CISA: Hackers target industrial systems using “unsophisticated methods”

CISA warns that threat actors—including pro‑Russian hacktivists—are actively targeting internet‑exposed OT/ICS devices (notably in water and wastewater systems) using unsophisticated methods like default credentials and brute‑force attacks; the advisory cites recent incidents and recommends hardening measures such as changing default passwords, enabling MFA, placing HMIs behind firewalls, and applying security updates.