critical infrastructure

74,000 Fortinet firewall credentials exposed in FortiBleed data leak

credentials, critical infrastructure, Data leak, data theft, Don't miss, enterprise, firewall, Fortinet, Government, Hot stuff, Hudson Rock, News, VPN /

74,000 Fortinet firewall credentials exposed in FortiBleed data leak 2026-06-18 at 15:10 By Zeljka Zorz A Russian-speaking cybercriminal group has stolen credentials contained in the configuration files of nearly 74,000 Fortinet firewalls and VPN gateways around the world. The data was accidentally exposed by the group on a server, along with other artifacts and tools, […]

74,000 Fortinet firewall credentials exposed in FortiBleed data leak Read More »

The checklist problem behind critical infrastructure cyber safety

asset discovery, Compliance, critical infrastructure, cyber resilience, cyber risk, cybersecurity, Don't miss, Government, ICS/SCADA, News, policy, regulation, research, USA /

The checklist problem behind critical infrastructure cyber safety 2026-06-17 at 07:00 By Anamarija Pogorelec An asset owner can meet major federal cyber compliance standards and still run equipment that lacks the engineering to withstand an attack or a failure. New research from George Mason University examines how United States cyber policy defines reasonable care for

The checklist problem behind critical infrastructure cyber safety Read More »

CISA: Critical Infrastructure Must Master Isolation, Recovery

CI Fortify, CISA, critical infrastructure, Government, guidance, ICS/OT, Incident Response, isolation, OT, recovery /

CISA: Critical Infrastructure Must Master Isolation, Recovery 2026-05-06 at 16:42 By Eduard Kovacs The agency has issued guidance to help critical infrastructure operators prepare for cyberattacks by foreign threat actors. The post CISA: Critical Infrastructure Must Master Isolation, Recovery appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

CISA: Critical Infrastructure Must Master Isolation, Recovery Read More »

Iranian cyber activity hits US energy, water, and government networks

CISA, critical infrastructure, cybersecurity, energy sector, FBI, Government, News, NIST, NSA /

Iranian cyber activity hits US energy, water, and government networks 2026-04-08 at 15:06 By Anamarija Pogorelec U.S. government agencies on Tuesday warned American organizations about ongoing cyber activity targeting OT and PLC devices, including those manufactured by Rockwell Automation and Allen-Bradley, across multiple critical infrastructure sectors. The activity has been attributed to Iranian-affiliated APT actors

Iranian cyber activity hits US energy, water, and government networks Read More »

Researchers release tool to detect stealthy BPFDoor implants in critical infrastructure networks

backdoor, critical infrastructure, Don't miss, Hot stuff, Linux, Malware, News, Rapid7, remote access, telecommunications /

Researchers release tool to detect stealthy BPFDoor implants in critical infrastructure networks 2026-03-26 at 15:52 By Zeljka Zorz Telecommunications providers around the world have been dealing with the burrowing efforts of the China-linked APTs for many years now. To help them identify hard-to-detect implants used by the China-based group dubbed Red Menshen, Rapid7 researchers have

Researchers release tool to detect stealthy BPFDoor implants in critical infrastructure networks Read More »

Submarine cables move to the center of critical infrastructure security debate

critical infrastructure, networking, News, report, resilience /

Submarine cables move to the center of critical infrastructure security debate 2026-03-09 at 07:48 By Anamarija Pogorelec The cables running along the ocean floor carry the overwhelming majority of the world’s cross-border data traffic, and for most of their operational history they have attracted little strategic attention. That is changing. A new sector report from

Submarine cables move to the center of critical infrastructure security debate Read More »

Cybersecurity is now the price of admission for industrial AI

Artificial Intelligence, Cisco, critical infrastructure, cybersecurity, Don't miss, ICS/SCADA, News, report /

Cybersecurity is now the price of admission for industrial AI 2026-03-04 at 07:17 By Mirko Zorz Industrial organizations are accelerating AI deployment across manufacturing, utilities, and transportation and running straight into a security problem. Cisco’s 2026 State of Industrial AI Report, based on responses from more than 1,000 decision-makers across 19 countries, finds that cybersecurity

