The Cybersecurity and Infrastructure Security Agency (CISA) is urging critical infrastructure operators to implement cybersecurity best practices following Iranian-affiliated groups that have targeted exploits against United States critical infrastructure.
The advanced persistent threat (APT) actors are conducting the cyber attacks against operational technology devices including Rockwell Automation/Allen-Bradley programmable logic controllers (PLC). According to CISA, this activity has led to several malicious interruptions on Supervisory Control and Data Acquisition (SCADA) systems and Human Machine Interface (HMI) data, resulting in operational disruption and financial loss.
The group is targeting several industries, including water and wastewater, energy, and government services and facilities. According to the release, the attacks are intended to cause disruptive effects within the United States.
“U.S. organizations should urgently review the tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs) in this advisory for indications of current or historical activity on their networks, and apply the recommendations listed in the Mitigations section of this advisory to reduce the risk of compromise,” the release states.
You can also find a list of key follow-up actions in the release if you believe your system may have been involved in the attack or may be vulnerable to one.
READ MORE: “Combatting Cyber Threats Against Critical Infrastructure: Essential Tips and Resources”
SitePro partners with critical infrastructure operators of all sizes to help them securely manage their equipment. Our award-winning software has been recognized by various government entities such as the Department of Defense, Homeland Security, Army, Navy, and Air Force for its impact on national security.
Our subscription-based software ensures your network configurations and firewalls are always up-to-date with the latest technology and upgrades. Real-time data collection and analysis allows your operators to be alerted to any unusual changes to your operations, and our real-time remote control ability allows them to react promptly.
Users can easily be added and removed from your SitePro platform, so only authorized operators have access to your critical infrastructure. Our customer success team also ensures your water operators are properly trained in using the software, so you can monitor and control your water and wastewater operations with confidence.
To learn more about our technology and how to leverage it to protect your critical infrastructure, give us a call at 806-687-5326.
