Hello and welcome to the Thursday, February 26, 2006 edition of the Sands

In its Storm Center's Stormcast. My name is Johannes Ulrich, recording today in Jacksonville, Florida.

And this episode is brought you by the Sands.edu undergraduate certificate program in Cybersecurity Fundamentals.

Our diary today comes from Claire Perry, a graduate of our bachelor's degree program, and this diary presents the Claire model.

What is about is it about critical infrastructure. And typically when you're

dealing with critical infrastructure, one of the big security models and frameworks that's

often being used is the Purdue model. The Purdue model is well-established and extremely useful

to talk about some of these infrastructure security threats. But as Claire Perry here

points out, the model is very insular in that it's great for you, like as an operator, as a utility,

to talk about the security of an individual plant, but it kind of ignores the interdependencies because, well, you don't

control many of them. So it just considers them sort of as inputs to your plant.

Well, that's sort of what this is attempting to fix here. So this model, this framework,

is looking very much at interdependencies, like external things,

like all the way to policies and such that may affect the security of your

critical infrastructure systems. It's a proposal at this point, so if you have any feedback

or such, I'm sure Claire is happy to hear about it.

And Cisco today published an advisory regarding vulnerability affecting Catalyst SD-WAN controllers,

also I guess formerly known as SD-WAN-V-smart.

This vulnerability, CVS score of 10 allows an attacker without off occasion

to gain admin privileges on the device. What makes this even worse is that apparently it has

been exploited since 2023. So two or three years already out there and being exploited, now discovered and

finally being patched. Cisco's advisory also lists some indicators of compromise. Definitely

...