CISA and EPA Launch Water Sector Cyber Toolkit
Amid the recent string of critical water infrastructure cyber attacks, the Cybersecurity and Infrastructure Security Agency (CISA) and the Environmental Protection Agency (EPA) co-launched a toolkit to fortify the cybersecurity posture of water and wastewater systems in the United States.
The water sector cyber toolkit serves as a guide to mitigate threats targeting the sector, complete with a list of recommended cybersecurity resources.
US Government Shuts Down Chinese Malware
The US administration-authorized counter-attack claimed to shut down the Chinese nation-state-sponsored ‘KV Botnet’ malware attack targeting US critical infrastructure.
The US Attorney’s Office in the Southern District of Texas issued a press release claiming that the Chinese ‘Volt Typhoon’ hackers infected SOHO routers with the ‘KV Botnet’ payload across the country, which was ultimately shut down and ‘deleted’ from the routers.
Cloudflare Affected by Data Breach
Cloudflare revealed that its systems were breached through stolen credentials, resulting in 76 stolen source code repositories.
Due to the nature of the stolen repositories, Cloudflare suspects the attackers behind the leak to be nation-state sponsored. Since the attack, Cloudflare rotated over 5,000 credentials, carried out forensic triages, and rebooted servers globally to mitigate the attack.
