|
Pipedream (toolkit)
Pipedream is a software framework for malicious code targeting programmable logic controllers (PLCs) and industrial control systems (ICS). First publicly disclosed in 2022, it has been described as a "Swiss Army knife" for hacking. It is believed to have been developed by state-level Advanced Persistent Threat actors. The name "Pipedream" was given by the cybersecurity company Dragos; the cybersecurity company Mandiant uses the name "Incontroller". It has been compared with the Industroyer toolkit used in the December 2015 Ukraine power grid cyberattack. Dragos refers to the authors of the software as Chernovite. Details The toolkit consists of custom-made tools that, once they have established initial access in an operational technology (OT) network, enables them to scan for, compromise, and control certain ICS/SCADA devices, including the following: * Schneider Electric PLCs, * OMRON Sysmac NEX PLCs, and * Open Platform Communications Unified Architecture (OPC UA) serv ... [...More Info...] [...Related Items...] OR: [Wikipedia] [Google] [Baidu] |
Software Framework
In computer programming, a software framework is an abstraction in which software, providing generic functionality, can be selectively changed by additional user-written code, thus providing application-specific software. It provides a standard way to build and deploy applications and is a universal, reusable software environment that provides particular functionality as part of a larger software platform to facilitate the development of software applications, products and solutions. Software frameworks may include support programs, compilers, code libraries, toolsets, and application programming interfaces (APIs) that bring together all the different components to enable development of a project or system. Frameworks have key distinguishing features that separate them from normal libraries: * ''inversion of control'': In a framework, unlike in libraries or in standard user applications, the overall program's flow of control is not dictated by the caller, but by the frame ... [...More Info...] [...Related Items...] OR: [Wikipedia] [Google] [Baidu] |
Schneider Electric
Schneider Electric SE is a French multinational company that specializes in digital automation and energy management. It addresses homes, buildings, data centers, infrastructure and industries, by combining energy technologies, real-time automation, software, and services. Schneider Electric is a Fortune Global 500 company, publicly traded on the Euronext Exchange, and is a component of the Euro Stoxx 50 stock market index. In FY2020, the company posted revenues of €25.2 billion. Schneider Electric is the parent company of Square D, APC, and others. It is also a research company. Head office Schneider Electric has had its head office in Rueil-Malmaison, France since 2000. This headquarters previously housed Schneider subsidiary Télémécanique while the parent company occupied a site in Boulogne-Billancourt. The company uses an international operations model wherein its key personnel and large numbers of its staff are spread across main offices in Reuil-Malmaison, Hong ... [...More Info...] [...Related Items...] OR: [Wikipedia] [Google] [Baidu] |
Cyberwarfare
Cyberwarfare is the use of cyber attacks against an enemy state, causing comparable harm to actual warfare and/or disrupting vital computer systems. Some intended outcomes could be espionage, sabotage, propaganda, manipulation or economic warfare. There is significant debate among experts regarding the definition of cyberwarfare, and even if such a thing exists. One view is that the term is a misnomer, since no cyber attacks to date could be described as war. An alternative view is that it is a suitable label for cyber attacks which cause physical damage to people and objects in the real world. Many countries including the United States, United Kingdom, Russia, China, Israel, Iran, and North Korea have active cyber capabilities for offensive and defensive operations. As states explore the use of cyber operations and combine capabilities, the likelihood of physical confrontation and violence playing out as a result of, or part of, a cyber operation is increased. However, meeti ... [...More Info...] [...Related Items...] OR: [Wikipedia] [Google] [Baidu] |
Malware Toolkits
Malware (a portmanteau for ''malicious software'') is any software intentionally designed to cause disruption to a computer, server, client, or computer network, leak private information, gain unauthorized access to information or systems, deprive access to information, or which unknowingly interferes with the user's computer security and privacy. By contrast, software that causes harm due to some deficiency is typically described as a software bug. Malware poses serious problems to individuals and businesses on the Internet. According to Symantec's 2018 Internet Security Threat Report (ISTR), malware variants number has increased to 669,947,865 in 2017, which is twice as many malware variants as in 2016. Cybercrime, which includes malware attacks as well as other crimes committed by computer, was predicted to cost the world economy $6 trillion USD in 2021, and is increasing at a rate of 15% per year. Many types of malware exist, including computer viruses, worms, Trojan hors ... [...More Info...] [...Related Items...] OR: [Wikipedia] [Google] [Baidu] |
Triton (malware)
Triton is malware first discovered at a Saudi Arabian petrochemical plant in 2017. It can disable safety instrumented systems, which can then contribute to a plant disaster. It has been called "the world's most murderous malware." In December 2017, it was reported that the safety systems of an unidentified power station, believed to be in Saudi Arabia, were compromised when the Triconex industrial safety technology made by Schneider Electric SE was targeted in what is believed to have been a state sponsored attack. The computer security company Symantec claimed that the malware, known as "Triton", exploited a vulnerability in computers running the Microsoft Windows operating system. In 2018, FireEye, a company that researches cyber-security, reported that the malware most likely came from the Central Scientific Research Institute of Chemistry and Mechanics (CNIIHM), a research entity in Russia. See also * Advanced persistent threat * Cyber electronic warfare * Cyber security sta ... [...More Info...] [...Related Items...] OR: [Wikipedia] [Google] [Baidu] |
