Tuesday, December 3, 2024
HomeCyber Security BlogsHacker Targeting Industrial Control Systems

Hacker Targeting Industrial Control Systems

 

Industrial Control Systems (ICS) have been identified as the target of a threat actor looking to build a botnet network. The attacker does this by using many social media profiles to advertise password-cracking tools for PLCs and HMIs.

 

What is going on with the campaign?

PLC and HMI terminals from Automation Direct, Siemens, Fuji Electric, Mitsubishi, Weintek, ABB, and more manufacturers are up for unlocking through the campaign.

In one specific instance involving DirectLogic PLCs from Automation Direct, researchers at Dragos looked at how infected software—rather than a crack—took use of a known weakness in the device to acquire the password.

The malicious program’s usage of the exploit (CVE-2022-2003) was restricted to serial-only communications. An Engineering Workstation (EWS) must have a direct serial connection to the PLC in order to do this.

Let’s discuss Sality.

Older malware called Sality needs a distributed computing architecture to do operations like cryptomining and password cracking more quickly. Its capabilities, which are still under development, include terminating running processes, downloading more payloads, connecting to distant locations, and stealing data from the host.

The virus copies itself onto external discs, portable storage devices, and network shares to propagate further by injecting itself within active processes and attacking the Windows autorun feature.

It was discovered that the identified sample also concentrated on stealing bitcoin. It uses the clipboard’s contents to reroute bitcoin transactions.

 

IEMA IEMLabs
IEMA IEMLabshttps://iemlabs.com
IEMLabs is an ISO 27001:2013 and ISO 9001:2015 certified company, we are also a proud member of EC Council, NASSCOM, Data Security Council of India (DSCI), Indian Chamber of Commerce (ICC), U.S. Chamber of Commerce, and Confederation of Indian Industry (CII). The company was established in 2016 with a vision in mind to provide Cyber Security to the digital world and make them Hack Proof. The question is why are we suddenly talking about Cyber Security and all this stuff? With the development of technology, more and more companies are shifting their business to Digital World which is resulting in the increase in Cyber Crimes.
RELATED ARTICLES

LEAVE A REPLY

Please enter your comment!
Please enter your name here

Most Popular

Recent Comments

Izzi Казино онлайн казино казино x мобильді нұсқасы on Instagram and Facebook Video Download Made Easy with ssyoutube.com
Temporada 2022-2023 on CamPhish
2017 Grammy Outfits on Meesho Supplier Panel: Register Now!
React JS Training in Bangalore on Best Online Learning Platforms in India
DigiSec Technologies | Digital Marketing agency in Melbourne on Buy your favourite Mobile on EMI
亚洲A∨精品无码一区二区观看 on Restaurant Scheduling 101 For Better Business Performance

Write For Us