Industrial Control System (ICS) In Eyes In The Middle East: LTS Secure Warns About Triton Malware

Pune – April 26, 2019

Digital freedom conspired of threats stops where that of manual users begins. Nowadays, digital evolution must no longer be a customer trade-off between privacy and security as no individual is aware when there can be a threat to security in cyber. Privacy is not to sell, it’s a valuable asset to protect. The threat that can’t be hidden in dark for a long time finds a victim to shed, such is The Triton Malware which first was noticed after a disruptive critical-infrastructure attack on Saudi oil giant Petro Rabigh in 2017 and has found its second home been stuck in the Velcro of threat yet again.

The hub of cybercriminals entailed behind Triton are recognized as Trisis, who is furthermore again active to target the potential Industrial Control system (ICS) and this period, the victim being an undisclosed company in the Middle East being fallen into a trap.

Triton got its apprehension from the verity that it focuses on Triconex safety instrumented system (SIS) controllers, which are being traded by Schneider Electric. Their intention is to shut down the plant’s operations in an event of a crisis and act as an automated safety defense for industrial facilities. They are fabricated to hinder equipment failure and catastrophic incidents such as explosions or fire. This can on a large scale affect the unwanted downtime along with financial losses and physical impact on production and plant.

Each elimination has a hidden key to unveil the upcoming solution, such has been for this threat as well. As this malware targets the Triconex MP3008 Firmware v10.0-10.4 MPC860 PowerPC Processor, the users can update their firmware to the latest version or patch is also available for that. Users can also segregate the physical and logical access to ICS networks by using DMZ and firewall so that unauthorized access can be prohibited.

These malicious ingredients have to be taken care of as- prevention is better than cure. LTS Secure Integrated SOC Solution monitors your PC for such threats to deliver continuous results of detected advanced attacks on the app, devices and by the user and deliver context-aware security protection platform to protect from motivated attacks. It also integrates security silos to give you cost-effective security and enable SOC as service with intelligence, social awareness, and predictive security for all the IT layers.

For more information click here


About LTS Secure:

LTS Secure is an Integrated Security Platform (SIEM + UEBA + CASB + IDM) that enables continuous monitoring & detection of Threats, Vulnerabilities and Risk of IT Network, Applications and by Users in a single pane based on Security Orchestration, Automation and Response.


Tel : +91-20-2689 9853