Cyber Risk to Mission Case Study: Triton

Abstract

In August of 2017, TRITON malware was used to target and disrupt Safety Instrumented System (SIS) controllers within a Saudi petrochemical refinery. A SIS controls critical processes that support safety and reliability within a control system. Fortunately, the targeted SIS initiated a safe shutdown when code validation failed, triggering an internal investigation that uncovered the malware. This is one of the few publicly reported incidents of control system malware designed to inflict physical damage and the first that targeted a SIS.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Oct 13, 2022
Accession Number
AD1183008

Entities

People

  • Blaine Jeffries
  • Cedric Carter
  • Stephanie Saravia
  • Zachary Ankuda

Organizations

  • MITRE Corporation

Tags

Communities of Interest

  • Cyber

DTIC Thesaurus Topics

  • Abstracts
  • Case Studies
  • Computer Programming
  • Control Systems
  • Corporations
  • Critical Infrastructure
  • Cyberattacks
  • Cybersecurity
  • Department Of Defense
  • Department Of Homeland Security
  • Detection
  • Electrical Grids
  • Emergencies
  • Firmware
  • Government Employees
  • Governments
  • Industrial Control Systems
  • Information Operations
  • Infrastructure
  • Load Monitoring
  • New York
  • Nuclear Fuels
  • Personnel Management
  • Saudi Arabia
  • Security
  • Targeting

Readers

  • Aerospace Test and Evaluation
  • Aviation Safety Risk Assessment.
  • Cybersecurity.

Technology Areas

  • Cyber