Download Certificate- Most Promising Partner | ECIO | Most Admired Brand | Most Trusted Company

Complicated malware targets US critical infrastructures


By MYBRANDBOOK


Complicated malware targets US critical infrastructures

The Department of Energy (DOE), the Cybersecurity and Infrastructure Security Agency (CISA), the National Security Agency (NSA) and the Federal Bureau of Investigation (FBI) are warning the US energy sector that certain APT (advanced persistent threat) threat actors have revealed the capability to gain full system access to multiple industrial control systems (ICS) and supervisory control and data acquisition (SCADA) devices.

 

Several Schneider Electric MODICON and MODICON Nano PLCs (programmable logic controls), including TM251, TM241, M258, M238, LMC058 and LMC078, are impacted. The threat actor tool targeting those devices has modules that interact via normal management protocols and Modbus protocols, allowing attackers to:

· Rapidly scan a local network for all Schneider PLCs

· Brute-force PLCs passwords using CODESYS and other available device protocols against defaults or dictionary word list

· Conduct denial of service attack to prevent PLCs from being reached

· Interrupt connections, requiring users to re-authenticate on PLC, likely to facilitate the capture of valid credentials

· Crash the PLC until a power cycle and configuration recovery is conducted

· Send custom Modbus commands (which can also work against Modbus devices besides Schneider Electric PLCs)

 

The affected OMRON devices are OMRON Sysmac NJ and NX PLCs, including NEX NX1P2, NX-SL3300, NX-ECC203, NJ501-1300, S8VK and R88D-1SN10F-ECT. The threat actor tool targeting those devices have modules allowing attackers to:

· Scan for OMRON using the FINS (factory interface network service) protocol

· Parse HTTP response from OMRON devices

· Retrieve media access control (MAC) address of devices

· Poll for specific devices connected to PLCs

· Back-up/restore arbitrary files to/from PLCs

· Load a custom malicious agent on OMRON PLCs for additional attack operations (do file manipulations, make packet captures or execute code).

 

A report mentioned in the advisory, refers to a likely state-sponsored attacking tool dubbed Incontroller (aka Pipedream), built to target automation devices. Incontroller comprises three elements targeting all the devices reported in the security advisory. Each tool might be used separately, but it is also possible that all the tools would be used to attack a single environment.

 

Incontroller attack scenarios could lead to operational disruption of activities, leading to delayed production, financial losses and complex facility startup procedures; sabotage of industrial processes, resulting in defective products or malfunctioning machine behavior; physical destruction of the industrial machinery, impacting human safety and the environment and damage to equipment.

 

Pipedream malware is targeted to equipment in liquefied natural gas (LNG) and electric power environments, but could easily adapt and compromise and disrupt a broader set of targets. The joint advisory from US government agencies have suggested mitigations to this threat.
 BREAKING NEWS  BREAKING NEWS
Cisco announces AI-native secure Wi-Fi 7 for future-ready employe

Cisco announces AI-native secure Wi-Fi 7 for future-ready employe...

Announcing a major leap in wireless technology, Cisco has launched its Wi...

The BSE benchmark Sensex tumbled over 800 points, leaving investo

The BSE benchmark Sensex tumbled over 800 points, leaving investo...

The BSE benchmark Sensex recently experienced a significant drop, tumblin...

North Korean GPS Interference Disrupts Air Traffic

North Korean GPS Interference Disrupts Air Traffic...

South Korea's military has publicly accused North Korea of disrupting GP...

US ordered TSMC to halt chip shipments to China

US ordered TSMC to halt chip shipments to China...

TSMC has had regular discussions with the government on export control issu...

 TECHNO TRENDS  Placeholder image
Nazara and ONDC set to transform in-game monetization with ‘

Nazara and ONDC set to transform in-game monetization with ‘

Nazara Technologies has teamed up with the Open Network for Digital Comme...

Jio Platforms and NICSI to offer cloud services to government

Jio Platforms and NICSI to offer cloud services to government

In a collaborative initiative, the National Informatics Centre Services In...

BSNL awards ₹5,000 Cr Project to RVNL-Led Consortium

BSNL awards ₹5,000 Cr Project to RVNL-Led Consortium

A syndicate led by Rail Vikas Nigam Limited (abbreviated as RVNL), along wi...

