An attack on remote monitoring devices in Japan underscores an emerging cybersecurity threat to the rapidly growing solar component of the power grid. Inverters used with solar panels could pose a more significant risk. In what might be the first publicly confirmed cyberattack on the solar power grid infrastructure, Japanese media recently reported that malicious actors hijacked 800 SolarView Compact remote monitoring devices made by industrial control electronics manufacturer Contec at solar power generation facilities to engage in bank account thefts.
Building resilient supply chains: Empirical evidence on the contributions of ambidexterity, risk management, and analytics capability
Supply chain disruptions are a major managerial issue due to their detrimental effects on businesses and supply chain networks. Organizations must develop a resilient strategy, which is the ability to survive, adapt, and grow during all kinds of disruptions. The main purpose of this research is to empirically validate the impact of supply chain (SC) ambidexterity and risk management, on SC resilience and the mediating effect of SC analytics capability on their relationship.
From Warnings to Action: Preparing America’s Infrastructure for Imminent Cyber Threats
When FBI Director Christopher Wray testified before the House Select Committee on the Chinese Communist Party in January, he painted a chilling picture of foreign adversarial cyber-agents pre-positioned in the networks of U.S. critical infrastructure operators ready to strike at a moment of Beijing’s choosing.
Innovations in ICT Supply Chain Risk Management Conference
Wednesday, June 12, 2024
Time 9:00 AM – 5:15 PM ET
Location type In-person
Location McLean VA
Delivery: Live
Event type: Conference
The Cybersecurity and Infrastructure Security Agency (CISA) will host the first annual Information and Communications Technology (ICT) Supply Chain Risk Management (SCRM) Task Force Conference, titled Innovations in ICT Supply Chain Risk Management on June 12 at the MITRE Corporation in McLean, VA. Speakers and panelists will include CISA Director Jen Easterly and other senior officials from CISA, as well as leaders from the national security and cyber community, Task Force members, C-suite executives, and SCRM experts. Come engage with these leaders as they discuss critical and emerging topics, technologies, and resources for mitigating and reducing risks to the global ICT supply chain.
34th Annual FISSEA Conference Theme: Refining Cybersecurity Culture: WIIFM
Register for the 34th Annual FISSEA Conference! Join us in-person on May 14-15, 2024 for two days of presentations, panels, and exhibits offering information on strengthening cybersecurity awareness and training programs in the federal government.
May 14, 2024 | 8-5PM ET
May 15, 2024 | 8-3PM ET
The National Cybersecurity Center of Excellence (NCCoE) is located at 9700 Great Seneca Highway, Rockville, MD 20850.
The Street Lights In Leicester City Cannot Be Turned Off Due To A Cyber Attack
The Leicester City Council suffered a cyber attack that severely impacted the authority’s services in March and led to the leak of confidential documents. The ransomware group behind the attack leaked multiple documents, including rent statements and applications to buy council houses. The attack occurred on March 7 and crippled the city council’s IT systems. Some lights have been stuck in all day due to the cyber attack and the council is unable to turn them off.
STAR: Shining Light on Space Supply Chain Risk
Ronald Birk, Lori W. Gordon, and Eleanor Mitch outline the factors behind the need for a system that dynamically updates space supply chain information. Along with higher demand, there is competition among sectors, such as medical device and auto makers, for certain commodities and many rare earth elements. The authors propose a distributed ledger technology (DLT) system called “Space supply chain Topology for Assessing Risk (STAR)” that would create a nexus for all stakeholders in the space supply chain community.
AT&T now says data breach impacted 51 million customers
AT&T is notifying 51 million former and current customers, warning them of a data breach that exposed their personal information on a hacking forum. However, the company has still not disclosed how the data was obtained. These notifications are related to the recent leak of a massive amount of AT&T customer data on the Breach hacking forums that was offered for sale for $1 million in 2021.
Women in Cybersecurity (WiCyS) Conference
Thursday, April 11, 2024 – Saturday, April 13, 2024
Location type: In-person
Location: Nashville TN
Delivery: Live
Event type: Conference
CISA is exhibiting and speaking at the Women in Cybersecurity (WiCyS) on April 11-13, 2024, in Nashville, TN.
This three-day conference is the flagship event to recruit, retain and advance women in cybersecurity — all while creating a community of engagement, encouragement and support at a technical conference for women and allies. WiCyS brings together women and allies in cybersecurity from academia, research, government, and industry.
The event will occur at Gaylord Opryland Resort & Convention Center, located at 2800 Opryland Drive, Nashville, TN 37214.
Alert: New Phishing Attack Delivers Keylogger Disguised as Bank Payment Notice
A new phishing campaign has been observed leveraging a novel loader malware to deliver an information stealer and keylogger called Agent Tesla. Trustwave SpiderLabs said it identified a phishing email bearing this attack chain on March 8, 2024. The message masquerades as a bank payment notification, urging the user to open an archive file attachment.