Security News > 2018 > October > Was the Triton Malware Attack Russian in Origin?

Was the Triton Malware Attack Russian in Origin?

2018-10-31 17:44

The conventional story is that Iran targeted Saudi Arabia with Triton in 2017. New research from FireEye indicates that it might have been Russia. I don't know. FireEye likes to attribute all sorts of things to Russia, but the evidence here look pretty good....

News URL

https://www.schneier.com/blog/archives/2018/10/was_the_triton_.html

#attack #malware #russian #triton

Related news

Microsoft and DOJ disrupt Russian FSB hackers' attack infrastructure (source)
Astaroth Banking Malware Resurfaces in Brazil via Spear-Phishing Attack (source)
Russian RomCom Attacks Target Ukrainian Government with New SingleCamper RAT Variant (source)
Crypt Ghouls Targets Russian Firms with LockBit 3.0 and Babuk Ransomware Attacks (source)
Russian Espionage Group Targets Ukrainian Military with Malware via Telegram (source)
Russian charged by U.S. for creating RedLine infostealer malware (source)
Uncle Sam outs a Russian accused of developing Redline infostealing malware (source)
VEILDrive Attack Exploits Microsoft Services to Evade Detection and Distribute Malware (source)
Iranian Hackers Use "Dream Job" Lures to Deploy SnailResin Malware in Aerospace Attacks (source)
Russian Hackers Exploit New NTLM Flaw to Deploy RAT Malware via Phishing Emails (source)

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.