COMING SOON:

Stay ahead of adversaries targeting industrial infrastructure by being the first to read the 2022 ICS /OT Cybersecurity Year in Review.

Skip to main content
Blog Post

Dragos Knowledge Packs: The Latest Industrial, Threat, and Device Data for April 2020

Dragos’ April Knowledge Pack is now available to Dragos Platform customers. 

Dragos Knowledge Packs are monthly deliveries of the latest threat analytics, ICS/OT device data, and investigation playbooks to ensure our customers are armed with the proactive, comprehensive information needed to better understand their ICS/OT environments and assets and combat advanced threats. 

Key highlights of the April Knowledge Pack include:

Expanded ICS/OT protocol inspection and device data for mining-specific assets 

Additional detections for General Electric (GE) Mark Controller devices

New protocol dissectors for Emerson Ovation and ABB, including: CSLIB, TOOLSERVER, SSRPC P10009, DB_XMIT, Ovation REM Server, Ovation Alarm, Ovation MGMT

New threat behavior analytics that detect red team behaviors adopted by some ICS adversaries, including: Net.exe command detections, DCSync, Powershell Empire Recon, Powershell Empire C2, Cobalt Strike

Lastly, Dragos’ April Knowledge Pack also contains the latest indicators of compromise from the Dragos Intelligence team, as well as custom-authored investigation playbooks to ensure our customers have the best-practice response guidance direct from our team of industrial responders and threat hunters.

To learn more about Dragos Knowledge Packs, read our blog or contact sales@dragos.com.

Discover more resources by tag
Knowledge Packs

Read next blog post

Blog

Malware Infections Increase at Industrial Companies Globally

04.20.20

View more Blog Posts

Right Arrow

Ready to put your insights into action?

Take the next steps and contact our team today.