Video: Deep Dive on PIPEDREAM/Incontroller ICS Assault Framework

[ad_1]

On this session from SecurityWeek’s 2022 ICS Cybersecurity Convention, Mark Plemmons, Sr. Director for Menace Intelligence at Dragos, dives deep into the technical particulars and real-world affect on the modular ICS assault framework referred to as PIPEDREAM/Incontroller that can be utilized to disrupt and/or destruct units in industrial environments. In April 2022, a joint advisory from the Division of Power, CISA, NSA and the FBI warned that unidentified APT actors have created this suite of specialised instruments able to inflicting main harm to PLCs from Schneider Electrical and OMRON Corp. and servers from open-source OPC Basis.

Analysts imagine the malware has not been deployed but within the wild and that its operator seemingly plans on utilizing it in future operations. Primarily based on evaluation, the framework has been designed to focus on tools in electrical energy and liquified pure fuel (LNG) amenities, nevertheless it might simply be tailored for different forms of environments, in addition to units past Schneider and Omron PLCs.

view counter

Earlier Columns by SecurityWeek Video:
Tags:

[ad_2]

Source_link