Download Certificate- Most Promising Partner | ECIO | Most Admired Brand | Most Trusted Company

Complicated malware targets US critical infrastructures


By MYBRANDBOOK


Complicated malware targets US critical infrastructures

The Department of Energy (DOE), the Cybersecurity and Infrastructure Security Agency (CISA), the National Security Agency (NSA) and the Federal Bureau of Investigation (FBI) are warning the US energy sector that certain APT (advanced persistent threat) threat actors have revealed the capability to gain full system access to multiple industrial control systems (ICS) and supervisory control and data acquisition (SCADA) devices.

 

Several Schneider Electric MODICON and MODICON Nano PLCs (programmable logic controls), including TM251, TM241, M258, M238, LMC058 and LMC078, are impacted. The threat actor tool targeting those devices has modules that interact via normal management protocols and Modbus protocols, allowing attackers to:

· Rapidly scan a local network for all Schneider PLCs

· Brute-force PLCs passwords using CODESYS and other available device protocols against defaults or dictionary word list

· Conduct denial of service attack to prevent PLCs from being reached

· Interrupt connections, requiring users to re-authenticate on PLC, likely to facilitate the capture of valid credentials

· Crash the PLC until a power cycle and configuration recovery is conducted

· Send custom Modbus commands (which can also work against Modbus devices besides Schneider Electric PLCs)

 

The affected OMRON devices are OMRON Sysmac NJ and NX PLCs, including NEX NX1P2, NX-SL3300, NX-ECC203, NJ501-1300, S8VK and R88D-1SN10F-ECT. The threat actor tool targeting those devices have modules allowing attackers to:

· Scan for OMRON using the FINS (factory interface network service) protocol

· Parse HTTP response from OMRON devices

· Retrieve media access control (MAC) address of devices

· Poll for specific devices connected to PLCs

· Back-up/restore arbitrary files to/from PLCs

· Load a custom malicious agent on OMRON PLCs for additional attack operations (do file manipulations, make packet captures or execute code).

 

A report mentioned in the advisory, refers to a likely state-sponsored attacking tool dubbed Incontroller (aka Pipedream), built to target automation devices. Incontroller comprises three elements targeting all the devices reported in the security advisory. Each tool might be used separately, but it is also possible that all the tools would be used to attack a single environment.

 

Incontroller attack scenarios could lead to operational disruption of activities, leading to delayed production, financial losses and complex facility startup procedures; sabotage of industrial processes, resulting in defective products or malfunctioning machine behavior; physical destruction of the industrial machinery, impacting human safety and the environment and damage to equipment.

 

Pipedream malware is targeted to equipment in liquefied natural gas (LNG) and electric power environments, but could easily adapt and compromise and disrupt a broader set of targets. The joint advisory from US government agencies have suggested mitigations to this threat.
 BREAKING NEWS  BREAKING NEWS
PM Modi Blesses Anant Ambani-Radhika Merchant

PM Modi Blesses Anant Ambani-Radhika Merchant...

After seven months of extravagant pre-wedding celebrations, Anant Ambani,...

Users soon be able to transfer photos directly from Google to App

Users soon be able to transfer photos directly from Google to App...

As part of the Data Transfer Initiative (DTI), Apple and Google are offerin...

Japan achieves staggering 402 Tb/s data rate with commercial opti

Japan achieves staggering 402 Tb/s data rate with commercial opti...

Japan's National Institute of Information and Communications Technology (N...

UK-based Nothing manufacturing its CMF Phone 1 in India

UK-based Nothing manufacturing its CMF Phone 1 in India...

British technology brand Nothing has announced that its latest budget smart...

 TECHNO TRENDS  Placeholder image
Singapore to remove One-Time Passwords from Bank Accounts

Singapore to remove One-Time Passwords from Bank Accounts

According to the Monetary Authority of Singapore, clients who utilise secur...

Is 375 million Airtel subscribers database breached?

Is 375 million Airtel subscribers database breached?

When a hacker claims to have accessed and put up for sale a customer databa...

