Discover and read the best of Twitter Threads about #ICS

Most recents (9)

Thread-Review - #DCP #AZDCP #LBDCP has failed…
August 2019 - @CAPArizona – Colorado River Drought Contingency Plan - Fact Sheet page 1 – “DCP will begin in *2020* & Risk of Lake Mead going below 1025’ *8% with #DCP*” @azwater @AZWaterFacts @AMWUA #azwater #AZleg
“A Colorado River water shortage does not mean that Arizona is in a water crisis.
Arizona residents can now be assured that future water supplies are more reliable and secure. The economies supporting the state can continue to thrive based on this secure water supply.”@CAPArizona
1/ 31/2019 Arizona Republic Editorial Board – was giddy (and contradictory) with praise: "Years from now, you'll thank Arizona for joining the Drought Contingency Plan...
“Arizona has done something truly monumental… All DCP does is buy us time.”
azcentral.com/story/opinion/…
Read 11 tweets
Finola ONeill shared a link.
I've worked in the #NHS for 20 years. It is already massively #privatised.
The white paper for the new "health reforms" plans to remove competition for contracts so private companies can get them without a competitive process.
And they can sit on the new #NHS #ICS boards that decide who gets the contracts. A #virgin exec already sits on the #Bristol one.
#Virgin took children's health in #Devon, did an awful job, #NHS took it back and were left to pick up the pieces
Have you just watched the #Pandemic?
#Serco Test and Trace, #PPE contracts to cronies. Billions and billions of tax payers money haemorrhaged into private consultants pockets and shareholders.
Drop your BS narrative that private is more effective and accept that the Pandemic has shown this not to be the case.
Read 13 tweets
1/ Noting for the record that were it not for @HarveyMultani I would not be #BuildingInPublic at steinman.substack.com

For those that don’t know Harvey - you should - for the many years I’ve known him he has been about 18-24 months in the future at any given time.
2/ I was skeptical, but post #1 had 400+ views within 48 hours. Not “huge,” but a strong signal that Harvey was on to something.

Second post, similar numbers (300 views). Third post, even better (750 views) helped by $$ RT’s by infosec 👑 @0xAlexei and legend @davereaboi.
3/ Two weeks in and I’m getting regular emails/messages/DM’s - “The suspense is killing me” and “just tell us what you are building already!”

Alas, if you think the “big reveal” is coming in the next few days, I hate to break it to you: we have a long way to go.
Read 13 tweets
Curious about what CETA is and why campaigners are urgently trying to stop the government from ratifying the deal?

It’s not about trade!
That part has been up and running since 2017.

It’s all about the Investment Court System (the #ICS)... (thread) Image
If governments pass laws that upset corporate profits (e.g., environmental regulations) the ICS will allow corporations to bypass national court systems to sue taxpayers (you) in private investor courts... Image
For example... the community of Rosia Montana in #Romania tried to stop an illegal gold mine from ruining their environment & displacing their residents. The Romanian courts ruled against the mine but the company, Gabriel Resources, is now suing Romania for $5.7 BILLION! Image
Read 10 tweets
🧵on stealing TeamViewer credentials

Many organizations have systems with TeamViewer actively running; some know it and manage it correctly, other have no idea it is running or where. The latter probably have multiple versions #redteam #blueteam #purpleteam #ThreatThursday 1/10
I started looking deeper into TeamViewer when @snlyngaas reported that a Florida water facility had been breached. A malicious actor used TeamViewer to login and change the levels of sodium hydroxide. The plant operator say this and no damage was done cyberscoop.com/florida-water-… 2/10
For those that speak @MITREattack we are talking about T1078 Valid Accounts: attack.mitre.org/techniques/T10…
But how were these credentials obtained? We don't know but @brysonbort spoke with #RSAC about it if you want more on the Florida water plant breach: 3/10
Read 10 tweets
An all time low for an Irish Government has been hit. By pure chance this afternoon I noticed what appeared to be a Government motion to ratify the deeply controversial EU Canada Trade Deal #CETA next Tuesday 15 Dec. Yes the one with the dreaded #ICS #ISDS clauses. Yes its true -
#CETA which so many #Greens had expressed opposition to... the one which leaves us massively exposed to claims from foreign investors .. the one we fear will create a regulatory chill making the Government even more reluctant to take effective #ClimateActions the one ..
Mairead McGuinness said could damage #Irishfarming and which we'd need to have a safeguard clause and consider a compo package for .. the day AFTER she voted for it in the EU Parliament agriland.ie/farming-news/c…
.. a nice killer blow now on top of the #Brexit
Read 12 tweets
#ICS Advisory (ICSA-20-203-01) - #Wibu-Systems #CodeMeter

* Affected? Multiple #KRITIS sectors worldwide!
* CVSSv3 score? 10.0!
* Exploitable remotely? With low skill level to exploit!
#RCE 1/3
us-cert.cisa.gov/ics/advisories…
Risk Evaluation?
#exploitation of #vulnerabilities could allow an attacker to alter & forge a license file, cause a DoS condition, potentially attain remote code execution #RCE, read heap data, and prevent normal operation of third-party software dependent on the #CodeMeter! 2/3
Vulnerabilities?
Buffer Access with Incorrect Length Value, Inadequate Encryption Strength, Origin Validation Error, Improper Input Validation, Improper Verification of Cryptographic Signature, Improper Resource Shutdown or Release! 3/3
Read 3 tweets
Parce que le #covid19 et que le #MasquesObligatoires ne permet le débat serein sur la #ventilation des locaux #QAI, je me lance dans un #thread sur cette norme complexe. Pardonnez-moi d'avance si quelques imprécisions s'y glissent ^^ ⤵️
Je me base sur le dernier avis du @HCSP qui déclare dans les avis du 24 avril et du 30 juillet que la #ventilation des locaux doit être renforcée en #EHPAD, #hopitaux et #ERP (ex : #écoles) hcsp.fr/Explore.cgi/Te…
D'ailleurs, page 3, il recommandait un certain nombre de mesures sur une #ventilation systématique des locaux, la vérification/remplacement des filtres. Il prenne l'exemple des bateaux de croisières et des restaurants avec une contamination accrue au #covid19
Read 25 tweets
Die #IT-Umgebung des indischen #AKW's Kudankulam wurde nicht nur gehackt, sondern als Command and Control Server benutzt.

Hoffentlich war die #OT nicht auch öffentlich am Netz!

#KRITIS Sektor #Energie #nuclear #nuclearsafety #Resilienz #Cyber #Security

Zur Unterscheidung:

IT sind Informationstechnische Systeme (#PC #Laptop #Windows #Office, #Buchhaltung...)

OT sind Operative Systeme (#ICS #SCADA #SPS #HMI #PLC #Steuertechnik...)
Angemessener Stand der Technik #SdT wie in #KRITIS gefordert wurde offenbar im #AKW nicht eingehalten.

Strikte #Trennung zwischen #OT-Steuersystemen und #IT ist eine wesentliche #Sicherheitsmaßnahme!

Weitere #Maßnahmen und #Forderungen finder Ihr hier.

ag.kritis.info/politische-for…
Read 5 tweets

Related hashtags

Did Thread Reader help you today?

Support us! We are indie developers!


This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3.00/month or $30.00/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!