intrusion Campaign, 2011 to 2013 | CISA

21 July In order to help energy sector stakeholders understand the new cyber risks to their information technology (IT) and operational technology (OT) systems and to measure the maturity of their cybersecurity capabilities, the US DOE has released version 2.0 of the Cybersecurity Capability Maturity Model, first published in 2012. This now addresses current issues such as increasing supply chain threats:

Department of Energy Releases Updated Cybersecurity Capability Maturity Model | Department of Energy

Cybersecurity Capability Maturity Model (C2M2) | Department of Energy

21 July The “aftershocks” of the cyber attacks on the Indian electricity system at the end of 2021:

India’s four regional load despatch centres faced cyberattacks: Govt | #cybersecurity | #cyberattack – National Cyber Security News Today

21 July An ongoing attack in France linked to APT31, affecting several French organisations:

🇫🇷/🇬🇧 Campagne d’attaque du mode opératoire APT31 ciblant la France – CERT-FR (

22 July Cyber attack on South African ports?

EXCLUSIVE-Cyber attack disrupts major South African port operations | Reuters

28 July Webinar: Scanners, Tunnels, and Sims, Oh My! Control Things with Justin Searle

Registration (

Translated by DeepL