The government of India intends to construct a single portal f

The government of India intends to construct a single portal f

A single portal will be launched by the Indian government to list all of it...

OpenAI offers GPT-4o, a faster model available to all users at

OpenAI offers GPT-4o, a faster model available to all users at

GPT-4o, a faster and more sophisticated AI model, is made available to all...

 E-Magazine 
 TECHNOTAINMENT  Placeholder image
S.S. Rajamouli and Disney+ Hotstar brings the untold story of

S.S. Rajamouli and Disney+ Hotstar brings the untold story of

Airtel Xstream Play strengthens regional content library, part

Airtel Xstream Play strengthens regional content library, part

Bharti Airtel (“Airtel”), one of India’s leading telecommunications

ED attaches Raj Kundra, Shilpa Shetty’s Rs 97 crore worth as

ED attaches Raj Kundra, Shilpa Shetty’s Rs 97 crore worth as

The Enforcement Directorate (ED) has seized businessman Raj Kundra's pro
 MOVERS & SHAKERS  Placeholder image
New Relic names Katrina Wong as CMO

New Relic names Katrina Wong as CMO

Clover Infotech appointed Subham Banerjee as CDO

Clover Infotech appointed Subham Banerjee as CDO

Clover Infotech has announced the appointment of Subham Banerjee as its Ch
Saviynt ropes in Sanjeevi Kumar as new Sales Director in India

Saviynt ropes in Sanjeevi Kumar as new Sales Director in India

The cloud-native identity and governance platform solutions provider Saviy
 OPEN YOUR EYES  Placeholder image

Changing Dynamics Of Cybersecurity In The Age of Coronavirus

Driving remote flexibility: Challenges and resolutions
CIO’s should have the understanding "Jugaad" to overcome technology challenges
The Changing Face of Cybercrime Amidst Global Pandemic
Business continuity is the most valuable asset for financial institutions
 INTERVIEWS  Placeholder image
CommScope celebrates its 25 years of legacy in India by contin

CommScope celebrates its 25 years of legacy in India by contin

Acer continues to solidify itself as a leading player in the I

Acer continues to solidify itself as a leading player in the I

Acer, as a key player in the constantly evolving and vibrant ICT industry,

Elastic democratizing search with powerful AI and ML-enabled s

Elastic democratizing search with powerful AI and ML-enabled s

Elastic is always committed to staying ahead of the curve and constantly re
 HOT PICK  Placeholder image
Lenovo launches IdeaPad Pro 5i in India with Intel Core Ultra

Lenovo launches IdeaPad Pro 5i in India with Intel Core Ultra

COLORFUL rolls out an array of gaming laptops

COLORFUL rolls out an array of gaming laptops

COLORFUL launched its incredible series of COLORFUL EVOL P15 gaming laptop
Dell Technologies launches new AI-powered commercial PC portfo

Dell Technologies launches new AI-powered commercial PC portfo

Dell Technologies has launched the broadest portfolio of commercial AI lap
 MAKE IN INDIA BRANDS   Placeholder image
ADITYA INFOTECH LTD.

ADITYA INFOTECH LTD.


BHARAT ELECTRONICS LTD.

BHARAT ELECTRONICS LTD.


ACER INDIA PVT. LTD.

ACER INDIA PVT. LTD.


HAVELLS INDIA LTD.

HAVELLS INDIA LTD.


 EMINENT CIO'S OF INDIA  EMINENT CIO'S OF INDIA

A clear vision and mission helping attain milestones

Understanding the project goals, responsibilities,...

Technology creating new capabilities leading to business growth

As technology evolves rapidly, we should stay abre...

Fostering growth with relentless pursuit of technological excellence

At Godrej Capital, we have a strong security gover...

 ICONS OF INDIA  Placeholder image

Icons Of India : RAJENDRA SINGH PAWAR

Rajendra Singh Pawar is the Executive Chairman and Co-Founder of NIIT ...

Icons Of India : NIKHIL RATHI

Co-founder & CEO of Web Werks, a global leader in Data Centers and Clo...

