Download Certificate- Most Promising Partner | ECIO | Most Admired Brand | Most Trusted Company

Complicated malware targets US critical infrastructures


By MYBRANDBOOK


Complicated malware targets US critical infrastructures

The Department of Energy (DOE), the Cybersecurity and Infrastructure Security Agency (CISA), the National Security Agency (NSA) and the Federal Bureau of Investigation (FBI) are warning the US energy sector that certain APT (advanced persistent threat) threat actors have revealed the capability to gain full system access to multiple industrial control systems (ICS) and supervisory control and data acquisition (SCADA) devices.

 

Several Schneider Electric MODICON and MODICON Nano PLCs (programmable logic controls), including TM251, TM241, M258, M238, LMC058 and LMC078, are impacted. The threat actor tool targeting those devices has modules that interact via normal management protocols and Modbus protocols, allowing attackers to:

· Rapidly scan a local network for all Schneider PLCs

· Brute-force PLCs passwords using CODESYS and other available device protocols against defaults or dictionary word list

· Conduct denial of service attack to prevent PLCs from being reached

· Interrupt connections, requiring users to re-authenticate on PLC, likely to facilitate the capture of valid credentials

· Crash the PLC until a power cycle and configuration recovery is conducted

· Send custom Modbus commands (which can also work against Modbus devices besides Schneider Electric PLCs)

 

The affected OMRON devices are OMRON Sysmac NJ and NX PLCs, including NEX NX1P2, NX-SL3300, NX-ECC203, NJ501-1300, S8VK and R88D-1SN10F-ECT. The threat actor tool targeting those devices have modules allowing attackers to:

· Scan for OMRON using the FINS (factory interface network service) protocol

· Parse HTTP response from OMRON devices

· Retrieve media access control (MAC) address of devices

· Poll for specific devices connected to PLCs

· Back-up/restore arbitrary files to/from PLCs

· Load a custom malicious agent on OMRON PLCs for additional attack operations (do file manipulations, make packet captures or execute code).

 

A report mentioned in the advisory, refers to a likely state-sponsored attacking tool dubbed Incontroller (aka Pipedream), built to target automation devices. Incontroller comprises three elements targeting all the devices reported in the security advisory. Each tool might be used separately, but it is also possible that all the tools would be used to attack a single environment.

 

Incontroller attack scenarios could lead to operational disruption of activities, leading to delayed production, financial losses and complex facility startup procedures; sabotage of industrial processes, resulting in defective products or malfunctioning machine behavior; physical destruction of the industrial machinery, impacting human safety and the environment and damage to equipment.

 

Pipedream malware is targeted to equipment in liquefied natural gas (LNG) and electric power environments, but could easily adapt and compromise and disrupt a broader set of targets. The joint advisory from US government agencies have suggested mitigations to this threat.
 BREAKING NEWS  BREAKING NEWS
Cisco announces AI-native secure Wi-Fi 7 for future-ready employe

Cisco announces AI-native secure Wi-Fi 7 for future-ready employe...

Announcing a major leap in wireless technology, Cisco has launched its Wi...

The BSE benchmark Sensex tumbled over 800 points, leaving investo

The BSE benchmark Sensex tumbled over 800 points, leaving investo...

The BSE benchmark Sensex recently experienced a significant drop, tumblin...

North Korean GPS Interference Disrupts Air Traffic

North Korean GPS Interference Disrupts Air Traffic...

South Korea's military has publicly accused North Korea of disrupting GP...

US ordered TSMC to halt chip shipments to China

US ordered TSMC to halt chip shipments to China...

TSMC has had regular discussions with the government on export control issu...

 TECHNO TRENDS  Placeholder image
Nazara and ONDC set to transform in-game monetization with ‘

Nazara and ONDC set to transform in-game monetization with ‘

Nazara Technologies has teamed up with the Open Network for Digital Comme...

Jio Platforms and NICSI to offer cloud services to government

Jio Platforms and NICSI to offer cloud services to government

In a collaborative initiative, the National Informatics Centre Services In...

BSNL awards ₹5,000 Cr Project to RVNL-Led Consortium

BSNL awards ₹5,000 Cr Project to RVNL-Led Consortium

A syndicate led by Rail Vikas Nigam Limited (abbreviated as RVNL), along wi...