Havex
Havex malware, also known as Backdoor.Oldrea, is a RAT employed by the Russian attributed APT group “Energetic Bear” or “Dragonfly." Havex was discovered in 2013 and is one of five known ICS tailored malware developed in the past decade. These malwares include Stuxnet, BlackEnergy, Industroyer/CRASHOVERRIDE, and TRITON/TRISIS. Energetic Bear began utilizing Havex in a widespread espionage campaign targeting energy, aviation, pharmaceutical, defense, and petrochemical sectors. The campaign targeted victims primarily in the United States and Europe. Discovery The Havex malware was discovered by cybersecurity researchers at F-Secure and Symantec and reported by ICS-CERT utilizing information from both of these firms in 2013. The ICS-CERT Alert reported analyzing a new malware campaign targeting ICS equipment via several attack vectors and using OPC to conduct reconnaissance on industrial equipment on the target network. Description The Havex malware has two primary comp ... [...More Info...] [...Related Items...] OR: [Wikipedia] [Google] [Baidu] |
Stuxnet
Stuxnet is a malicious computer worm first uncovered in 2010 and thought to have been in development since at least 2005. Stuxnet targets supervisory control and data acquisition ( SCADA) systems and is believed to be responsible for causing substantial damage to the nuclear program of Iran. Although neither country has openly admitted responsibility, the worm is widely understood to be a cyberweapon built jointly by the United States and Israel in a collaborative effort known as Operation Olympic Games. The program, started during the Bush administration, was rapidly expanded within the first months of Barack Obama's presidency. Stuxnet specifically targets programmable logic controllers (PLCs), which allow the automation of electromechanical processes such as those used to control machinery and industrial processes including gas centrifuges for separating nuclear material. Exploiting four zero-day flaws, Stuxnet functions by targeting machines using the Microsoft Windows o ... [...More Info...] [...Related Items...] OR: [Wikipedia] [Google] [Baidu] |
Architecture Of Windows NT
The architecture of Windows NT, a line of operating systems produced and sold by Microsoft, is a layered design that consists of two main components, user mode and kernel mode. It is a preemptive, reentrant multitasking operating system, which has been designed to work with uniprocessor and symmetrical multiprocessor (SMP)-based computers. To process input/output (I/O) requests, they use packet-driven I/O, which utilizes I/O request packets (IRPs) and asynchronous I/O. Starting with Windows XP, Microsoft began making 64-bit versions of Windows available; before this, there were only 32-bit versions of these operating systems. Programs and subsystems in user mode are limited in terms of what system resources they have access to, while the kernel mode has unrestricted access to the system memory and external devices. Kernel mode in Windows NT has full access to the hardware and system resources of the computer. The Windows NT kernel is a hybrid kernel; the architecture compri ... [...More Info...] [...Related Items...] OR: [Wikipedia] [Google] [Baidu] |
ASRock
ASRock Inc. is a Taiwanese manufacturer of motherboards, industrial PCs and home theater PCs (HTPC). Founded by Ted Hsu, it was founded in 2002 and is currently owned by Taiwanese electronics company Pegatron. History ASRock was originally spun off from Asus in 2002 in order to compete with companies like Foxconn for the commodity OEM market. Since then, ASRock has also gained momentum in the DIY sector and plans for moving the company upstream began in 2007 following a successful IPO on the Taiwan Stock Exchange. It was acquired by Pegatron in 2010. As of 2011, ASRock is the world's third largest motherboard manufacturer, having cooperated with professional esports player Johnathan Wendel in the development of a gaming-oriented enthusiast motherboard in 2011. ASRock established itself as a server motherboard affiliate in April 2013, having received orders from 10 mid-size clients for server and industrial PC motherboards and forming partnerships with system integrators. Pro ... [...More Info...] [...Related Items...] OR: [Wikipedia] [Google] [Baidu] |
Open Platform Communications Unified Architecture
OPC Unified Architecture (OPC UA) is a cross-platform, open-source, IEC62541 standard for data exchange from sensors to cloud applications developed by the OPC Foundation. Distinguishing characteristics are: * Standardized data models freely available for over 60 types of industrial equipment, published by the OPC Foundation via Companion Specifications * Extensible security profiles, including authentication, authorization, encryption and checksums * Extensible security key management, including X.509, token and password * Support for both client-server and publish-subscribe communication patterns * Communication protocol independent. Mappings to several communication protocols like TCP/IP, UDP/IP, WebSockets, AMQP and MQTT are specified * Initially successful in standardized data exchange with industrial equipment (discrete manufacturing, process manufacturing, energy) and systems for data collection and control, but now also leveraged in building automation, weighing and kit ... [...More Info...] [...Related Items...] OR: [Wikipedia] [Google] [Baidu] |
OMRON
, styled as OMRON, is a Japanese electronics company based in Kyoto, Japan. Omron was established by in 1933 (as the ''Tateishi Electric Manufacturing Company'') and incorporated in 1948. The company originated in an area of Kyoto called ""( ja), from which the name "Omron" was derived. Prior to 1990, the corporation was known as ''Omron Tateishi Electronics''. During the 1980s and early 1990s, the company motto was: "To the machine the work of machines, to man the thrill of further creation". Omron's primary business is the manufacture and sale of automation components, equipment and systems. In the consumer and medical markets, it is known for medical equipment such as digital thermometers, blood pressure monitors and nebulizers. Omron developed the world's first electronic ticket gate, which was named an IEEE Milestone in 2007, and was one of the first manufacturers of automated teller machines (ATM) with magnetic stripe card readers. Omron Oilfield & Marine is a provider o ... [...More Info...] [...Related Items...] OR: [Wikipedia] [Google] [Baidu] |
