The recent ransomware attack on a major petroleum pipeline Colonial pipeline demonstrates that the cybersecurity of pipeline systems is critical to our z
Physical attacks against network infrastructure; and
Any other cybersecurity incident that disrupts systems or facilities, or otherwise has the potential to cause operational disruption that adversely affects the safe and efficient transportation of liquids and gases including, but not limited to impacts to a large number of customers, critical infrastructure or core government functions, or impacts national security, economic security or public health and safety or have the potential to disrupt system or facility operations; and
Designate a
Cybersecurity Coordinator, including a primary coordinator and at least one alternate, and provide their names, titles, phone numbers, and email addresses to TSA within seven days of the Security Directive s effective date, commencement of new operations, or certain other changes.
Security News in Review: SolarWinds Threat Group Launches New Phishing Campaign
Community Chats Webinars Library Security News in Review: SolarWinds Threat Group Launches New Phishing Campaign
Welcome to your weekly roundup of cybersecurity news. In the current edition, you’ll find information about a new campaign by the threat group behind the SolarWinds supply chain attack, Belgian authorities closing a campaign they think originated in China, and information on a new cybersecurity directive for pipeline operators.
Read on for the news!
SolarWinds hackers are behind a widespread phishing campaign impersonating USAID, Microsoft says The same adversary group behind the SolarWinds supply chain attack is now sending out phishing emails masquerading as USAID, Microsoft said in a new report. The threat group is targeting 150 organizations across 24 countries and has targeted 3,000 individual accounts in a blitz of phishing emails since May 25. They’re currently us
DHS Orders Pipeline Operators to Report Cyberattacks, Review Security Posture
On the heels of the Colonial Pipeline attack, the US Department of Homeland Security aims to force a reticent industry to improve its ability to detect and respond to cybersecurity attacks.
The US government has issued a security directive that requires critical pipeline owners and operators to take significant steps to improve cybersecurity following the ransomware attacks on Colonial Pipeline earlier in the month.
Today s security directive, issued by the US Department of Homeland Security s (DHS) Transportation Security Administration (TSA), requires critical pipeline operators, such as Colonial Pipeline, to report all confirmed and potential cyberattacks, improve their incident response by assigning a cybersecurity coordinator, and create a cybersecurity plan based on the results of a comprehensive threat assessment conducted within the next 30 days. The US pipeline infrastructure consists of more th