Patrick CoyleReview – Public ICS Disclosures – Week of 12-20-25 – Relatively light Christmas week – 7 vendor disclosures – 4 exploits – Short version – https://tinyurl.com/4mbfy6sx #icsSecurity
Public ICS Disclosures – Week of 12-20-25 – Relatively light Christmas week – 7 vendor disclosures – 4 exploits – https://tinyurl.com/89jjkawm Subscription required - #icsSecurity
ICS Advisory ProjectICS[AP] Dashboards are updated with the One updated CISA Advisory released on 12/23/25:
Mitsubishi Electric: 1 Update
ICS[AP] updated CISA ICS Advisories Master File for 12/23/25 & the following year's CSVs:
CISA_ICS_ADV_2025_12_23.csv
Available @ ICS[AP] GitHub: https://github.com/icsadvprj/ICS-Advisory-Project/tree/main
GitHub - icsadvprj/ICS-Advisory-Project: The ICS Advisory Project is an open-source project to provide DHS CISA ICS Advisories data in Comma Separated Value (CSV) format to support vulnerability analysis for the ICS/OT community. This is a community effort: please contribute to improve, expand, and maintain this data source.
The ICS Advisory Project is an open-source project to provide DHS CISA ICS Advisories data in Comma Separated Value (CSV) format to support vulnerability analysis for the ICS/OT community. This is ...
1 Update Published – 12-23-25 – Update for NCCIC-ICS advisory for vulnerabilities in products from Mitsubishi – https://tinyurl.com/4c9nte2s Subscription required #icsSecurity
Review – Public ICS Disclosures – Week of 12-13-25 – Relatively busy disclosure week – 11 vendor disclosures – 3 vendor updates – 4 researcher reports – 1 exploit – Short version – https://tinyurl.com/4bvbwu5d #icsSecurity
Public ICS Disclosures – Week of 12-13-25 – Relatively busy disclosure week – 11 vendor disclosures – 3 vendor updates – 4 researcher reports – 1 exploit – https://tinyurl.com/3jc6m3xv Subscription required #icsSecurity
TechNaduDanish authorities have publicly attributed cyber incidents affecting a water utility and election-related systems to groups assessed as state-aligned actors.
The activity has been described as part of broader hybrid operations observed across Europe, combining cyber techniques with influence and disruption efforts. Similar patterns have been reported by multiple national security agencies in recent years.
For practitioners, this reinforces the need for:
- Strong OT/ICS security controls
- Continuous monitoring of critical systems
- Clear incident response and communication strategies
What controls or frameworks have proven most effective in protecting critical infrastructure environments?
Engage in the discussion and follow TechNadu for practitioner-focused cybersecurity reporting.
#InfoSec #ICSsecurity #CriticalInfrastructure #ThreatIntelligence #CyberOperations #Resilience #TechNadu
ICS[AP] Dashboards are updated with the 9 CISA Advisories released on 12/18/25:
Inductive Automation: 1 New
Schneider Electric: 1 New [KEV Match]
National Instruments: 1 New
Mitsubishi Electric Iconics DigitalSolutions: 1 New
Siemens: 1 New
Advantech: 1 New
Rockwell Automation: 1 New
Axis Communications: 1 New
Mitsubishi Electric: 1 Update
ICS[AP] updated CISA ICS Advisories Master File for 12/18/25 & the following year's CSVs:
CISA_ICS_ADV_2025_12_18.csv
CISA_ICS_ADV_2024_12_18_25.csv
Available @ ICS[AP] GitHub: https://github.com/icsadvprj/ICS-Advisory-Project/tree/main
GitHub - icsadvprj/ICS-Advisory-Project: The ICS Advisory Project is an open-source project to provide DHS CISA ICS Advisories data in Comma Separated Value (CSV) format to support vulnerability analysis for the ICS/OT community. This is a community effort: please contribute to improve, expand, and maintain this data source.
The ICS Advisory Project is an open-source project to provide DHS CISA ICS Advisories data in Comma Separated Value (CSV) format to support vulnerability analysis for the ICS/OT community. This is ...