Skip to main content
COSMICBYTEZLABS
NewsSecurityHOWTOsToolsTraining
StudyProjectsNewsletterHire MeAbout
Subscribe

Press Enter to search or Esc to close

News
Security
HOWTOs
Tools
Training
Study
Projects
Newsletter
Hire Me
About
RSS Feed
Reading List
Subscribe

Stay in the Loop

Get the latest security alerts, tutorials, and tech insights delivered to your inbox.

Subscribe NowFree forever. No spam.
COSMICBYTEZLABS

Your trusted source for IT intelligence, cybersecurity insights, and hands-on technical guides.

1941+ Articles
150+ Guides

CONTENT

  • Latest News
  • Security Alerts
  • HOWTOs
  • Checklists
  • Projects
  • Exam Prep

RESOURCES

  • Search
  • Browse Tags
  • Newsletter Archive
  • Reading List
  • RSS Feed

COMPANY

  • About Us
  • Contact
  • Privacy Policy
  • Terms of Service

© 2026 CosmicBytez Labs. All rights reserved.

System Status: Operational
All tags
51 articles

#Critical Infrastructure

All CosmicBytez Labs articles tagged #Critical Infrastructure, across news, security advisories, how-to guides, and projects.

  • NewsJul 16, 2026

    Coca-Cola Fairlife Ransomware Attack Halts All US Dairy Production

    The Coca-Cola Company filed an SEC 8-K disclosure after a ransomware attack on its Fairlife dairy subsidiary temporarily suspended all US production of Ultra-Filtered Milk, Core Power Protein Shakes, and Nutrition Plan beverages.

  • NewsJul 9, 2026

    Latvian State Forests Still Restoring Systems Weeks After Ransomware Attack

    Latvia's state-owned forest management company LVM remains in recovery mode weeks after a ransomware attack that went undetected for nearly two weeks,...

  • NewsJul 6, 2026

    Armored Likho APT Targeting Government and Electric Power Entities

    Kaspersky researchers have detailed a new campaign by Armored Likho — a threat actor overlapping with Eagle Werewolf — deploying modular RATs and the...

  • NewsletterJun 30, 2026

    June 30 Digest: BlueHammer Zero-Day, Ransomware Goes Corporate, AI Supply Chain Risks & Nation-State ICS Threats

    A Microsoft Defender zero-day fuels ransomware before any patch exists; researchers dissect how syndicate groups run HR departments and tiered pricing;...

  • NewsJun 29, 2026

    Iran, Russia, and China Target Water Systems for Sabotage

    Nation-state attackers from Iran, Russia, and China are breaching water utility systems through weak passwords, exposed PLCs, and poor network...

  • NewsJun 27, 2026

    Chinese-Speaking APT Deploys New TinyRCT Backdoor in Southeast Asia Campaign

    A Chinese-speaking advanced persistent threat actor has launched targeted attacks against government entities and critical infrastructure in Southeast...

  • NewsJun 25, 2026

    Cal Water Says No OT Systems Breached in Iranian Handala Cyberattack

    California Water Service has confirmed that Iranian hacker group Handala's cyberattack was limited to IT systems, with Mandiant's investigation finding no...

  • NewsJun 21, 2026

    Accenture to Acquire Majority Stake in Dragos, runZero, and NetRise in $4.1 Billion OT Cybersecurity Push

    Accenture's $4.1 billion acquisition of Dragos (valued at $3.25B), runZero, and NetRise marks the largest consolidation in operational technology...

  • NewsJun 21, 2026

    Google Exposes China Espionage Group UNC6508 Lurking in Networks Since 2023

    Google's Threat Intelligence Group has unmasked UNC6508, a China-linked espionage actor that silently maintained access to critical infrastructure and...

  • NewsJun 18, 2026

    Australian Sugar Producer Works to Restore Operations After Ransomware Attack

    Mackay Sugar, one of Australia's largest sugar producers, is working urgently to restore harvesting and milling operations after The Gentlemen ransomware...

  • NewsJun 17, 2026

    Hostile States Behind Three-Quarters of Attacks on Britain's Critical Infrastructure, Cyber Chief Warns

    UK NCSC CEO Richard Horne delivered a stark warning at the RUSI Annual Security Lecture: nation-state adversaries are pre-positioning inside British...

  • NewsJun 16, 2026

    Cyberattack on Russian Tech Firm Astral Disrupts Business and Government Services for a Week

    A sustained cyberattack against Russian enterprise software provider Astral has disrupted business and government services across Russia for over a week,...

  • SecurityJun 13, 2026

    CVE-2026-12183: Critical Auth Bypass in Gas Station Automation System

    A CVSS 9.8 authentication bypass in Nefteprodukttekhnika's BUK TS-G Gas Station Automation System allows any unauthenticated attacker to gain full...