Cybersecurity is now the price of admission for industrial AI Read More »

Industrial networks continue to leak onto the internet

automation, CISO, critical infrastructure, cybersecurity, Don't miss, enterprise, Hot stuff, News, Palo Alto Networks, report, Siemens /

Industrial networks continue to leak onto the internet 2026-02-27 at 07:30 By Mirko Zorz Industrial operators continue to run remote access portals, building automation servers, and other operational technology services on public IP address ranges. Palo Alto Networks, Siemens, and Idaho National Laboratory describe the scope of that exposure in the Intelligence-Driven Active Defense Report

Industrial networks continue to leak onto the internet Read More »

United Airlines CISO on building resilience when disruption is inevitable

CISO, critical infrastructure, cyber risk, cybersecurity, Don't miss, Features, Hot stuff, News, opinion, Risk Management, strategy, travel industry, United Airlines /

United Airlines CISO on building resilience when disruption is inevitable 2026-02-09 at 09:09 By Mirko Zorz Aviation runs on complex digital systems built for stability, safety, and long lifecycles. That reality creates a unique cybersecurity challenge for airlines, where disruption can quickly become an operational and public trust crisis. In this Help Net Security interview,

United Airlines CISO on building resilience when disruption is inevitable Read More »

Cyberspy Group Hacked Governments and Critical Infrastructure in 37 Countries

China, China APT, critical infrastructure, Government, Malware & Threats, Nation-State, rootkit, Shadow Campaigns /

Cyberspy Group Hacked Governments and Critical Infrastructure in 37 Countries 2026-02-05 at 13:02 By Eduard Kovacs Palo Alto Networks has not attributed the APT activity to any specific country, but evidence points to China. The post Cyberspy Group Hacked Governments and Critical Infrastructure in 37 Countries appeared first on SecurityWeek. This article is an excerpt

Cyberspy Group Hacked Governments and Critical Infrastructure in 37 Countries Read More »

When open science meets real-world cybersecurity

CISO, collaboration, critical infrastructure, cybersecurity, Don't miss, Features, News, opinion, strategy /

When open science meets real-world cybersecurity 2026-01-27 at 09:44 By Mirko Zorz Scientific research environments are built for openness and collaboration, often prioritizing long-term discovery over traditional enterprise security. In this Help Net Security interview, Matthew Kwiatkowski, CISO at Fermilab, America’s particle physics and accelerator laboratory, discusses where cybersecurity blind spots emerge, why availability can

When open science meets real-world cybersecurity Read More »

EU Plans Phase Out of High Risk Telecom Suppliers, in Proposals Seen as Targeting China

China, critical infrastructure, Europe, Government, Huawei, Security Infrastructure /

EU Plans Phase Out of High Risk Telecom Suppliers, in Proposals Seen as Targeting China 2026-01-20 at 22:00 By Associated Press Under the new rules, measures for 5G cybersecurity would become mandatory. The post EU Plans Phase Out of High Risk Telecom Suppliers, in Proposals Seen as Targeting China appeared first on SecurityWeek. This article

EU Plans Phase Out of High Risk Telecom Suppliers, in Proposals Seen as Targeting China Read More »

Global tensions are pushing cyber activity toward dangerous territory

critical infrastructure, cybersecurity, disinformation, Don't miss, Features, Hot stuff, News, strategy, World Economic Forum /

Global tensions are pushing cyber activity toward dangerous territory 2026-01-19 at 09:48 By Sinisa Markovic Cybersecurity is inseparable from geopolitics. Ongoing conflicts, sanctions, trade wars, geoeconomic rivalry, and technological competition have pushed state competition into cyberspace. States use cyber operations to exert pressure on rivals, enabling disruption without resorting to conventional weapons. Infrastructure vulnerabilities in

Global tensions are pushing cyber activity toward dangerous territory Read More »

Amazon: Russian Hackers Now Favor Misconfigurations in Critical Infrastructure Attacks

Amazon, APT, critical infrastructure, Malware & Threats, Nation-State, Russia, Sandworm /

