Attacks like Stuxnet, and a few others, proved that very sophisticated threat actors could target industrial control systems (ICS) with malware. However, there are only a handful of cases with any evidence of these types of attacks. Dragos researchers wanted to see how bad the ICS threat really is. Are the vendors warning about ICS insecurity full of FUD, or is the ICS threat real?
What they found might surprise you. ICS organization are under a targeted attack, but perhaps not from the sophisticated “Stuxnet-like” threat actors you might assume. Watch the video below to learn more about their findings, and visit their blog post in the links below.
Episode Runtime: 4:20
Direct YouTube Link: https://www.youtube.com/watch?v=MymcoOqVoXo
EPISODE REFERENCES:
- Dragos’ Project Mimic ICS security research – Dragos
- Malware disguises itself as Siemens Firmware – The Register
Corey Nachreiner, CISSP (@SecAdept)
Leave a Reply