The attackers, who are believed to be state-sponsored, targeted the Triconex industrial safety technology made by Schneider Electric SE, according to security firm FireEye and Schneider, who disclosed the incident on Thursday. Experts said the attack marks the first reported breach of a safety system at an industrial plant by hackers. Galina Antova, co-founder of cybersecurity firm Claroty, said safety systems “could be fooled to indicate that everything is OK” even as hackers damage a plant. The hackers used sophisticated malware, dubbed “Triton”, to take remote control of a safety control workstation, according to a FireEye investigation. The attackers were probably attempting to learn how they could modify safety systems if they wished to launch an attack in future, said FireEye.

Source: The Guardian December 15, 2017 11:14 UTC