The Veolia Ransomware attack in early 2024

The recent ransomware attack on Veolia North America sheds light on the vulnerabilities that critical infrastructure faces in the digital age. As Veolia collaborates with law enforcement and third-party forensics experts to assess the full impact of the attack, the incident underscores the imperative to fortify essential systems against evolving cyber threats. Veolia North America, a subsidiary of the global conglomerate Veolia, recently fell victim to a ransomware attack targeting its Municipal Water division. The attack disrupted back-end systems and servers, prompting the company to swiftly implement defensive measures. These included taking targeted systems offline until they could be fully restored, leading to some customers experiencing delays in utilizing online bill payment systems. The decision to take back-end systems offline for restoration demonstrates a proactive ...
קרא עוד

Safeguarding Against Cyber-Physical Threats: SIGA’s Level 0 Monitoring in Light of Mandiant’s Revelations

In the wake of the recent cyber-physical attack on Ukraine's electrical grid in October 2022, as detailed in the Mandiant report, the imperative for robust cybersecurity measures is more evident than ever. This blog post explores how SIGA's Level 0 monitoring, inspired by insights from Mandiant's revelations, emerges as a pivotal solution in defending critical infrastructure against such sophisticated attacks. Mandiant's Insights: Unraveling the Cyber-Physical Attack Mandiant's report sheds light on the intricacies of the cyber-physical attack that targeted Ukraine's electrical grid in October 2022. The Russia-linked threat actor, Sandworm, employed novel techniques, including Living off the Land (LotL) tactics, to disrupt the operational technology (OT) infrastructure, leading to an unplanned power outage and subsequent chaos. As the threat landscape evolves, defending ...
קרא עוד