  • NewsJun 10, 2026

    Cisco Customers Encounter Another SD-WAN Zero-Day Under Attack

    A seventh actively exploited zero-day in Cisco SD-WAN products this year — CVE-2026-20245 — is under attack with no patch yet available from Cisco.

  • NewsJun 7, 2026

    Over 900 US Gas Station Tank Gauge Systems Exposed to Attacks

    Over 900 US automatic tank gauge systems are exposed online with no authentication, actively targeted by attackers seeking to disrupt fuel infrastructure.

  • NewsJun 6, 2026

    Exposed Fuel Tank Gauges Under Attack in the US

    Threat actors are actively targeting Internet-exposed Automatic Tank Gauges (ATGs) at US gas stations, exploiting decades-old unprotected interfaces to…

  • NewsMay 30, 2026

    Russian Spies Aggressively Targeting Western Technology as Sanctions Bite

    Western intelligence officials warn that Moscow's espionage apparatus is deploying cyber spies, hackers, and recruited middlemen to steal dual-use...

  • SecurityMay 29, 2026

    CVE-2026-34311 — Oracle Hospitality OPERA 5 Unauthenticated RCE

    A CVSS 9.8 critical vulnerability in Oracle Hospitality OPERA 5 Property Services allows unauthenticated network attackers to fully compromise hotel...

  • SecurityMay 14, 2026

    CVE-2026-20182: Cisco Catalyst SD-WAN Controller

    A critical authentication bypass vulnerability in Cisco Catalyst SD-WAN Controller and Manager allows an unauthenticated remote attacker to bypass...

  • NewsMay 12, 2026

    UK Fines Water Supplier $1.3M for Exposing Data of 664K

    The UK's Information Commissioner's Office has fined South Staffordshire Water Plc and its parent company £963,900 ($1.3 million) after a cyberattack...

  • NewsMay 12, 2026

    West Pharmaceutical Services Hit by Disruptive Ransomware

    West Pharmaceutical Services, a global manufacturer of drug delivery systems and packaging, has taken systems offline worldwide after hackers exfiltrated...

  • SecurityMay 12, 2026

    Dell ECS and ObjectScale: Hard-Coded Credentials

    A critical CVSS 9.8 hard-coded credentials vulnerability in Dell ECS and ObjectScale allows unauthenticated local attackers to gain full filesystem access...

  • NewsMay 11, 2026

    UK Water Utility Fined £963,900 After Cl0p Lurked

    The UK's Information Commissioner's Office fined South Staffordshire Water nearly £1 million after the Cl0p ransomware group maintained undetected access...

  • SecurityMay 9, 2026

    CVE-2026-8153: Universal Robots PolyScope OS Command

    A critical OS command injection flaw in Universal Robots PolyScope Dashboard Server (CVSS 9.8) allows unauthenticated attackers to execute arbitrary...

  • SecurityApr 28, 2026

    CVE-2024-46636: NASA EOSDIS MODAPS v8.1 SQL Injection

    A critical SQL injection vulnerability in NASA's Earth Observing System Data and Information System MODAPS v8.1 allows unauthenticated attackers to...

  • NewsApr 26, 2026

    American Utility Firm Itron Discloses Breach of Internal IT

    Itron, Inc. has disclosed a cybersecurity incident via SEC Form 8-K in which an unauthorized third party accessed certain internal systems at the utility...

  • NewsApr 20, 2026

    Researchers Detect ZionSiphon Malware Targeting Israeli

    Cybersecurity researchers at Darktrace have identified ZionSiphon, a new malware specifically designed to target Israeli water treatment and desalination...

  • SecurityApr 18, 2026

    CVE-2026-6284: PLC Brute Force Password Bypass (CVSS 9.1)

    A critical vulnerability in a programmable logic controller allows unauthenticated network attackers to brute force weak passwords and gain full...

  • NewsApr 17, 2026

    Ransomware Attack Still Disrupting London Healthcare Nearly

    More than 18 months after a ransomware attack crippled hospitals in South East London, at least one NHS trust is still operating without fully restored...

  • NewsApr 7, 2026

    Medusa Ransomware Is Fast to Exploit Fresh Vulnerabilities

    SecurityWeek reports that the Medusa ransomware group has developed a dangerous capability: rapidly weaponizing newly disclosed vulnerabilities —...

  • NewsApr 7, 2026

    Medusa Ransomware Exploits Zero-Days to Deploy Ransomware

    Microsoft has raised the alarm over Medusa ransomware's unprecedented operational speed, with the group now exploiting zero-day vulnerabilities before...

  • NewsApr 3, 2026

    Claude Source Code Leak Highlights Big Supply Chain Missteps

    The accidental exposure of Anthropic's Claude Code source code via an npm packaging error is the latest reminder that software supply chains need...

