ICS Threat Analysis: New Malware Can Kill Engineering Processes
NetmanageIT OpenCTI - opencti.netmanageit.com
SUMMARY :
An analysis of a public malware repository reveals a persistent presence of OT/ICS malware, with engineering workstations being a significant target. Two notable clusters were identified: Mitsubishi engineering workstation software infected with the Ramnit worm, and a new experimental malware named Chaya_003 capable of terminating Siemens engineering processes. The research highlights the evolving threat landscape in OT/ICS environments, emphasizing the need for enhanced security measures. Recommendations include hardening engineering workstations, proper network segmentation, and implementing comprehensive threat monitoring solutions across both IT and OT systems.
OPENCTI LABELS :
ics,ramnit,engineering workstations,ot,siemens,chaya_003,discord c2,process termination,mitsubishi
Open in NetmanageIT OpenCTI Public Instance with below link!
Use public read only username and password on login page.
NOTE : Use Public READ only user credentials on login page banner.
ICS Threat Analysis: New Malware Can Kill Engineering Processes