Iran‑Backed Threat Actors Hit US CNI Providers via Internet‑Facing OT Assets
ATT&CK techniques detected
T1190Exploit Public-Facing Application
72%
“persistent threat ( apt ) group has been observed “ maliciously interacting with project files, and manipulating data displayed on hmi and scada displays, ” according to cisa. the plcs apparently manage a wide variety of industrial processes. they are using “ configuration softwa…”
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
T1204User Execution
36%
“persistent threat ( apt ) group has been observed “ maliciously interacting with project files, and manipulating data displayed on hmi and scada displays, ” according to cisa. the plcs apparently manage a wide variety of industrial processes. they are using “ configuration softwa…”
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
T1588.006Vulnerabilities
31%
“persistent threat ( apt ) group has been observed “ maliciously interacting with project files, and manipulating data displayed on hmi and scada displays, ” according to cisa. the plcs apparently manage a wide variety of industrial processes. they are using “ configuration softwa…”
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
Summary
CISA has revealed Iranian attacks causing disruption and financial loss at US critical infrastructure firms