Icons Of India : AMIT CHADHA

Amit Chadha serves as the CEO and Managing Director of L&T Technology ...

 PARTNER SPEAKERS  EMINENT CIO'S OF INDIA

Revolutionizing surveillance industry with innovative range of accessories

Adoption of digital technology is essential for real growth and without this s...

Ensuring Mutual Success By Aligning Partner's Needs

The IT industry is one of the most dynamic industries. Here, not only does the...

A Trusted IT Partner Renowned For Reliability, Expertise, and Customer-Centricity

Fast paced changes in digital technology and constant innovations are impactin...

 PSU  Placeholder image

C-DOT - Center of Development of Telematics  

India’s premier research and development center focused on telecommu...

GSTN - Goods and Services Tax Network

GSTN provides shared IT infrastructure and service to both central and...

ITI - ITI Limited 

ITI Limited is a leading provider of telecommunications equipment, sol...

 VIDEOS  Placeholder image

 Top 25 Brands  Solution partners

Most Trusted Brands 2024: IBM CORPORATION

IBM’s strength lies in its ability to consistently innovate and adapt to the...

RELIANCE JIO INFOCOMM LTD.

Reliance Jio commonly known as Jio, has been a significant disruptor in the te...

Most Trusted Brands 2024: HCL TECHNOLOGIES LTD.

HCL Technologies Ltd. (HCLTech) has been at the forefront of technological inn...

 Value-Added Distribution  Value-Added Distribution

Indian Tech Talent Excelling The Tech World - Sanjay Mehrotra, CEO- Micron Technology

Sanjay Mehrotra, the President and CEO of Micron Technology, is at the...

Indian Tech Talent Excelling The Tech World - Sundar Pichai, CEO- Alphabet Inc.

Sundar Pichai, the CEO of Google and its parent company Alphabet Inc.,...

Indian Tech Talent Excelling The Tech World - Rajiv Ramaswami, President & CEO, Nutanix Technologies

Rajiv Ramaswami, President and CEO of Nutanix, brings over 30 years of...

 STARNITE AWARDS 2024  
 ITFORUM 2024  
   
 CMO of the Year   Placeholder image
 WOMEN LEADERSHIP  Placeholder image
 EMINENT CIO's OF INDIA   Placeholder image
 TRENDS IN TECHNOLOGY  Placeholder image
MORE VIDEOS  Placeholder image
Brand Book
Brand Book
Brand Book
Brand Book
 ADVERTISEMENTS  Placeholder image
Brandbook Brandbook
 TECHNOLOGY DISRUPTION Placeholder image

TeamViewer digitalizes warehouse operations at GlobalFoundries

TeamViewer digitalizes warehouse operations at GlobalFoundries

VMware partners with IIT Bombay to create a cohesive platform to influence and advance Systems Research practice in India

VMware partners with IIT Bombay to create a cohesive platform to influence and advance Systems Research practice in India

HCLSoftware and SolarWinds to build a 5G observability platform from Cloud to RAN

HCLSoftware and SolarWinds to build a 5G observability platform from Cloud to RAN

IUDX Becomes First Software Platform to Fully Adopt BIS Standards for Unified Data Exchange

IUDX Becomes First Software Platform to Fully Adopt BIS Standards for Unified Data Exchange

 UNICORNS REVOLUTIONISING Placeholder image

Mensa Brand Technologies Private Limited

Mensa Brand Technologies Private Limited

InMobi Private Limited

InMobi Private Limited

CARS24 Services Private Limited

CARS24 Services Private Limited

Builder.ai

Builder.ai


Copyright www.mybrandbook.co.in @1999-2024 - All rights reserved.
Reproduction in whole or in part in any form or medium without express written permission of Kalinga Digital Media Pvt. Ltd. is prohibited.
Other Initiatives : www.varindia.com | www.spoindia.org
ADMIRED BRANDS

AFTER MARKET SERVICES

CATEGORIES

DISTRIBUTORS & VADs
GOVERNMENT BODIES

INDUSTRY BODIES

MAKE IN INDIA

CONTACT US

SUBSCRIBE NOW