Industrial threats – Page 2

Managed Detection and Response in 2022

Posted on May 2, 2023 by Kaspersky Security Services

Managed Detection and Response in 2022: number and severity of incidents, detection rate, breakdown by country and industry, data on cyberattacks in different regions. Continue reading Managed Detection and Response in 2022→

Threat landscape for industrial automation systems for H2 2022

Posted on March 6, 2023 by Kaspersky ICS CERT

In H2 2022, the percentage of ICS computers on which malicious objects were blocked increased by 3.5 percentage points compared to the previous six-month period, reaching 34.3%. Continue reading Threat landscape for industrial automation systems for H2 2022→

Reassessing cyberwarfare. Lessons learned in 2022

Posted on December 14, 2022 by GReAT, Kaspersky ICS CERT

In this report, we propose to go over the various activities that were observed in cyberspace in relation to the conflict in Ukraine, understand their meaning in the context of the current conflict, and study their impact on the cybersecurity field as a whole. Continue reading Reassessing cyberwarfare. Lessons learned in 2022→

ICS cyberthreats in 2023 – what to expect

Posted on November 22, 2022 by Evgeny Goncharov

The coming year looks to be much more complicated. In the post we share some of our thoughts on potential developments of 2023, though we cannot claim to be providing either a complete picture or a high degree of precision. Continue reading ICS cyberthreats in 2023 – what to expect→

IT threat evolution Q3 2022

Posted on November 18, 2022 by David Emm

Recent APT campaigns, a sophisticated UEFI rootkit, new ransomware for Windows, Linux and ESXi, attacks on foreign and crypto-currency exchanges, and malicious packages in online code repositories. Continue reading IT threat evolution Q3 2022→

The secrets of Schneider Electric’s UMAS protocol

Posted on September 29, 2022 by Kaspersky ICS CERT

Kaspersky ICS CERT report on vulnerabilities in Schneider Electric’s engineering software that enables UMAS protocol abuse. Continue reading The secrets of Schneider Electric’s UMAS protocol→

Threat landscape for industrial automation systems for H1 2022

Posted on September 8, 2022 by Kaspersky ICS CERT

H1 2022 in numbers Geography In H1 2022, malicious objects were blocked at least once on 31.8% of ICS computers globally. Percentage of ICS computers on which malicious objects were blocked For the first time in five years of observations, the lowest percentage in the ‎first half of the year was observed in March.‎ During Continue reading Threat landscape for industrial automation systems for H1 2022→

Targeted attack on industrial enterprises and public institutions

Posted on August 8, 2022 by Kaspersky ICS CERT

Kaspersky ICS CERT experts detected a wave of targeted attacks in several East European countries, as well as Afghanistan. Of the six backdoors identified on infected systems, five have been used earlier in attacks attributed to APT TA428. Continue reading Targeted attack on industrial enterprises and public institutions→

Targeted attack on industrial enterprises and public institutions

Posted on August 8, 2022 by Kaspersky ICS CERT

IT threat evolution Q1 2022

Posted on May 27, 2022 by David Emm

Kaspersky IT threat review in Q1 2022: activity of APTs such as MoonBounce, BlueNororff, Lazarus and Roaming Mantis, attacks against Ukraine, phishing kits, Okta hack and more. Continue reading IT threat evolution Q1 2022→