SANS Industrial Control Systems Security Blog: Author - robertmlee

Brief History of Cyber Attacks

This post was written by Michael J. Assante, SANS ICS Director The history of cyber attacks is nearly as long and as brief as the history of interconnected digital technology. The concept of self-replicating or propagating programs was envisioned in the 70s and 80s. The first PC virus, called the Brain, was created in Pakistan … Continue reading Brief History of Cyber Attacks


IRONGATE Malware - Thoughts and Lessons Learned for ICS/SCADA Defenders

FireEye uncovered a new piece of ICS malware that they released todayand their way of approaching it both to the public and in pre-briefing to the media has been outstanding. The malware is not in the wild, is not a threat to the industry, but offers lessons learned and I believe the FireEye/Mandiant team's handling … Continue reading IRONGATE Malware - Thoughts and Lessons Learned for ICS/SCADA Defenders


Detecting the Siemens S7 Worm and Similar Capabilities

An article came out on May 5th titled "Daisy-chained research spells malware worm hell for power plants and other utilities" with the subtitle of "World's first PLC worm spreads like cancer". Having been on the receiving end of sensationalized headlines before I empathize with the authors of the research. Regardless of the headlines, the … Continue reading Detecting the Siemens S7 Worm and Similar Capabilities


Fourth Sample of ICS Tailored Malware Uncovered and the Potential Impact

I looked at the S4 Europe agenda which was sent out this morning by Dale Peterson and saw an interesting bullet: "Rob Caldwell of Mandiant will unveil some ICS malware in the wild that is doing some new and smarter things to attack ICS. We are working with Mandiant to provide a bit more … Continue reading Fourth Sample of ICS Tailored Malware Uncovered and the Potential Impact


ICS Cross-Industry Learning: Water Distribution Systems and How to Earn Trust of Operations

In this third installment of the ICS Cross-Industry Learning series (Part 1 on SolutionPolymer Chemical Process may be found here and Part 2 on Electric Transmission and Distribution here) I am very excited to have Jake Brodsky write on water distribution systems and more importantly key points to know which can help earn trust in … Continue reading ICS Cross-Industry Learning: Water Distribution Systems and How to Earn Trust of Operations