Filter
18 October 2023
Updated MATA attacks industrial companies in Eastern EuropeKaspersky experts discovered several detections of malware from the MATA cluster, previously attributed to the Lazarus group, compromising defense contractor companies in Eastern Europe.
05 October 2023
H1 2023 – a brief overview of main incidents in industrial cybersecurityIn this overview, we discuss cybercriminal and hacktivist attacks on industrial organizations.
25 September 2023
APT and financial attacks on industrial organizations in H1 2023An overview of reports of APT and financial attacks on industrial enterprises, as well as related activities of groups that have been observed attacking industrial organizations and critical infrastructure facilities
13 September 2023
Threat landscape for industrial automation systems. Statistics for H1 2023The statistical data presented in the report was received from ICS computers protected by Kaspersky products that Kaspersky ICS CERT categorizes as part of the industrial infrastructure at organizations.
10 August 2023
Common TTPs of attacks against industrial organizations. Implants for uploading dataIn this part we present information on the four types of implants and two tools used during the last (third) stage of the attacks discovered.
31 July 2023
Common TTPs of attacks against industrial organizations. Implants for gathering dataThis part of the research is devoted to second stage malware used to gather data on infected systems of industrial organizations.
20 July 2023
Common TTPs of attacks against industrial organizations. Implants for remote accessIn this article (which is the first part of the report) we analyze common TTPs of implants used by threat actors to establish a persistent remote access channel into the infrastructure of industrial organizations.
24 March 2023
APT attacks on industrial organizations in H2 2022This summary provides an overview of APT attacks on industrial enterprises and activity of groups that have been observed attacking industrial organizations and critical infrastructure facilities.
15 March 2023
H2 2022 – brief overview of main incidents in industrial cybersecurityIn this overview, we discuss cybercriminal and hacktivist attacks on industrial organizations.
06 March 2023
Threat landscape for industrial automation systems. Statistics for H2 2022The statistical data presented in the report was received from ICS computers protected by Kaspersky products that Kaspersky ICS CERT categorizes as part of the industrial infrastructure at organizations.
Filter
28 May 2020
Multiple vulnerabilities in EcoStruxure Operator Terminal ExpertVulnerabilities that can lead to unsanctioned account access or remote code execution.
28 May 2020
Dangerous vulnerabilities in Emerson OpenEnterpriseKaspersky ICS CERT has discovered vulnerabilities that may allow threat actors to modify configuration files, execute arbitrary code remotely or access user passwords.
20 May 2020
Cyber incidents in industrial enterprises during the first half of May: Stadler, Elexon, BlueScopeVictims included a railway stock manufacturer, an electric utility company and a steel producer. One incident brought operations to a halt
30 April 2020
Multiple vulnerabilities in ABB 800xA DCSThe vulnerabilities could allow attackers to remotely compromise hosts, cause denial-of-service conditions or elevate their privileges
29 April 2020
Targeted attacks on Israeli water supply and wastewater treatment facilitiesIsraeli authorities have warned of possible attacks on SCADA systems of wastewater treatment, water pumping and sewerage facilities
24 April 2020
Malicious campaigns against Azerbaijan’s government and industrial organizationsThe attackers use PoetRAT, a new RAT Trojan distributed via Microsoft Word documents
17 April 2020
Dozens of Siemens industrial devices are affected by DoS vulnerabilitiesSiemens industrial solutions are affected by SegmentSmack and FragmentSmack vulnerabilities, which could lead to device denial of service
17 April 2020
New ransomware attacks on industrial enterprisesIn new ransomware attacks, victims face the choice between paying the ransom and seeing their sensitive data published by the attackers
13 April 2020
Multiple vulnerabilities in Advantech WebAccess/NMSIf exploited, the vulnerabilities could lead to arbitrary code execution, file manipulations, denial of service and the creation of an admin account
03 April 2020
Threat actor behind Ruyk malware continues attacks on medical facilities despite epidemicIn the past month, 10 more hospitals have fallen victim to Ryuk attacks in the US
Filter
To drive the discussion around the future of OT cybersecurity and equip industry practitioners with the relevant knowledge and best practices, Kaspersky Lab invites industrial cybersecurity experts to submit their researches and reports to its 6th annual conference on industrial cybersecurity by June 1
The Massachusetts Institute of Technology (MIT), in collaboration with Kaspersky Lab, hosted its second annual “Think Security” seminar devoted to protecting industrial automation systems from cyberattacks. The seminar featured an industrial Capture the Flag (CTF) contest
Kaspersky Lab ICS CERT experts have held the first tech talk on industrial cyber security at UC Berkeley.
The finals of Kaspersky Industrial CTF 2017, an industrial cybersecurity contest, were held in Shanghai. This was the third CTF (Capture the Flag) tournament organized by Kaspersky Lab and the first to have the international status
Kaspersky Lab has released the results of Kaspersky Industrial CTF 2017 qualifications, which were held online on October 6-8, 2017. This year’s tournament is truly international, with 696 teams from different countries participating in qualifications. The top three teams were, respectively, CyKor (Korea), Eat, Sleep, Pwn, Repeat (Germany) and Tokyo Westerns (Japan).
Kaspersky Lab has held the Industrial Cybersecurity: Safeguarding Technological Progress conference in Saint Petersburg. The conference was devoted to the most pressing issues associated with protecting modern industrial systems from cyberthreats. Its 300 guests and speakers represented more than 170 organizations from over 15 countries across the globe.