Shamoon

28 12, 2018

OT Threat Shamoon Returns with its Biggest Attack Yet

By |2019-01-03T10:31:24-07:00December 28th, 2018|Threat Intelligence|

Notorious OT threat Shamoon returned with its third iteration in December, wiping the disks of hundreds of computers in an attack that started at oil giant Saipem. Shamoon 3: Here's What Happened Over the last 7 years, the notoriety of disk-wiping malware "Shamoon" (also known as "Disttrack") has grown. It has been implicated in three [...]

20 02, 2018

Triton Malware Can Remotely Target Critical Infrastructure

By |2018-02-20T13:46:44-07:00February 20th, 2018|Threat Intelligence|

Triton malware (aka TRISIS) has joined the limited list of publicly identified malware targeted at operational technology (OT) networks. Other occupants of this small-but-mighty category include Stuxnet (2010), Shamoon (2012), Shamoon 2 (2016) and Industroyer (2016). In August of 2017, the Triton malware was observed to be targeting Schneider Electric’s Triconex safety instrumented system (SIS) [...]

25 01, 2017

Shamoon 2 Distributing DistTrack Wiper in Saudi Arabia

By |2017-10-10T15:07:06-07:00January 25th, 2017|Energy, Oil & Gas|

Who doesn’t love a sequel? In this case, the Saudis (they weren’t too hot on the original either). The sophisticated, possibly nation-state-sponsored Shamoon attack that destroyed systems of state-run oil company Saudi Aramco in 2012 is rearing its head again, the Gulf kingdom has warned. Saudi television reported on January 23 that at least one [...]