Pinterest tracks users without consent, alleges complaint

Pinterest tracks users without consent, alleges complaint

A recent complaint alleges that Pinterest, the popular image-sharing platf...

 E-Magazine 
 TECHNOTAINMENT  Placeholder image
Eloelo teams up with Elvish Yadav for India's biggest digital

Eloelo teams up with Elvish Yadav for India's biggest digital

Netflix adds 'Moments' feature for saving, sharing scenes from

Netflix adds 'Moments' feature for saving, sharing scenes from

Netflix has introduced a new “Moments” feature on its mobile app, whic
Jacqueline Fernandez come together with YouTuber Mr. Beast for

Jacqueline Fernandez come together with YouTuber Mr. Beast for

Jacqueline Fernandez has partnered with American YouTuber Mr. Beast to b
 MOVERS & SHAKERS  Placeholder image
Kamal Nath quits SIFY Technologies

Kamal Nath quits SIFY Technologies

Visa elevates Rishi Chhabra as new Country Manager for India

Visa elevates Rishi Chhabra as new Country Manager for India

Rishi holds a Master’s in Industrial Engineering from The Ohio State Univ
Genesys welcomes Albert Nel as Senior VP and Regional Sales Le

Genesys welcomes Albert Nel as Senior VP and Regional Sales Le

Genesys continues to deepen its investment in the APAC region. Earlier this
 OPEN YOUR EYES  Placeholder image

Building of a secure infrastructure is highly essential to stop malicious activity
Big Data and Cyber Security Brings Newer Challenges for WFH
India to be the top destination for companies moving out of China
Capitalising on agility to win the digital banking competition
COVID-19 Crisis Leads To Rising Growth Of Enterprise Collaboration Market
 INTERVIEWS  Placeholder image
Cisco building a trusted and resilient future for the nation

Cisco building a trusted and resilient future for the nation

Alpha Max offers high end solutions in the network space to en

Alpha Max offers high end solutions in the network space to en

The vision at Alpha Max is to attain quality as the trademark and create a

In India, 88% of Indian business leaders are planning to inves

In India, 88% of Indian business leaders are planning to inves

As we move through 2024, it has become increasingly clear that AI is not ju
 HOT PICK  Placeholder image
BOULT unveils AmpVault V10 & V20 powerbanks: Fast charging, sa

BOULT unveils AmpVault V10 & V20 powerbanks: Fast charging, sa

SonicWall Launches TZ80: A Powerful Solution for Remote Office

SonicWall Launches TZ80: A Powerful Solution for Remote Office

SonicWall announced today the launch of the TZ80, a groundbreaking securit
Gigabyte X3D Turbo: A Gaming Revolution

Gigabyte X3D Turbo: A Gaming Revolution

GIGABYTE X3D Turbo Mode is a cutting-edge feature that unifies cores distr
 MAKE IN INDIA BRANDS   Placeholder image
ZOHO CORPORATION PVT. LTD.

ZOHO CORPORATION PVT. LTD.


SAFE SECURITY SERVICES PVT. LTD.

SAFE SECURITY SERVICES PVT. LTD.


LAVA INTERNATIONAL LTD.

LAVA INTERNATIONAL LTD.


VERSA NETWORKS INDIA PVT. LTD.

VERSA NETWORKS INDIA PVT. LTD.


 EMINENT CIO'S OF INDIA  EMINENT CIO'S OF INDIA

SUSTAINING SUCCESS BY DELIVERING VALUE TO CUSTOMERS

This includes conducting regular audits, risk asse...

AGILE TECHNIQUE ENCOURAGES TEAMWORK, ADAPTABILITY, AND CONTINUOUS ITERATION

Several emerging technology trends are significant...

AI TO IMPROVE INSIGHTS THROUGH AUGMENTED ANALYTICS, WHILE EDGE COMPUTING TO ALLOW REAL-TIME PROCESSING

For the fiscal year 2024-25, our organization has ...

 ICONS OF INDIA  Placeholder image

Icons Of India : Arundhati Bhattacharya

Arundhati Bhattacharya serves as the Chairperson and CEO of Salesforce...

