TRISIS/TRITON

TRITON is a malware variant that targets Schneider Electric Triconex Safety Instrumented System (SIS) controllers. It was discovered in December 2017 by cybersecurity firm, Mandiant, a FireEye company, when they responded to a cyber incident at an undisclosed critical infrastructure organization.

Read More
Stuxnet

A computer worm used to target the Iranian uranium enrichment facility outside Natanz, Iran. It is considered the first cyberweapon due to its ability to cause a physical effect. It was used to degrade and destroy approximately 1,000 centrifuges at the Natanz facility.

Read More
ICS MalwareNJCCICstuxnet
Havex

Havex is a Remote Access Trojan (RAT) that was discovered in 2013 as part of a widespread espionage campaign targeting industrial control systems (ICS) used across numerous

Read More
ICS MalwareNJCCIChavex
BlackEnergy

BlackEnergy malware first appeared in 2007 as a DDoS tool and was traded among cybercriminals until, in 2010, a Russian hacking group known as the Sandworm Team – widely  reported to have links to Russian Intelligence Service – began utilizing BlackEnergy2 (BE2) to conduct espionage against industrial control system networks.

Read More