Security News > 2018 > October > Was the Triton Malware Attack Russian in Origin?

Was the Triton Malware Attack Russian in Origin?

2018-10-31 17:44

The conventional story is that Iran targeted Saudi Arabia with Triton in 2017. New research from FireEye indicates that it might have been Russia. I don't know. FireEye likes to attribute all sorts of things to Russia, but the evidence here look pretty good....

News URL

https://www.schneier.com/blog/archives/2018/10/was_the_triton_.html

#attack #malware #russian #triton

Related news

Hackers Abuse Russian Bulletproof Host Proton66 for Global Attacks and Malware Delivery (source)
Disney Slack attack wasn't Russian protesters, just a Cali dude with malware (source)
Russians lure European diplomats into malware trap with wine-tasting invite (source)
Multi-Stage Malware Attack Uses .JSE and PowerShell to Deploy Agent Tesla and XLoader (source)
Chinese hackers target Russian govt with upgraded RAT malware (source)
New Android malware steals your credit cards for NFC relay attacks (source)
SuperCard X Android Malware Enables Contactless ATM and PoS Fraud via NFC Relay Attacks (source)
SK Telecom warns customer USIM data exposed in malware attack (source)
Russian army targeted by new Android malware hidden in mapping app (source)
DslogdRAT Malware Deployed via Ivanti ICS Zero-Day CVE-2025-0282 in Japan Attacks (source)

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.