{"id":281593,"date":"2026-06-25T11:55:00","date_gmt":"2026-06-25T15:55:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/06\/25\/nist-offers-security-guidance-for-water-utilities-using-remote-access-tools\/"},"modified":"2026-06-25T12:15:11","modified_gmt":"2026-06-25T16:15:11","slug":"nist-offers-security-guidance-for-water-utilities-using-remote-access-tools","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/06\/25\/nist-offers-security-guidance-for-water-utilities-using-remote-access-tools\/","title":{"rendered":"NIST offers security guidance for water utilities using remote-access tools"},"content":{"rendered":"<p><a href=\"https:\/\/www.cybersecuritydive.com\/news\/water-utilities-remote-access-nist-guidance\/823776\/\">NIST offers security guidance for water utilities using remote-access tools<\/a><\/p>\n<p><a href=\"https:\/\/www.cybersecuritydive.com\/news\/water-utilities-remote-access-nist-guidance\/823776\/\">https:\/\/www.cybersecuritydive.com\/news\/water-utilities-remote-access-nist-guidance\/823776\/<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-06-25 11:55:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.cybersecuritydive.com\">www.cybersecuritydive.com<\/a><\/p>\n<h3><span><span><span><strong><span><span>Dive Brief:<\/span><\/span><\/strong><\/span><\/span><\/span><\/h3>\n<ul>\n<li><span><span><span><span><span><span>Water utilities that use remote-access software should carefully restrict access, enforce multifactor authentication (MFA) and maintain comprehensive access logs to help them investigate possible breaches, <\/span><\/span><\/span><\/span><\/span><\/span><span><span><span><span><span><span><span><span>the National Institute of Standards and Technology (NIST) said in guidance<\/span><\/span><\/span><\/span><\/span><\/span><\/span><\/span><span><span><span><span><span><span> published on Wednesday.<\/span><\/span><\/span><\/span><\/span><\/span><\/li>\n<li><span><span><span><span><span><span>The secure remote-access guidance, developed through NIST\u2019s National Cybersecurity Center of Excellence (NCCoE), lists security considerations and describes how water utilities can implement remote access through either on-premises or cloud environments.<\/span><\/span><\/span><\/span><\/span><\/span><\/li>\n<li><span><span><span><span><span><span>Remote-access software is one of the water sector\u2019s biggest cybersecurity weaknesses, enabling several <\/span><\/span><\/span><\/span><\/span><\/span><span><span><span><span><span><span><span><span>Iran-linked cyberattack campaigns<\/span><\/span><\/span><\/span><\/span><\/span><\/span><\/span><span><span><span><span><span><span> <\/span><\/span><\/span><\/span><\/span><\/span><span><span><span><span><span><span><span><span>against U.S. water systems<\/span><\/span><\/span><\/span><\/span><\/span><\/span><\/span><span><span><span><span><span><span>.<\/span><\/span><\/span><\/span><\/span><\/span><\/li>\n<\/ul>\n<h3><span><span><span><strong><span><span>Dive Insight:<\/span><\/span><\/strong><\/span><\/span><\/span><\/h3>\n<p><span><span><span><span><span><span>NCCoE experts included several example architectures in their guidance document. One illustrates how to set up role-based access controls through the remote-access software TDI ConsoleWorks. Another demonstrates how to use Cisco Duo\u2019s MFA service with the StrongDM access-management platform. A third describes how to use Q-Net Security products to encrypt communications between network devices.<\/span><\/span><\/span><\/span><\/span><\/span><\/p>\n<p><span><span><span><span><span><span>\u201cThe ability to provide secure remote access to the water systems is crucial to the efficient operation of today\u2019s [water systems],\u201d the document says. \u201cEach utility should tailor their cybersecurity practices to address the unique needs of its own organization. The goal is to assist the [water] utilities in ensuring the security and availability of remote access capability so that operations can continue uninterrupted, despite current and evolving threats.\u201d<\/span><\/span><\/span><\/span><\/span><\/span><\/p>\n<p><span><span><span><span><span><span>One of the document\u2019s most important sections is a list of security considerations for utilities that want to use remote access. Recommendations include employing least-privilege principles, regularly updating remote-access software to the latest version, carefully inventorying remotely accessible systems&#8230;<\/span><\/span><\/span><\/span><\/span><\/span><\/p>\n<p><a href=\"https:\/\/www.cybersecuritydive.com\/news\/water-utilities-remote-access-nist-guidance\/823776\/\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>NIST offers security guidance for water utilities using remote-access tools https:\/\/www.cybersecuritydive.com\/news\/water-utilities-remote-access-nist-guidance\/823776\/ Publish Date: 2026-06-25 11:55:00&#8230;<\/p>\n","protected":false},"author":1,"featured_media":281595,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/imgproxy.divecdn.com\/t5eDjMOweJ2cYF7R7CZlY52Yseu3XVYAdwamFJV9CEg\/g:ce\/rs:fit:770:435\/Z3M6Ly9kaXZlc2l0ZS1zdG9yYWdlL2RpdmVpbWFnZS9HZXR0eUltYWdlcy0yMDk5OTMxMjc1LmpwZw==.webp","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[57],"class_list":["post-281593","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-security"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/281593"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=281593"}],"version-history":[{"count":1,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/281593\/revisions"}],"predecessor-version":[{"id":281597,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/281593\/revisions\/281597"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/281595"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=281593"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=281593"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=281593"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}