Don't click or your IP will be banned


Hittin' The Web with the Allman Brothers Band Forum
You are not logged in

< Last Thread   Next Thread >Ascending sortDescending sorting  
Author: Subject: Cybersecurity Firms Uncover Malware That Could Cause Power Outages Around The Globe

World Class Peach





Posts: 5483
(5482 all sites)
Registered: 9/9/2011
Status: Offline

  posted on 6/13/2017 at 09:45 AM
http://www.huffingtonpost.com/entry/malware-power-grid_us_593fa144e4b0b13f2 c6d9285?ncid=inblnkushpmg00000009

Cybersecurity Firms Uncover Malware That Could Cause Power Outages Around The Globe

“This could cause wide-scale damage to infrastructure systems that are vital.”

By Jim Finkle

June 12 (Reuters) - Two cyber security firms have uncovered malicious software that they believe caused a December 2016 Ukraine power outage, they said on Monday, warning the malware could be easily modified to harm critical infrastructure operations around the globe.

ESET, a Slovakian anti-virus software maker, and Dragos Inc, a U.S. critical-infrastructure security firm, released detailed analyzes of the malware, known as Industroyer or Crash Override, and issued private alerts to governments and infrastructure operators to help them defend against the threat.

The U.S. Department of Homeland Security said it was investigating the malware, though it had seen no evidence to suggest it has infected U.S. critical infrastructure.

The two firms said they did not know who was behind the cyber attack. Ukraine has blamed Russia, though officials in Moscow have repeatedly denied blame.

Still, the firms warned that there could be more attacks using the same approach, either by the group that built the malware or copycats who modify the malicious software.

“The malware is really easy to re-purpose and use against other targets. That is definitely alarming,” said ESET malware researcher Robert Lipovsky said in a telephone interview. “This could cause wide-scale damage to infrastructure systems that are vital.”

The Department of Homeland Security corroborated that warning, saying it was working to better understand the threat posed by Crash Override.

“The tactics, techniques and procedures described as part of the Crash Override malware could be modified to target U.S. critical information networks and systems,” the agency said in an alert posted on its website.

The alert posted some three dozen technical indicators that a system had been compromised by Crash Override and asked firms to contact the agency if they suspected their systems were compromised by the malware.

Dragos founder Robert M. Lee said the malware was capable of attacking power systems across Europe and could be leveraged against the United States “with small modifications.”

It is able to cause outages of up to a few days in portions of a nation’s grid, but is not potent enough to bring down a country’s entire grid, Lee said by phone.

With modifications, the malware could attack other types of infrastructure including local transportation providers, water and gas providers, Lipovsky said.

Power firms are concerned there will be more attacks, Alan Brill, a leader of Kroll’s cyber security practice, said in a telephone interview.

“You are dealing with very smart people who came up with something and deployed it,” Brill said. “It represents a risk to power distribution organizations everywhere.”

Industroyer is only the second piece of malware uncovered to date that is capable of disrupting industrial processes without the need for hackers to manually intervene.

The first, Stuxnet, was discovered in 2010 and is widely believed by security researchers to have been used by the United States and Israel to attack Iran’s nuclear program.

A spokesman for Ukraine’s state cyber police said it was not clear whether the malware was used in the December 2016 attack. Ukraine’s state-run Computer Emergency Response Team did not immediately respond to requests for comment.

The Kremlin and Russia’s Federal Security Service did not reply to requests for comment.

Crash Override can be detected if a utility monitors its network for abnormal traffic, including signs the malware is searching for the location of substations or sending messages to switch breakers, according to Lee, a former U.S. Air Force cyber warfare operations officer.

Malware has been used in other disruptive attacks on industrial targets, including the 2015 Ukraine power outage, but in those cases human intervention was required.

ESET said it had been analyzing the malware for several months and had held off on going public to preserve the integrity of investigations into the power system hack.

ESET last week provided samples with Dragos, which said it was able to confirm the malware was used in the Ukraine grid attack.

 

____________________
Flies all green 'n buzzin' in his dungeon of despair
Who are all those people that he's locked away up there
Are they crazy?,
Are they sainted?
Are they zeros someone painted?,
It has never been explained since at first it was created

 
Visit User's Homepage
Replies:

Zen Peach



Karma:
Posts: 19844
(20310 all sites)
Registered: 1/19/2002
Status: Offline

  posted on 6/14/2017 at 07:16 PM
There actually miscreants in this country who play with taking down the power grid for the east coast. I can watch their live attempts, from global software that monitors that stuff, and they originate from Redmond, Washington.



