Asset owners often have limited awareness of new and emerging threats to industrial control systems (ICS) until it’s too late, and defenders face difficulties knowing how to respond to breaking cybersecurity news.
The Dragos threat intelligence team recently analyzed the COSMICENERGY malware designed to target IEC 104 devices and independently concluded that COSMICENERGY is not an immediate threat to operational technology. It is still, however, an opportunity for industrial infrastructure organizations to shore up their defensive strategies and expand their behavioral detections based on new known information.
This intelligence brief provides an analysis of the COSMICENERGY malware and how it compares to other more concerning threats like CRASHOVERRIDE and Industroyer2.
A full report is available to WorldView Threat Intelligence customers.