Loading…
Welcome to the Interactive Agenda for SecurityWeek’s 2018 ICS Cyber Security Conference! (View the full conference website here)  (You can Register for ICS Cyber Security Conference Here
View analytic
Thursday, October 25 • 3:15pm - 4:00pm
IT Malware Threats to OT systems – Case Study of Cryptojacking and Related Exploits to ICS

Sign up or log in to save this to your schedule and see who's attending!

In February 2018, cryptojacking malware was found in the operational network of a European water utility.  This presentation will go into the details of that attack including results of forensic activity and deeper analysis that have taken place since discovery.  While details of the attack vector, how the malware was discovered, the impact on the controls network will be presented, we will also look at what this means in term of ICS networks now being collateral damage for IT malware.  In addition to the cryptojacking attack,  attempts to exploit remote maintenance channels with embedded device vulnerabilities were discovered, suggesting more targeted OT attack plans. Such attempts were initiated shortly after an Internet connection was established, using scanning servers and Shodan in conjunction with attack automation tools such as AutoSploit. This session will also provide recommendations for mitigation and prevention of such attacks in the future.

Speakers
avatar for TJ Roe

TJ Roe

VP Business Development, Radiflow
TJ Roe is an industry veteran with 20 years’ experience in the design and sales of Industrial Automation Networks and Security for Power and Water Utilities, Intelligent Traffic Systems and more. Previously TJ was Director of Strategic Markets for the industrial networking division... Read More →


Thursday October 25, 2018 3:15pm - 4:00pm