[Edited on 6/15/2017 by gina]

 

____________________
"Mankind is a single nation" "Allah did not make you a single people so he could try you in what he gave you, to him you will all return, he will inform you where you differed". Quran Chapter 2 Sura 213

 

World Class Peach



Karma:
Posts: 5483
(5482 all sites)
Registered: 9/9/2011
Status: Offline

  posted on 6/14/2017 at 08:15 PM
i don't doubt that

 

____________________
Flies all green 'n buzzin' in his dungeon of despair

Who are all those people that he's locked away up there

Are they crazy?,

Are they sainted?

Are they zeros someone painted?,

It has never been explained since at first it was created

 

Maximum Peach



Karma:
Posts: 9704
(9729 all sites)
Registered: 4/27/2003
Status: Offline

  posted on 6/14/2017 at 09:17 PM
quote:
There actually miscreants in this country who play with taking down the power grid for the east coast. I can watch their live attempts, from global software that monitors that stuff, and they originate from Redmond, Washington.



[Edited on 6/15/2017 by gina]


Well hell if you can see it and are watching then hopefully the law enforcement departments I put my faith and trust in to protect and serve are one step ahead of you. No offense.

 

World Class Peach



Karma:
Posts: 5483
(5482 all sites)
Registered: 9/9/2011
Status: Offline

  posted on 6/14/2017 at 10:00 PM
yup

 

____________________
Flies all green 'n buzzin' in his dungeon of despair

Who are all those people that he's locked away up there

Are they crazy?,

Are they sainted?

Are they zeros someone painted?,

It has never been explained since at first it was created

 

Zen Peach



Karma:
Posts: 19844
(20310 all sites)
Registered: 1/19/2002
Status: Offline

  posted on 6/20/2017 at 04:42 PM
quote:
quote:
There actually miscreants in this country who play with taking down the power grid for the east coast. I can watch their live attempts, from global software that monitors that stuff, and they originate from Redmond, Washington.



[Edited on 6/15/2017 by gina]


Well hell if you can see it and are watching then hopefully the law enforcement departments I put my faith and trust in to protect and serve are one step ahead of you. No offense.


Possibly so, but with all the corruption at the higher levels of govt. until the swamp is drained it just continues.

 

____________________
"Mankind is a single nation" "Allah did not make you a single people so he could try you in what he gave you, to him you will all return, he will inform you where you differed". Quran Chapter 2 Sura 213

 

Zen Peach



Karma:
Posts: 19844
(20310 all sites)
Registered: 1/19/2002
Status: Offline

  posted on 6/27/2017 at 04:17 PM
Whoever started it is still at it, or someone is copying them, because people who have paid the ransom still did not get their files released!

http://abcnews.go.com/International/massive-cyberattack-strikes-europe/stor y?id=48303592

 

____________________
"Mankind is a single nation" "Allah did not make you a single people so he could try you in what he gave you, to him you will all return, he will inform you where you differed". Quran Chapter 2 Sura 213

 
 


Powered by XForum 1.81.1 by Trollix Software

Privacy | Terms of Service | Report Infringement | Personal Data Management | Contact Us
The ALLMAN BROTHERS BAND name, The ALLMAN BROTHERS name, likenesses, logos, mushroom design and peach truck are all registered trademarks of THE ABB MERCHANDISING CO., INC. whose rights are specifically reserved. Any artwork, visual, or audio representations used on this web site CONTAINING ANY REGISTERED TRADEMARKS are under license from The ABB MERCHANDISING CO., INC. A REVOCABLE, GRATIS LICENSE IS GRANTED TO ALL REGISTERED PEACH CORP MEMBERS FOR The DOWNLOADING OF ONE COPY FOR PERSONAL USE ONLY. ANY DISTRIBUTION OR REPRODUCTION OF THE TRADEMARKS CONTAINED HEREIN ARE PROHIBITED AND ARE SPECIFICALLY RESERVED BY THE ABB MERCHANDISING CO.,INC.
site by Hittin' the Web Group with www.experiencewasabi3d.com