The “Swiss knife” from the world of hackers was discovered: hack into power grids and refineries and also take control
This is the most extensive attack tool on industrial control systems ever documented
The US government has warned of malware targeting industrial control systems such as power grids, factories, water utilities and oil refineries.
On Wednesday, the Department of Energy, the Cybersecurity and Infrastructure Protection Agency, the NSA and the FBI jointly issued a warning about a new hacking toolkit with the potential to interfere with a wide range of industrial control systems equipment.
The malware, which surpasses all previous toolkits for hacking industrial control systems, contains a set of components designed to disrupt or take control of the operation of devices, including programmable logic controllers sold by Schneider Electric and OMRON, which are designed to interface traditional computers with actuators and sensors in industrial environments.
Another component of the malware is designed to infect Open Platform Communications Unified Architecture (OPC UA) servers, computers that communicate with these controllers.
“This is the most extensive attack tool on industrial control systems ever documented,” says Sergio Caltagirone, vice president of threat intelligence at industrial cybersecurity company Dragos.
Researchers from Mandiant, Palo Alto Networks, Microsoft, and Schneider Electric also contributed to the recommendation. “It’s like a swiss army knife with a lot of detail”.