DHS investigates malware targeting critical infrastructure

Two cybersecurity firms reportedly discovered malware that could be used to harm electric grids and critical infrastructure around the globe, Reuters reports.

Solvakian anti-virus software maker ESET and U.S. critical infrastructure security firm Dragos believe the malware — called CrashOverride — caused a power outage in Ukraine last December. The firms warned the malware, which is easily modifiable, could be used to infect other countries' critical infrastructure, Reuters reports. The two firms told Reuters they do not know who is responsible for the malware.

The Department of Homeland Security said it is investigating the threat, although there is currently no evidence the malware has affected U.S. critical infrastructure.

"While the known capabilities do not appear to be U.S.-focused, it is more important to recognize that the general [tactics, techniques and procedures] used in CrashOverride could be leveraged with modified technical implementations to affect U.S.-based critical infrastructure," reads a June 12 DHS alert.

Click here to read the full DHS alert.

More articles on health IT:

Pew to Congress: Don't cut funding to ONC

69% of organizations don't routinely test security controls, survey finds

Gartner: 5 'cool' blockchain vendors

© Copyright ASC COMMUNICATIONS 2017. Interested in LINKING to or REPRINTING this content? View our policies by clicking here.

 

Top 40 Articles from the Past 6 Months