  • NewsApr 3, 2026

    In Other News: ChatGPT Data Leak, Android Rootkit, Water

    This week's security stories you may have missed: a ChatGPT conversation data leak, a new Android rootkit on Google Play, a municipal water facility taken...

  • SecurityApr 1, 2026

    CVE-2026-1579: MAVLink Protocol Unauthenticated Shell Access

    A critical CVSS 9.8 vulnerability in the MAVLink drone communication protocol allows unauthenticated attackers to send arbitrary SERIAL_CONTROL commands —...

  • NewsMar 31, 2026

    State Department Reissues $10 Million Reward for Info on Iranian Hackers

    Hours after the FBI confirmed that Iranian hackers gained access to Director Kash Patel's personal email account, the U.S. State Department reissued a $10...

  • SecurityMar 9, 2026

    Critical Stack-Based Buffer Overflow in Delta Electronics

    A critical CVSS 9.8 stack-based buffer overflow in Delta Electronics COMMGR2 allows unauthenticated remote code execution, posing severe risk to...

  • SecurityMar 4, 2026

    CISA Issues Emergency Directive as Cisco SD-WAN Zero-Day

    A maximum-severity authentication bypass in Cisco Catalyst SD-WAN (CVE-2026-20127, CVSS 10.0) has been actively exploited by threat actor UAT-8616 since...

  • SecurityMar 4, 2026

    CVE-2026-28775: Unauthenticated Root RCE in IDC SFX

    A critical unauthenticated RCE vulnerability in International Datacasting Corporation's SFX Series satellite receivers allows attackers to execute...

  • NewsFeb 28, 2026

    Google Disrupts Massive Chinese Espionage Campaign

    Google's Threat Intelligence Group dismantles UNC2814, a China-linked operation that deployed a novel backdoor called GRIDTIDE abusing Google Sheets API...

  • NewsFeb 28, 2026

    Iran Plunged Into Digital Darkness: Internet Drops to 4% in Cyberattack

    During Operation 'Roar of the Lion,' a coordinated cyber offensive knocked Iran's internet connectivity down to just 4% of normal traffic, blacking out...

  • NewsFeb 27, 2026

    Leaked Documents Reveal China's 'Expedition Cloud' Cyber

    Technical documents leaked from a malware-infected developer device expose a Chinese military-linked training platform that replicates the critical...

  • SecurityFeb 26, 2026

    Cisco SD-WAN Zero-Day CVE-2026-20127 Triggers Five Eyes

    A CVSS 10.0 authentication bypass in Cisco Catalyst SD-WAN has been exploited since at least 2023. CISA issues Emergency Directive ED 26-03 as all Five...

  • NewsFeb 25, 2026

    Ransomware Forces University of Mississippi Medical Center

    A ransomware attack detected February 19 has taken down UMMC's EPIC EMR system and forced all 35 health clinics across Mississippi to close, canceling...

  • NewsFeb 24, 2026

    Japanese Semiconductor Giant Advantest Hit by Ransomware

    Advantest Corporation, the world's leading manufacturer of semiconductor test equipment supplying companies like TSMC, Intel, and Samsung, disclosed a...

  • NewsFeb 20, 2026

    CISA Loses 62% of Workforce as DHS Shutdown Guts America's

    A partial DHS shutdown since February 14 has furloughed 1,453 of CISA's 2,341 employees, halting vulnerability scanning, threat advisories, and critical...

  • NewsFeb 12, 2026

    Romania's Oil Pipeline Operator Conpet Hit by Qilin Ransomware

    The Qilin ransomware group has compromised Romania's national oil pipeline operator Conpet, exfiltrating over 1 TB of data including passports, internal...

  • NewsFeb 7, 2026

    Shadow Campaigns: State-Backed Espionage Group Breaches 70+

    Palo Alto Unit 42 reveals a state-aligned group designated TGR-STA-1030 compromised government and critical infrastructure targets in 37 countries using...

  • NewsFeb 6, 2026

    Cyberattacks on Critical Infrastructure Double in Q1 2026

    Dragos and Mandiant report a 112% increase in cyberattacks targeting energy, water, and transportation systems in the first quarter of 2026, with...

  • NewsFeb 6, 2026

    DKnife: China-Linked AitM Framework Hijacks Router Traffic

    Cisco Talos uncovers a seven-component Linux framework called DKnife that compromises routers to intercept credentials, replace downloads with trojans,...

  • NewsJan 27, 2026

    Healthcare Sector Faces Unprecedented Ransomware Surge in 2026

    Ransomware attacks against healthcare organizations have increased 67% in the first month of 2026, with multiple hospital systems reporting service disruptions.

  • NewsJan 15, 2026

    Ivanti Connect Secure Under Active Attack - CISA Issues

    CISA has issued an emergency directive requiring federal agencies to mitigate Ivanti Connect Secure vulnerabilities within 48 hours as active exploitation...