triton

COSMICENERGY: ‘Russian’ Threat to Power Grids ICS/OT

COSMICENERGY: ‘Russian’ Threat to Power Grids ICS/OT

| | COSMICENERGY, electric grid, electrical grid, Electrical grids, energy grid, grid cyber attack, ICS, IEC 60870-5-104, IEC-104, INCONTROLLER, Industroyer, Industroyer2, Malware, OT, power grid, Power-Grid Security, Red Team, Red team exercises, red team operations, red team testing, Red Teaming, Red Teams, red-team-tools, redteam, Russia, Russia Exodus, Russia power grid, Russia-Ukraine, russia-ukraine conflict, Russia's War on Ukraine, russian, Russian Cyber War, SB Blogwatch, Solar Polygon, triton, TRITON ICS malware, Triton malware
Shouty name—dangerous game. Red-team tool ripe for misuse ...
Security Boulevard
Actions Target Russian Govt. Botnet, Hydra Dark Market

Actions Target Russian Govt. Botnet, Hydra Dark Market

| | Ars Technica, Asus, Beserk Bear, Cyclops Blink, Dan Goodin, Dragonfly 2.0, FBI, Federal Security Service, Garantex, German Federal Criminal Police Office, GRU, Hydra Market, Main Intelligence Directorate, Ne'er-Do-Well News, NotPetya, Ransomware, Russian FSB, Sandworm, TRISIS, triton, U.S. Department of Justice, U.S. Department of Treasury, Voodoo Bear, VPNFilter, WatchGuard, Web Fraud 2.0
The U.S. Federal Bureau of Investigation (FBI) says it has disrupted a giant botnet built and operated by a Russian government intelligence unit known for launching destructive cyberattacks against energy infrastructure in ...
Krebs on Security
CISA Call with Critical Infrastructure Partners on Potential Russian Cyberattacks Against the U.S.

Russia’s Invasion of Ukraine and CISA/FBI’s New Era of Transparency

| | CISA.gov, cyber, Dragonfly, FBI, Havex, ICS, Russia, triton
BLUF: Bottom Line Up FrontI want to start this post with the most important thing right up top:The CISA.gov/Shields-Up page starts with this statement.  PLEASE take it seriously, and escalate to your ...
CyberCrime & Doing Time
TRITON Framework Leveraged at a Second Critical Infrastructure Facility

TRITON Framework Leveraged at a Second Critical Infrastructure Facility

| | Critical Infrastructure, ICS Security, Latest Security News, OT, triton
Researchers have discovered that malicious actors leveraged the TRITON framework at a second critical infrastructure facility. In this particular attack, the threat actor maintained access to the target corporate networks for nearly ...
The State of Security
Triton, BlackEnergy, WannaCry – Has Your Behavior Changed?

Triton, BlackEnergy, WannaCry – Has Your Behavior Changed?

| | BlackEnergy, ICS Security, triton, WannaCry
Hopefully the title of this blog has gotten your attention. In one of my prior blogs, ICS Cybersecurity: Visibility, Protective Controls, Continuous Monitoring – Wash, Rinse, Repeat, we talked about how the ...
The State of Security

USB Threats to Cybersecurity of Industrial Facilities

| | ICS Security, Mirai, triton, USB, WannaCry
Industrial facilities cybersecurity is very critical for the national security of every state and comes once more into focus following the recent Honeywell’s Industrial USB Threat Report. With increasing pressure to limit ...
The State of Security
SEC-T 0x0B: Steve Miller - Reversing the TriStation Network Protocol

Reverse Engineering Proprietary ICS Protocols

| | BSI, Dragos, ICS, Nozomi, pcap, protocol, reverse, SCADA, SEC-T, snort, Steve Miller, TRISIS, TriStation, triton, Wireshark
One of the highlights at this year's SEC-T conference in Stockholm was Steve Miller's talk titled 'Reversing the TriStation Network Protocol'. In this talk Steve covered his quest to better understand the ...
NETRESEC Network Security Blog
Triton Malware Exploited Flaw

Triton Malware Exploited Zero-Day Flaw in Schneider Electric Safety Controllers

| | industrial control system, safety controller, Triconex Tricon, triton
Schneider Electric has confirmed that a recently uncovered malware program that was used to attack industrial infrastructure exploited a vulnerability in its Triconex safety controllers. The malware, dubbed Triton, was uncovered in ...
Security Boulevard