Pinterest tracks users without consent, alleges complaint

Pinterest tracks users without consent, alleges complaint

A recent complaint alleges that Pinterest, the popular image-sharing platf...

 E-Magazine 
 TECHNOTAINMENT  Placeholder image
Eloelo teams up with Elvish Yadav for India's biggest digital

Eloelo teams up with Elvish Yadav for India's biggest digital

Netflix adds 'Moments' feature for saving, sharing scenes from

Netflix adds 'Moments' feature for saving, sharing scenes from

Netflix has introduced a new “Moments” feature on its mobile app, whic
Jacqueline Fernandez come together with YouTuber Mr. Beast for

Jacqueline Fernandez come together with YouTuber Mr. Beast for

Jacqueline Fernandez has partnered with American YouTuber Mr. Beast to b
 MOVERS & SHAKERS  Placeholder image
Kamal Nath quits SIFY Technologies

Kamal Nath quits SIFY Technologies

Visa elevates Rishi Chhabra as new Country Manager for India

Visa elevates Rishi Chhabra as new Country Manager for India

Rishi holds a Master’s in Industrial Engineering from The Ohio State Univ
Genesys welcomes Albert Nel as Senior VP and Regional Sales Le

Genesys welcomes Albert Nel as Senior VP and Regional Sales Le

Genesys continues to deepen its investment in the APAC region. Earlier this
 OPEN YOUR EYES  Placeholder image

The demand for touch-less services are on huge demand
Contact-less Technology to Bring Revolution In This Pandemic Era
Tools and technologies are being used for Remote Work and Collaboration Teams
Payment industry is eyeing Asia as attractive for V.C. investors amid COVID-19
India is the fastest growing digital economies, Shaping Towards the New Normal
 INTERVIEWS  Placeholder image
Acer addresses evolving customer needs by consistently pushing

Acer addresses evolving customer needs by consistently pushing

Delivering Critical Business Communication Solutions to Enterp

Delivering Critical Business Communication Solutions to Enterp

Arya Omnitalk and Syntel’s comprehensive suite of solutions and more than
Bolstering its commitment to help build a truly self-reliant B

Bolstering its commitment to help build a truly self-reliant B

CP PLUS is dedicated to spreading a sense of security to every corner of In
 HOT PICK  Placeholder image
BOULT unveils AmpVault V10 & V20 powerbanks: Fast charging, sa

BOULT unveils AmpVault V10 & V20 powerbanks: Fast charging, sa

SonicWall Launches TZ80: A Powerful Solution for Remote Office

SonicWall Launches TZ80: A Powerful Solution for Remote Office

SonicWall announced today the launch of the TZ80, a groundbreaking securit
Gigabyte X3D Turbo: A Gaming Revolution

Gigabyte X3D Turbo: A Gaming Revolution

GIGABYTE X3D Turbo Mode is a cutting-edge feature that unifies cores distr
 MAKE IN INDIA BRANDS   Placeholder image
ALPHAMAX TECHNOLOGIES PVT. LTD.

ALPHAMAX TECHNOLOGIES PVT. LTD.


TVS ELECTRONICS LTD.

TVS ELECTRONICS LTD.


VERSA NETWORKS INDIA PVT. LTD.

VERSA NETWORKS INDIA PVT. LTD.


DATA SAFEGUARD INDIA PRIVATE LIMITED

DATA SAFEGUARD INDIA PRIVATE LIMITED


 EMINENT CIO'S OF INDIA  EMINENT CIO'S OF INDIA

HARNESSING THE POWER OF BIG DATA TO GAIN VALUABLE INSIGHTS

A Technology certainly drives innovation and busin...

AI AND DATA ANALYTICS REVOLUTIONIZING HEALTHCARE SERVICES

...

AI TO IMPROVE INSIGHTS THROUGH AUGMENTED ANALYTICS, WHILE EDGE COMPUTING TO ALLOW REAL-TIME PROCESSING

For the fiscal year 2024-25, our organization has ...

 ICONS OF INDIA  Placeholder image

Icons Of India : AMIT CHADHA

Amit Chadha serves as the CEO and Managing Director of L&T Technology ...

