This paper presents a modern challenge of defending an industrial system, using situational awareness to detect and understand if an attack exists against the environment.
Modern network and asset defense require far greater visibility into the industrial control system threat landscape than in years past.
TRISIS is malware that was developed and deployed to at least one victim in the Middle East to target safety instrumented systems (SIS).
CRASHOVERRIDE is a malware framework that has not been disclosed before today but is the capability used in the cyber-attack on the Ukraine electric grid in 2016 (not the 2015 attack).
As industrial control systems (ICS) become more interconnected with each other and homogenous, there needs to be sufficient compensating controls put into place to ensure the safety and reliability of the operations.