An ICS attack – or rather a PoC simulation – from Georgia Institute of Technology, making a big splash at RSA.
- David Bisson for Tripwire: New Proof-of-Concept Ransomware Can Target PLCs at Industrial Sites
- Original Georgia Institute of Technology paper: Out of Control: Ransomware for Industrial Control Systems. “In this work, we develop the first known version of ransomware that targets programmable logic controllers, discuss the economic implications of such an attack, and lay out a generic framework for ICS ransomware to aid in future study and defenses. “
- Eduard Kovacs for SecurityWeek: Simulation Shows Threat of Ransomware Attacks on ICS
- Nextgov article on the demonstration at RSA 2017: WATER TREATMENT PLANT HACK KICKS OFF RSA CONFERENCE. I can’t help thinking this is more about tying a spectacular RSA demonstration of an (admittedly worrying) possible ICS attack to the scare story du jour, rather than an inevitable next step in ransomware and extortion. But I can’t say it isn’t going to happen. Especially now the possibility has been aired so publicly.