Emergency shutdown systems have been targeted by a new malware attack.
Threat: A malware attack called TRITON targeted control systems that provide emergency shutdowns for industrial processes. TRITON was built for Triconex Safety Instrumented System (SIS) controllers.
Damage risk: The malware can reprogram the SIS to allow unsafe conditions, leading to physical hazards and threats to human safety.
Exploited flaw: TRITON added a malicious program to the execution table of the controller, allowing it to continue operating with TRITON inside.
Fixes/Workarounds: Implement hardware features, like switches controlled by physical keys, that allow systems to be manually controlled.
Info: tinyurl.com/TRITON115
