Cyber Security - ACUMEN

Cyber Security

Protect your assets and safeguard your company's reputation by staying informed. Stay ahead of important changes and news with our cyber security blogs, designed specifically for power utilities in North America. We keep you informed on potential threats, CVEs, the newest trends, industry best practices, and industry news, all to help you keep your organization running as securely and risk-free as possible.

Critical Vulnerability in On-Premises Exchange Servers: Microsoft Urges Admins to Patch Now

Critical Vulnerability in On-Premises Exchange Servers: Microsoft Urges Admins to Patch Now

Microsoft has recently urged administrators to install the latest Cumulative Update (CU) and Security Updates (SU) on their on-premises Exchange servers to secure against potential cyber threats.

Protecting Your Assets using Holistic Security Solutions

Protecting Your Assets using Holistic Security Solutions

Similar to the cyber security attacks that have been experienced by many electric utilities, physical security threats are also on the rise. As stated in the news, attacks on electrical systems were up by nearly 80% in 2022 compared to the previous year.

Blue Remote Terminal Unit (RTU) on a wooden desk.

Hacktivist group GhostSec claims first-ever Ransomware Attack against an RTU

Hacktivist group GhostSec, an affiliate of Anonymous, claims it executed the first-ever ransomware attack on a RTU (Remote Terminal Unit) as part of its "OpRussia" operation with GhostSec ransomware.

Cyber Security Awareness Month Part 3: Proven Techniques on How to Implement Effective Cyber Security Governance Practices for Your Program

Cyber Security Awareness Month Part 3: Proven Techniques on How to Implement Effective Cyber Security Governance Practices for Your Program

In appreciation for Cyber Security Awareness Month during October, we are excited to provide a three-part article series on Cyber Security Risk Management for Critical Infrastructure Executives and Board Directors. This series will cover the following topics: 1. The Increasingly Threatening Cyber Threat Landscape for Critical Infrastructure Operators 2. Guidelines

Cyber Security Awareness Month Series Part 2: How to Build an Effective Cyber Security Risk Management Program

Cyber Security Awareness Month Series Part 2: How to Build an Effective Cyber Security Risk Management Program

In appreciation for Cyber Security Awareness Month during October, we are excited to provide a three-part article series on Cyber Security Risk Management for Critical Infrastructure Executives and Board Directors. This series will cover the following topics: 1. The Increasingly Threatening Cyber Threat Landscape for Critical Infrastructure Operators 2. Guidelines

Cyber Security Awareness Month Series Part 1: The Basics of Cyber Risk Management for Critical Infrastructure Executives and Board Directors

Cyber Security Awareness Month Series Part 1: The Basics of Cyber Risk Management for Critical Infrastructure Executives and Board Directors

In appreciation for Cyber Security Awareness Month during October, we are excited to provide a three-part article series on Cyber Security Risk Management for Critical Infrastructure Executives and Board Directors. This series will cover the following topics: 1. The Increasingly Threatening Cyber Threat Landscape for Critical Infrastructure Operators 2. Guidelines

Agencies Warn of Cyber Threats Targeting ICS/SCADA Devices

Agencies Warn of Cyber Threats Targeting ICS/SCADA Devices

The Department of Energy (DOE), the Cybersecurity and Infrastructure Security Agency (CISA), the National Security Agency (NSA), and the Federal Bureau of Investigation (FBI) release a joint Cybersecurity Advisory (CSA) to warn that certain advanced persistent threat (APT) actors have exhibited the capability to gain full system access to multiple

The Cyber Incident Reporting for Critical Infrastructure Act

The Cyber Incident Reporting for Critical Infrastructure Act

U.S. Congress passed landmark legislation that mandates critical infrastructure providers and federal agencies promptly report cyberattacks and ransomware payments to the Cybersecurity and Infrastructure Security Agency. Read the Fact Sheet here! Fact Sheet Cyber Incident Reporting for CI Act 2021 Draft Fact-Sheet-Cyber-Incident-Reporting-for-CI-Act-2021-Draft.pdf 206 KB download-circle

Supply Chain/Third Party Breaches – Your New #1 Highest Cyber Risk

Supply Chain/Third Party Breaches – Your New #1 Highest Cyber Risk

For years the security community has viewed internal resources as presenting the greatest cyber risk to an entity. In 2021, shortly on the heels of the much-publicized SolarWinds breach, as well as many other supply chain/third party cyber breaches, it can be argued that supply chain/third parties now

Mapping of CIP Standards to NIST CSF

Mapping of CIP Standards to NIST CSF

On July 27th, 2020, the North American Reliability Corporation (NERC) released new reference material for mapping CIP Standards to the NIST Cybersecurity Framework. The latest update from NERC provides much needed guidance on how NERC CIP standards are represented in a NIST profile. Acumen has developed an integrated cybersecurity program