EN
  • Cyber stability
  • Secops
  • Risks management
  • Digital transformation
  • Digital Sovereignty
  • Cybercrime
  • Industry and OT
  • Fraud
  • Digital identity
  • Cyber +
    • Power grids: Mandiant warns about new malware CosmicEnergy

    Power grids: Mandiant warns about new malware CosmicEnergy

    Written by
    The Editorial Team
    06.04.23
    Industry and OT
    01
    MIN
    Power grids: Mandiant warns about new malware CosmicEnergy
    Power grids: Mandiant warns about new malware CosmicEnergy
    Power grids: Mandiant warns about new malware CosmicEnergy
    Image Study highlights glaring shortcomings in OT cybersecurity 
    Industry and OT
    03.16.24 Industry and OT
    Next article
    Study highlights glaring shortcomings in OT cybersecurity 
    Read
    02
    MIN
    Image Cloud computing: the manufacturing industry's cybersecurity Achilles' heel
    Industry and OT
    02.08.24 Industry and OT
    Next article
    Cloud computing: the manufacturing industry’s cybersecurity Achilles’ heel
    Read
    01
    MIN
    Image Strengthening of strategic partnership between Eviden and Microsoft
    Industry and OT
    01.30.24 Industry and OT
    Next article
    Strengthening of strategic partnership between Eviden and Microsoft
    Read
    01
    MIN
    Image A review of Stuxnet, history’s first act of cyber warfare
    Industry and OT
    01.16.24 Industry and OT
    Next article
    A review of Stuxnet, history’s first act of cyber warfare
    Read
    02
    MIN

    It is said to be the product of a Russian cybersecurity team, Red Team, which develops malicious tools to stress test industrial computer systems

    On May 25, 2023, Mandiant published a cybersecurity alert on CosmicEnergy, a malware targeting power system controls. It makes it possible to take over ICS, particularly RTUs (remote terminal units), “currently used in power transport and distribution across Europe, the Middle East and Asia,” according to Mandiant.

    The cybersecurity firm identified CosmicEnergy when a Russian citizen sent it to VirusTotal (which, like Mandiant, belongs to Google). Mandiant considers it “a plausible threat for power grid assets”. The malware is said to have features and capabilities on par with Industroyer and Industroyer V2, two Russian intelligence malware programs designed for power systems.

    According to the researchers, a Russian cybersecurity organization called the Red Team (in charge of designing attack software to test infrastructure) may be behind CosmicEnergy. They are said to have developed it as part of “blackout simulation exercises organized by Rostelecom-Solar, a Russian cybersecurity firm.”

    The discovery of CosmicEnergy shows that barriers to entry for developing offensive OT capabilities are lowered as players leverage knowledge gained from previous attacks to develop new malware,” summarizes Mandiant.

    The Editorial Team
    06.04.23
    Articles by the same author:
    1
    04.08.24 Cybercrime
    AT&T data theft: 73 million accounts compromised
    Read
    01
    MIN
    2
    04.08.24 Industry and OT
    Kaspersky notes slight decrease in attacks against ICS 
    Read
    02
    MIN
    3
    04.05.24 Digital Sovereignty
    DMA: European Commission to investigate Alphabet, Apple and Meta 
    Read
    02
    MIN
    4
    04.02.24 Digital Sovereignty
    Atos/Eviden: Airbus throws in the towel (again)
    Read
    02
    MIN
    Image Study highlights glaring shortcomings in OT cybersecurity 
    Industry and OT
    03.16.24 Industry and OT
    Next article
    Study highlights glaring shortcomings in OT cybersecurity 
    Read
    02
    MIN
    Image Cloud computing: the manufacturing industry's cybersecurity Achilles' heel
    Industry and OT
    02.08.24 Industry and OT
    Next article
    Cloud computing: the manufacturing industry’s cybersecurity Achilles’ heel
    Read
    01
    MIN
    Image Strengthening of strategic partnership between Eviden and Microsoft
    Industry and OT
    01.30.24 Industry and OT
    Next article
    Strengthening of strategic partnership between Eviden and Microsoft
    Read
    01
    MIN
    Image A review of Stuxnet, history’s first act of cyber warfare
    Industry and OT
    01.16.24 Industry and OT
    Next article
    A review of Stuxnet, history’s first act of cyber warfare
    Read
    02
    MIN
    Stay tuned in real time
    Subscribe to
    the newsletter
    By providing your email address you agree to receive the Incyber newsletter and you have read our privacy policy. You can unsubscribe at any time by clicking on the unsubscribe link in all our emails.
    Stay tuned in real time
    Subscribe to
    the newsletter
    By providing your email address you agree to receive the Incyber newsletter and you have read our privacy policy. You can unsubscribe at any time by clicking on the unsubscribe link in all our emails.