Amazon: Russian Hackers Now Favor Misconfigurations in Critical Infrastructure Attacks 2025-12-16 at 15:25 By Eduard Kovacs After years of exploiting zero-day and n-day vulnerabilities, Russian state-sponsored threat actors are shifting to misconfigured devices. The post Amazon: Russian Hackers Now Favor Misconfigurations in Critical Infrastructure Attacks appeared first on SecurityWeek. This article is an excerpt from

Amazon: Russian Hackers Now Favor Misconfigurations in Critical Infrastructure Attacks Read More »

AI-driven threats are heading straight for the factory floor

Artificial Intelligence, attacks, CISO, collaboration, Compliance, critical infrastructure, cybersecurity, Don't miss, Features, Hot stuff, News, penetration testing, Siemens, strategy, threat modeling /

AI-driven threats are heading straight for the factory floor 2025-12-09 at 09:07 By Mirko Zorz In this Help Net Security interview, Natalia Oropeza, Chief Cybersecurity Officer at Siemens, discusses how industrial organizations are adapting to a shift in cyber risk driven by AI. She notes that in-house capability, especially for OT response and recovery, is

AI-driven threats are heading straight for the factory floor Read More »

Smart grids are trying to modernize and attackers are treating it like an invitation

access control, Analog Devices, critical infrastructure, cybersecurity, Don't miss, energy sector, Features, firmware, hardware, Hot stuff, News, strategy, supply chain, threats /

Smart grids are trying to modernize and attackers are treating it like an invitation 2025-12-04 at 09:05 By Mirko Zorz In this Help Net Security interview, Sonia Kumar, Senior Director Cyber Security at Analog Devices, discusses how securing decentralized smart grids demands a shift in defensive strategy. Millions of distributed devices are reshaping the attack

Smart grids are trying to modernize and attackers are treating it like an invitation Read More »

Your critical infrastructure is running out of time

Cisco, critical infrastructure, cyber resilience, cybersecurity, News, patching, policy, report /

Your critical infrastructure is running out of time 2025-11-27 at 08:05 By Anamarija Pogorelec Cyber attackers often succeed not because they are inventive, but because the systems they target are old. A new report by Cisco shows how unsupported technology inside national infrastructure creates openings that attackers can exploit repeatedly. The findings show how widespread

Your critical infrastructure is running out of time Read More »

Quantum encryption is pushing satellite hardware to its limits

critical infrastructure, cybersecurity, Don't miss, Encryption, Features, News, quantum computing, security standard, Swiss Armed Forces /

Quantum encryption is pushing satellite hardware to its limits 2025-11-24 at 09:11 By Mirko Zorz In this Help Net Security interview, Colonel Ludovic Monnerat, Commander Space Command, Swiss Armed Forces, discusses how securing space assets is advancing in response to emerging quantum threats. He explains why satellite systems must move beyond traditional cryptography to remain

Quantum encryption is pushing satellite hardware to its limits Read More »

When IT fails, OT pays the price

critical infrastructure, cybercriminals, cybersecurity, manufacturing sector, News, patching, report, threats, transportation, Trellix /

When IT fails, OT pays the price 2025-11-20 at 07:02 By Anamarija Pogorelec State groups, criminal crews, and hybrid operators are all using familiar IT entry points to reach systems that support industrial processes, according to the latest Operational Technology Threat Report from Trellix. The report covers attacks observed from April through September 2025 and

When IT fails, OT pays the price Read More »

Internet slowly recovers after far-reaching Cloudflare outage

Cloudflare, critical infrastructure, Don't miss, Hot stuff, News /

Internet slowly recovers after far-reaching Cloudflare outage 2025-11-18 at 17:16 By Zeljka Zorz A currently undisclosed issue has crippled Cloudflare’s network and has rendered a large swathe of internet’s most popular sites and services temporily inaccessible today. Some of the sites and services affected by the Cloudflare outage (Source: Down Detector) What happened? Cloudflare is

Internet slowly recovers after far-reaching Cloudflare outage Read More »

Scroll to Top