Friday, February 26, 06:07
Home youtube US: Sanctions on a Russian institute for the development of Triton malware!

US: Sanctions on a Russian institute for the development of Triton malware!

The US Treasury Department announced sanctions late last week on a Russian research institute allegedly involved in the development of Triton, a malware strain designed to attack industries. This is State Research Center of the Russian Federation FGUP Central Scientific Research Institute of Chemistry and Mechanics, also known as CNIIHM or TsNIIKhM.

A report of FireEye released in October 2018 recognized CNIIHM as the possible creator of Triton malware. Triton malware, also known as Trisis or HatMan, was designed to specifically target a specific type of Industrial Control System (ICS) equipment to Schneider Electric Triconex Safety Instrumented System (SIS) controllers.

US: Sanctions on a Russian institute for the development of Triton malware!

According to technical reports from FireEye, Dragos and Symantec, the malware was distributed through Phishing campaigns. As soon as it managed to infect a workstation, it looked for SIS controllers in network a victim and then tried to modify the controller settings.

The researchers said the Triton contained instructions that could either shut down a production process or push SIS-controlled machines into an unsafe state, creating an explosion hazard but also endangering the lives of the people who operate the machines. .

US: Sanctions on a Russian institute for the development of Triton malware!

The malware was first detected in 2017, after being successfully used during an intrusion into a petrochemical plant in Saudi Arabia owned by Tasnee. During the attack of malware, it almost exploded.

Since then, malware has targeted numerous companies around the world. In addition, the team behind it - known as TEMP.Veles or Xenotime - has targeted at least 20 U.S. power services, which it has been scanning for vulnerabilities.

US: Sanctions on a Russian institute for the development of Triton malware!

Sanctions now imposed on the Russian research institute prohibit US entities from interacting with the CNIIHM, while providing for the seizure of any assets held by the institute in the US.
Minister Steven T. Mutsin commented on the incident, saying that the Russian government continues to carry out dangerous activities in cyberspace targeting the US and its allies. He also stressed that the US government will continue to protect the critical infrastructure of the country from anyone who tries to disrupt it.

Earlier last week, the US Department of Justice filed charges against six hacker of the Sandworm team, who allegedly developed the NotPetya, KillDisk, BlackEnergy and OlympicDestroyer malware. At the same time, the CISA and the FBI revealed a recent hacking campaign, behind which is the Russian team "Energetic Bear". The EU has also imposed sanctions on two Russian military intelligence officers for their role in hacking German Parliament the 2015.

However, as several security researchers have pointed out in Twitter, shortly after the announcement of the sanctions imposed by the Ministry of Finance, the US may not benefit from this move, as in the past they have carried out attacks against industrial systems through the development of Stuxnet malware against Iran's nuclear program in 2010.

LEAVE ANSWER

Please enter your comment!
Please enter your name here

Pohackontas
Pohackontashttps://www.secnews.gr
Every accomplishment starts with the decision to try.

LIVE NEWS

Wear OS: The phrase "OK Google" has not worked for months

The Wear OS smartwatch suddenly stopped responding to the "OK Google" command, do not worry you are not the only one experiencing this ...

Telegram: Automatically deletes messages with a timer

Telegram releases a new update for the iOS and Android application that brings features such as automatic deletion of messages, chat widget ...

Google is funding two developers to focus on Linux security

Linux is more secure than most operating systems, but that does not mean that its security can be taken for granted ....

AI can write a university paper in 20 minutes

AI can do many things extremely well. Something that can do relatively well is to write a university ...

Kali Linux 2021.1 has been released with new features!

Kali Linux closed last year with the release of v2020.4. The manufacturer Offensive Security has now announced a new ...

NASA's Perseverance sends new image from landing on Mars

One of the most important achievements in space exploration in recent years is the landing of the Perseverance rover on its surface ...

Google: Switch to the new Pay app to access it

Last year, the Google Pay application released a new updated interface, however many users did not choose it and remained in the old one, since they had ...

US Federal Reserve: Where does the shutdown come from?

On February 24, the US Federal Reserve (FED) suffered extensive interruptions in many of its payment services, including a system in which ...

USA: SolarWinds hackers "hit" NASA and FAA!

NASA and the US Federal Aviation Administration (FAA) have been cyber-attacked by hackers who "hit" SolarWinds, according to a report ...

Australia: Facebook and Google will pay for the news

We have recently witnessed a dispute between Facebook and Australia over news content on the platform. And...