☰

ABOUT NPCC Governance & Corporate Leadership Team Membership Careers Resources Contact Us PROGRAM AREAS Standards & Criteria Compliance RAPA SAIS COMMITTEES DER Forum Gov/Reg Affairs Reliability Coordinating Regional Standards NEWS Search SIGN IN

This browser is not supported.

Working closely with the cyber and physical security experts from NPCC registered entities, NERC’s Reliability and Security Technical Committee (RSTC) and its groups, US and Canadian governmental agencies, the national labs, industry forums, trade associations and other stakeholders, NPCC’s infrastructure Security seeks to promote leading security practices, information sharing and analysis, and resilience.

NPCC’s infrastructure Security works closely with its ERO Enterprise partners and in collaboration and coordination with the Electricity Information Sharing and Analysis Center (E-ISAC), gathers and analyzes security data, shares appropriate data with stakeholders, assists with incident management/response, and communicates mitigation strategies with stakeholders.

Documents

2020-12-15 Security-Bulletin SolarWinds Security Advisory

721.4 KB

03/17/2021

2021-03-16 Security Bulletin MS Exchange

749.8 KB

03/16/2021

2021-04-13 Security Bulletin Ransomware

747.0 KB

04/14/2021

2021-05-11 Security Bulletin Dell Client Platform Security Update

756.6 KB

05/12/2021

2021-06-11 Security Bulletin HPE Systems Insight Manager (SIM) Vulnerability

751.1 KB

06/10/2021

2021-07-07 Security Bulletin CISA’s Ransomware Tool and NIST Ransomware Risk Management Framework

770.2 KB

07/07/2021

2021-10-05 Security Bulletin Ransomware Attack Techniques

762.9 KB

10/13/2021

2021-11-10 Security Bulletin 2021 CWE Most Important Hardware and Software Weaknesses

787.3 KB

11/10/2021

2021-12-14 Security Bulletin 2021 Zoho ManageEngine ServiceDesk Plus Vulnerability

738.5 KB

12/16/2021

2022-01-11 Security Bulletin Apache Log4j Vulnerability Guidance Bulletin

737.1 KB

01/11/2022

2022-02-16 Security Bulletin CISA Alert Understanding and Mitigating Russian State Sponsored Cyber Threats to US Critical Infrastructure

872.2 KB

02/16/2022

2022-03-03 Security Bulletin Schneider Electric Easergy P5 and P3 Hard-coded Credentials and Classic Buffer Overflow Vulnerabilities

877.0 KB

03/03/2022

2022-03-30 Security Bulletin Russian State-Sponsored Cyber Actors Access Network Misconfigured with Default MFA Protocols.pdf

892.0 KB

03/30/2022

2022-03-30 Security Bulletin Strengthening American Cybersecurity Act of 2022.pdf

902.1 KB

03/30/2022

2022-03-30 Security Bulletin Strengthening Cybersecurity of SATCOM Network Providers and Customers.pdf

867.2 KB

03/30/2022

Links

E-ISAC

RSTC

Upcoming Events

Apr

7

CIP ERT Overview and Lessons Learned

May

18

NPCC 2023 Spring Compliance and Reliability Webinar

Oct

17

GridSecCon 2023

VIEW ALL

News Highlights

GridSecCon 2023 Call for Abstracts – Deadline March 31

March 01, 2023

Generator Welcome Package is Now Available

January 18, 2023

Quick Links

NPCC Electrical System Map

NPCC Directory

Security Notice

This is a Northeast Power Coordinating Council, Inc. (NPCC) information system. You have no reasonable expectation of privacy regarding communications or data transiting or stored on NPCC’s information system. At any time and for any lawful purpose, NPCC may monitor, intercept, record, and search any communications or data transiting or stored on this information system. At NPCC’s sole discretion, NPCC may disclose pertinent information to the U.S. Government and its authorized representatives to protect the security of critical infrastructure and key resources, ensure information security, or to comply with any applicable law, regulation, legal process, or enforceable governmental request. By continuing, you acknowledge that you understand and consent to the terms and conditions described in this notice. The actual or attempted unauthorized access, use, or modification of this system is strictly prohibited and may subject violators to criminal, civil, and/or administrative action.