WP-007-2018: Triton Analysis

ENCS informs its members about this attack and provide an interpretation. It is a new entry in the short list of publicly disclosed malwares that successfully targeted OT environments and equipment. The attack highlights a distressing trend, that certain actors becoming more aggressive when it comes to targeting ICS operators in an attempt to cause physical disruption. It should be alarming that their efforts are made possible or significantly easier by their targets lacking basic security practices in their OT environment.

Download this document (ENCS members only)

Employees of ENCS members can download the document by entering their e-mail address below. A link to the document will be sent to the address.

"*" indicates required fields

This field is for validation purposes and should be left unchanged.