On This Page
Department of Homeland Security
The Industrial Control Systems Cyber Emergency Response Team (ICS-CERT)
The Industrial Control Systems Cyber Emergency Response Team (ICS-CERT) works to reduce risks within and across all critical infrastructure sectors by partnering with law enforcement agencies and the intelligence community and coordinating efforts among Federal, state, local, and tribal governments and control systems owners, operators, and vendors. Additionally, ICS-CERT collaborates with international and private sector Computer Emergency Response Teams (CERTs) to share control systems-related security incidents and mitigation measures.
Control Systems Advisories and Reports
Alerts provide timely notification to critical infrastructure owners and operators concerning threats to critical infrastructure networks.
Advisories provide timely information about current security issues, vulnerabilities, and exploits.
We provide this newsletter as a service to personnel actively engaged in the protection of critical infrastructure assets.
|Joint Security Awareness Reports (JSARs)|
ICS-CERT coordinates with US-CERT and other partners to develop Joint Security Awareness Reports (JSARs) to provide situational awareness for the public on cybersecurity issues.
Technical Information Papers (TIPs), Annual Reports (Year in Review), and other products that ICS-CERT believes are of interest to persons engaged in protecting industrial control systems.
What’s important is that OpenSSL is widely employed to protect online privacy and transactions and up until April 8, it was very broken.Thursday, April 24, 2014 - 11:11
Terrorists seize control of the electric grid and natural gas distribution, using only computers. It’s only the stuff of Hollywood, so far. But state officials released a report Monday that reflects a growing concern that utilities must harden their defenses against cyber attacks.Wednesday, April 16, 2014 - 11:22
The U.S. electric grid is constantly under attack despite attempts by utilities to boost physical security and cyberdefenses. Regulators have increasingly focused on physical security of the grid since last year’s attack on a Pacific Gas and Electric Co. substation in San Jose, California, where unknown attackers cut telephone lines to the Metcalf substation, then disabled seventeen transformers with precise gunfire.Tuesday, March 25, 2014 - 11:25
ICS-CERT is pleased to announce the launch of “Cybersecurity for Industrial Control Systems (210W).” This course is an online web based version of our 101 and 201 instructor led courses.Tuesday, March 18, 2014 - 12:04
Healthcare Industry Still Lacking in Cyber Threat Preparedness, While Cyber Attacks Targeted at Industry IncreaseHITRUST, in partnership with the U.S. Department of Health and Human Services is announcing they will conduct monthly cyber threat briefings. The briefings will aid organizations to better understand current and probable cyber threats relevant to organizations in the healthcare industry and share best practices for cyber threat defense and response.Friday, March 14, 2014 - 11:47
Certec atvise scada OpenSSL Heartbleed Vulnerability
This advisory provides mitigation details for the OpenSSL Heartbleed vulnerability in the Certec atvise scada product.04/24/2014 - 13:26
Siemens SIMATIC S7-1200 CPU Web Vulnerabilities
This advisory provides mitigation details for HTML injection and cross site scripting attacks in the Siemens SIMATIC S7-1200 CPU (V2.X and V3.X) family.04/24/2014 - 13:23
Festo CECX-X-(C1/M1) Controller Vulnerabilities
This advisory was originally posted to the US-CERT secure Portal library on March 25, 2014, and is now being released to the NCCIC/ICS-CERT web site. This advisory provides vulnerability details for vulnerabilities in the Festo CECX-X-C1 and CECX-X-M1 controllers.04/24/2014 - 13:20
InduSoft Web Studio Directory Traversal Vulnerability
This advisory was originally posted to the US-CERT secure Portal library on April 17, 2014, and is now being released to the NCCIC/ICS-CERT web site. This advisory provides mitigation details for a Directory Traversal vulnerability affecting the InduSoft Web Studio application.04/24/2014 - 13:19
Situational Awareness Alert for OpenSSL Vulnerability (Update D)
This alert update provides additional information, updating NCCIC/ICS-CERT Alert titled ICS-ALERT-14-009-01C Situational Awareness Alert for OpenSSL Vulnerability (Update C) that was published April 17, 2014, on the ICS-CERT web site.04/23/2014 - 12:43
Siemens SINEMA Vulnerabilities
This advisory provides mitigation details for vulnerabilities in the Siemens SINEMA server.04/17/2014 - 13:41
Innominate mGuard OpenSSL HeartBleed Vulnerability (Update A)
This updated advisory provides mitigation details for the HeartBleed vulnerability in devices running mGuard firmware.04/17/2014 - 10:51
(UPDATE) FBI Snort Signatures (Heartbleed) -- April 2014
04/17/2014 - 09:07
Progea Movicon SCADA Information Disclosure Vulnerability
This advisory provides mitigation details for a disclosure vulnerability in the Progea Movicon application.04/15/2014 - 11:29
Siemens Industrial Products OpenSSL HeartBleed Vulnerability
This advisory provides mitigation details for the OpenSSL vulnerability in several Siemens industrial products.04/15/2014 - 10:13