An executive at Dragos, the cybersecurity firm that helped uncover the cybersabotage tool used by the hackers, said the tool was “highly capable” and had likely been in the works for several years. “It is as dangerous are people are making it out to be,” Dragos executive Robert Lee said in a telephone interview
Advanced hackers have demonstrated the ability to “gain full system access” to multiple industrial control systems, the U.S. government said in an alert issued on Wednesday.
The U.S. Cybersecurity and Infrastructure Security Agency said in a joint advisory with other government agencies that the affected devices were made by Schneider Electric and OMRON Corp.
Industrial control systems refer to the computers that run the machinery, pipes, and other specialized equipment in power stations, refineries, manufacturing plants and more.
An executive at Dragos, the cybersecurity firm that helped uncover the cybersabotage tool used by the hackers, said the tool was “highly capable” and had likely been in the works for several years. “It is as dangerous are people are making it out to be,” Dragos executive Robert Lee said in a telephone interview.
OMRON did not immediately return a message seeking comment.
A Schneider spokesperson did not immediately answer a request for comment. CISA said it was making the announcement alongside the Department of Energy, the National Security Agency, and the Federal Bureau of Investigation.
It thanked Dragos, Mandiant, Microsoft, Palo Alto Networks and Schneider Electric for their contributions to the alert.
Reuters