Ten years ago, Jon Lavender, Justin Cavinee, and I founded Dragos with a focused passion on protecting OT from those who meant it, and the communities that depend on it, harm. When I started my career in this field there was no compendium of knowledge of the threats, vulnerabilities, and what insights could be shared […]
This study is a groundbreaking investigation into the financial impact of cyber incidents involving operational technology (OT) assets and provides important estimation of potential future OT cyber breach losses, as analyzed by insurance statisticians. More critically, the study applies statistical modeling to identify and quantify the most influential OT cyber risk controls and their potential
Throughout the year, Dragos identifies threats to operational technology (OT) and industrial control systems (ICS) infrastructure, conducts services to help defenders mature their program, and prioritizes mitigations for resilient operations. Enhanced by Dragos telemetry, we approach our eighth annual Year in Review report with field-tested guidance. It serves to provide several detailed examples of key
FrostyGoop is the ninth industrial control systems (ICS) specific malware. It is the first ICS-specific malware that uses Modbus TCP communications to achieve an impact on Operational Technology (OT). PIPEDREAM, an ICS malware discovered in 2022, uses Modbus communications in one of its components for enumeration. Dragos discovered FrostyGoop in April 2024. It can interact
Impact of FrostyGoop ICS Malware on Connected OT Systems Read More »
Are you prepared to defend your operational technology (OT) against the next wave of cyber threats? Several forces drove a surge of activity from adversaries targeting operational technology (OT) infrastructure in 2023, marking a pivotal shift in the OT cyber threat landscape for Australian organisations and around the globe. Motivated by mounting geopolitical tensions, sophisticated
In 2023, a surge in global tension resulted in an increase in cyber threat activity and disruptions in critical infrastructure worldwide. Escalating conflicts, including those between Ukraine and Russia, Israel and Hamas, and countries in the South China Sea, emboldened adversaries and hacktivists to develop new capabilities and reuse old techniques. Simultaneously, ransomware attacks affected
2022 Key Findings Overview 2022 saw a breakthrough escalation in capabilities by a new modular industrial control systems (ICS) malware, PIPEDREAM, developed by the threat group, CHERNOVITE. CHERNOVITE’S PIPEDREAM toolkit has the capabilities to impact tens of thousands industrial devices that control critical infrastructure – devices that manage the electrical grid, oil and gas pipelines,
Dragos is excited to present the fifth year of the annual Dragos Year In Review report on Industrial Control System (ICS)/ Operational Technology (OT) cyber threats, vulnerabilities, assessments, and incident response observations. The ICS/ OT* community has long suffered from more anecdotes on security than insights driven from data and real-world cases given the sensitivity
