Guidance

Read more about the article CISA Releases Two Industrial Control Systems Advisories

CISA Releases Two Industrial Control Systems Advisories

  • Post author:
  • Post category:

CISA released two Industrial Control Systems (ICS) advisories on May 07, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-128-01 PTC Codebeamer ICSA-24-128-02 SUBNET Substation Server CISA encourages users and administrators to review the newly released ICS advisories for technical details and mitigations.

Continue ReadingCISA Releases Two Industrial Control Systems Advisories
Read more about the article ICS Advisory: SUBNET Substation Server

ICS Advisory: SUBNET Substation Server

  • Post author:
  • Post category:

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.6 ATTENTION: Low attack complexity Vendor: Subnet Solutions Inc. Equipment: Substation Server Vulnerabilities: Reliance on Insufficiently Trustworthy Component 2. RISK EVALUATION Successful exploitation of the vulnerabilities in components used by Substation Server could allow privilege escalation, denial-of-service, or arbitrary code execution. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS SUBNET

Continue ReadingICS Advisory: SUBNET Substation Server
Read more about the article ICS Advisory: PTC Codebeamer

ICS Advisory: PTC Codebeamer

  • Post author:
  • Post category:

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 5.1 ATTENTION: Exploitable remotely/low attack complexity Vendor: PTC Equipment: Codebeamer Vulnerability: Cross-site Scripting 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to inject malicious code in the application. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS The following versions of PTC Codebeamer, an application lifecycle management

Continue ReadingICS Advisory: PTC Codebeamer
Read more about the article Fulfillment of publication obligations: guidance to bodies on OIV certifications

Fulfillment of publication obligations: guidance to bodies on OIV certifications

  • Post author:
  • Post category:

Assolvimento obblighi di pubblicazione: indicazioni agli enti sulle attestazioni Oiv Indicazioni pratiche agli enti riguardo l’attestazione sull’assolvimento degli obblighi di pubblicazione. E’ quanto ha deliberato Anac nel Consiglio del 23 aprile 2024. Nella delibera n. 213 del 23 aprile 2024 vengono fornite indicazioni a amministrazioni pubbliche, enti pubblici economici, ordini professionali, società e enti di

Continue ReadingFulfillment of publication obligations: guidance to bodies on OIV certifications
Read more about the article Agencies Issue Guide to Assist Community Banks to Develop and Implement Third-Party Risk Management Practices

Agencies Issue Guide to Assist Community Banks to Develop and Implement Third-Party Risk Management Practices

  • Post author:
  • Post category:

About The Federal Deposit Insurance Corporation (FDIC) is an independent agency created by the Congress to maintain stability and public confidence in the nation’s financial system. Learn about the FDIC’s mission, leadership, history, career opportunities, and more. Learn More About the FDIC ,Resources The FDIC provides a wealth of resources for consumers, bankers, analysts, and

Continue ReadingAgencies Issue Guide to Assist Community Banks to Develop and Implement Third-Party Risk Management Practices