ICONS OF INDIA : RAMESH NATRAJAN

Ramesh Natarajan, CEO of Redington Limited, on overcoming ‘technolog...

Icons Of India : NATARAJAN CHANDRASEKARAN

Natarajan Chandrasekaran (Chandra) is the Chairman of Tata Sons, the h...

 PARTNER SPEAKERS  EMINENT CIO'S OF INDIA

Delivering Innovative Solutions To Address Customer Challenges

Data plays a crucial role in Shivaami Cloud’s brand strategy. It leverages a...

Iris Global Services - “The Most Responsive Distributor”

As a company, Iris Global Services is equipped with everything it takes to set...

Enhanced Skills & Expertise helping to better serve customers and stay ahead of the curve

Feedback Forms: Conducting surveys and collecting feedback from customers is a...

 PSU  Placeholder image

TCIL - Telecommunications Consultants India Limited  

TCIL is a government-owned engineering and consultancy company...

LIC - Life Insurance Corporation of India 

LIC is the largest state-owned life insurance company in India...

PFC - Power Finance Corporation Ltd

PFC is a leading financial institution in India specializing in power ...

 VIDEOS  Placeholder image

 Top 25 Brands  Solution partners

Most Trusted Brands 2024 : Salesforce Inc.  

Salesforce prioritizes customer success and satisfaction, focusing on building...

Most Trusted Brands 2024: DELL TECHNOLOGIES INC.

Dell Technologies has been at the forefront of developing edge computing solut...

Most Trusted Brands 2024: GOOGLE

Google has a long history of technological innovation across various domains, ...

 Global Indian industry   Value-Added Distribution

Indian Tech Talent Excelling The Tech World - Sundar Pichai, CEO- Alphabet Inc.

Sundar Pichai, the CEO of Google and its parent company Alphabet Inc.,...

Indian Tech Talent Excelling The Tech World - Rajiv Ramaswami, President & CEO, Nutanix Technologies

Rajiv Ramaswami, President and CEO of Nutanix, brings over 30 years of...

Indian Tech Talent Excelling The Tech World - JAYASHREE ULLAL, President and CEO - Arista Network

Jayshree V. Ullal is a British-American billionaire businesswoman, ser...

 STARNITE AWARDS 2024  
 ITFORUM 2024  
   
 CMO of the Year   Placeholder image
 WOMEN LEADERSHIP  Placeholder image
 IMAGE GALLERY   Placeholder image
 TRENDS IN TECHNOLOGY  Placeholder image
MORE VIDEOS  Placeholder image
Brand Book
Brand Book
Brand Book
Brand Book
 ADVERTISEMENTS  Placeholder image
Brandbook Brandbook
 TECHNOLOGY DISRUPTION Placeholder image

Indian semiconductor Industry to reach $55 bn by 2026

Indian semiconductor Industry to reach $55 bn by 2026

Web 3.0 a $1.1 trillion growth opportunity for India

Web 3.0 a $1.1 trillion growth opportunity for India

DGNP Vishakhapatnam selects Dassault Systèmes for naval infrastructure project monitoring in India

DGNP Vishakhapatnam selects Dassault Systèmes for naval infrastructure project monitoring in India

WhatsApp to launch display banner to speak on the privacy policy

WhatsApp to launch display banner to speak on the privacy policy

 UNICORNS REVOLUTIONISING Placeholder image

Hella Infra Market Private Limited

Hella Infra Market Private Limited

Fractal Analytics Private Limited

Fractal Analytics Private Limited

Fashnear Technologies Private Limited

Fashnear Technologies Private Limited

5ire

5ire


Copyright www.mybrandbook.co.in @1999-2024 - All rights reserved.
Reproduction in whole or in part in any form or medium without express written permission of Kalinga Digital Media Pvt. Ltd. is prohibited.
Other Initiatives : www.varindia.com | www.spoindia.org
ADMIRED BRANDS

AFTER MARKET SERVICES

CATEGORIES

DISTRIBUTORS & VADs
GOVERNMENT BODIES

INDUSTRY BODIES

MAKE IN INDIA

CONTACT US

SUBSCRIBE NOW