Icons Of India : Anil Kumar Lahoti

Anil Kumar Lahoti, Chairman, Telecom Regulatory Authority of India (TR...

Icons Of India : Bhavish Aggarwal

Indian entrepreneur Bhavish Aggarwal is the CEO of Ola, India’s larg...

 PARTNER SPEAKERS  EMINENT CIO'S OF INDIA

Enhanced Skills & Expertise helping to better serve customers and stay ahead of the curve

Feedback Forms: Conducting surveys and collecting feedback from customers is a...

Redefining The Future Of Telecom and Networking Industry with Make in India Initiative

Syrotech Networks has seen a notable uptick in customer acceptance of digital ...

"We will either find a way or make one"

A provider of high-quality IT products and services, Bluecom Infotech caters t...

 PSU  Placeholder image

EESL - Energy Efficiency Services Limited  

EESL is uniquely positioned in India’s energy sector to address ener...

NIC - National Informatics Centre  

NIC serves as the primary IT solutions provider for the government of ...

HPCL - Hindustan Petroleum Corporation Ltd.  

HPCL is an integrated oil and gas company involved in refining, market...

 VIDEOS  Placeholder image

 Top 25 Brands  Solution partners

Most Trusted Brands 2024: Nvidia Corporation

NVIDIA, founded in 1993, has evolved significantly over the years. Initially k...

Most Trusted Brands 2024: WIPRO LTD.

Wipro Ltd. is a leading information technology, consulting, and business proce...

Most Trusted Brands 2024: Apple India Pvt. Ltd.

five decades after its founding, Apple has redefined modern computing, emphasi...

 Global Indian industry   Value-Added Distribution

Indian Tech Talent Excelling The Tech World - Aman Bhutani, CEO, GoDaddy

Aman Bhutani, the self-taught techie and CEO of GoDaddy, oversees a co...

Indian Tech Talent Excelling The Tech World - ANJALI SUD, CEO – Tubi

Anjali Sud, the former CEO of Vimeo, now leads Tubi, Fox Corporation...

Indian Tech Talent Excelling The Tech World - Soni Jiandani, Co-Founder- Pensando Systems

Soni Jiandani, Co-Founder of Pensando Systems, is a tech visionary ren...

 STARNITE AWARDS 2024  
 ITFORUM 2024  
   
 CMO of the Year   Placeholder image
 WOMEN LEADERSHIP  Placeholder image
 IMAGE GALLERY   Placeholder image
 TRENDS IN TECHNOLOGY  Placeholder image
MORE VIDEOS  Placeholder image
Brand Book
Brand Book
Brand Book
Brand Book
 ADVERTISEMENTS  Placeholder image
Brandbook Brandbook
 TECHNOLOGY DISRUPTION Placeholder image

NetApp Teams with NVIDIA to Accelerate HPC and AI with Turnkey Supercomputing Infrastructure

NetApp Teams with NVIDIA to Accelerate HPC and AI with Turnkey Supercomputing Infrastructure

Indian cos are wary of deploying ChatGPT-based bots

Indian cos are wary of deploying ChatGPT-based bots

BlackBerry builds iOS of cars, focusing into automotive industry

BlackBerry builds iOS of cars, focusing into automotive industry

It is high time for India to introduce its own programming language

It is high time for India to introduce its own programming language

 UNICORNS REVOLUTIONISING Placeholder image

Fashnear Technologies Private Limited

Fashnear Technologies Private Limited

Delhivery Private Limited

Delhivery Private Limited

Icertis Inc.

Icertis Inc.

Molbio Diagnostics Pvt. Ltd.

Molbio Diagnostics Pvt. Ltd.


Copyright www.mybrandbook.co.in @1999-2024 - All rights reserved.
Reproduction in whole or in part in any form or medium without express written permission of Kalinga Digital Media Pvt. Ltd. is prohibited.
Other Initiatives : www.varindia.com | www.spoindia.org
ADMIRED BRANDS

AFTER MARKET SERVICES

CATEGORIES

DISTRIBUTORS & VADs
GOVERNMENT BODIES

INDUSTRY BODIES

MAKE IN INDIA

CONTACT US

SUBSCRIBE NOW