Category: Critical Infrastructure

On August 28 2025, CISA published nine advisories covering Mitsubishi Electric, Schneider Electric, Delta Electronics, GE Vernova, and Hitachi Energy. Several issues are remotely exploitable with low attack complexity; patches exist for many products, while some Mitsubishi Electric PLC weaknesses require compensating controls only. No known public exploitation is reported as of August 28, 2025 [1]. (cisa.gov) Overview These ICS advisories span PLCs, HMI/SCADA

Chinese state-sponsored cyber actors are conducting long-running intrusion campaigns against telecoms and other critical networks by exploiting known vulnerabilities in edge and core network devices. As of August 28, 2025, CISA’s joint advisory AA25-239A reports widespread targeting of backbone, provider edge (PE), and customer edge (CE) routers, with persistence achieved via configuration tampering, tunneling, and credential collection; patches and detailed mitigations are available, and CISA has published STIX IOCs to aid hunting.

What’s New? The latest release of the Léargas XDR platform introduces enhanced detection and analysis functionality that fuses Zeek protocol visibility, ICS-specific threat patterns, and AI-driven reasoning powered by our internal Multi-modal Command Processor (MCP). AI Meets ICS Threat Intelligence Our platform now integrates with known ICS/OT threat datasets, specifically aligned to real-world attacks cataloged under frameworks like MITRE ATT&CK for ICS. By incorporating

IntroductionFor decades, Information Technology (IT) and Operational Technology (OT) operated in isolation—each serving distinct purposes. IT focused on securing data, while OT managed physical processes and industrial control systems. However, as organizations pursue digital transformation (DX) and integrate Industrial Internet-of-Things (IIoT) devices, these once-separate environments are converging. While this shift promises efficiency and cost savings, it also exposes critical infrastructure to unprecedented cybersecurity risks.

In alignment with Canada’s Cyber Security Readiness Goals (CRGs), the Léargas XDR platform combines advanced network forensics with embedded Zeek capabilities, enhancing CI defenses against sophisticated threats. This integration equips CI operators with powerful, in-depth visibility into network activities across IT, OT, and ICS environments, supporting the CRGs’ pillars for detection, response, and governance. Embedded Zeek for Network ForensicsZeek, embedded in Léargas XDR, provides

In today's digital age, safeguarding critical infrastructure is more crucial than ever. However, many organizations are grappling with cybersecurity challenges due to limited budgets, insufficient staffing, and outdated solutions. Enter Léargas-a comprehensive SaaS cybersecurity platform designed to address these pressing issues and revolutionize how critical infrastructure is protected.

Patrick Kelley, CEO of Leargas Security, will be a featured speaker at the IAEC IT Fall Conference, hosted by the Iowa Association of Electric Cooperatives. The event is set for October 8-9, 2024, at The Rewind by Hilton in West Des Moines, Iowa. The conference brings together IT and cybersecurity leaders to tackle the pressing challenges in protecting critical infrastructure within the energy sector.

Patrick Kelley, CEO of Léargas Security, will be a featured speaker at the 2024 MRO Security Conference, scheduled to take place on October 1-2, 2024, in St. Paul, Minnesota. This annual conference brings together experts in the energy and security sectors to discuss pressing issues in cybersecurity, particularly as they relate to the protection of critical infrastructure.

As the US renewable energy industry expands, it faces increased risks from malicious cyber actors aiming to disrupt power generating operations, steal intellectual property, or ransom critical information. The FBI's recent Private Industry Notification highlights the urgency for robust cybersecurity measures in this sector. At Leargas Security, we are committed to safeguarding this crucial industry with our comprehensive, scalable cybersecurity platform.

In a fast-evolving world where technology stands as the backbone of numerous sectors, bringing together industry professionals to foster collaboration and growth is not just a necessity, but a mission to advance the industry further. The Georgia EMC Technology Association, an esteemed body with a focused approach to fostering excellence in the field of information technology, continues its long-standing tradition of promoting learning and collaboration with its upcoming Fall Meeting scheduled for September 20-22, 2023. This year, we are thrilled to announce Leargas Security as the proud sponsor of this promising event.

In 2014, the pressing need for a comprehensive cybersecurity solution to the vulnerabilities faced by nearly 900 electric cooperatives was acknowledged by the U.S. Department of Energy (DOE). Understanding that the integration of Extended Detection and Response (XDR) solutions in electric cooperatives has become increasingly important in recent years, Léargas was driven to create a versatile and cost-effective platform. As these cooperatives digitally transform and adopt modern technologies, they also become more vulnerable to sophisticated cyber threats. These potential attacks not only pose a risk to the integrity of the cooperatives' data, but also threaten the stability of the electrical grid that powers our communities.

The fusion of Information Technology (IT) and Operational Technology (OT) ecosystems is increasingly becoming integral in today's enterprises. As the cyber threat landscape continues to evolve, posing intricate and sophisticated attacks, organizations are turning to advanced security solutions such as Leargas Security XDR. This potent platform, built on the robust Zeek framework, offers an all-in-one approach to securing IT and OT environments, providing vital insights and capabilities that help businesses stay ahead of potential threats.