Updated Jun 2, 2018

Hacking group targets industrial safety systems

Photo: sarote pruksachat/Getty Images

A hacking group known as XENOTIME, which shut down an industrial plant in the Middle East last year, is expanding its targets and could launch destructive attacks on the safety components of industrial control systems, the cybersecurity firm Dragos reports in a blog post.

Why it matters: Such attacks could affect operations at nuclear, chemical, and other industrial plants, and outcomes involving death or physical harm could be either a goal or an acceptable outcome of the attacks. Per Dragos, "XENOTIME is easily the most dangerous threat activity publicly known ... which can lead to scenarios involving loss of life and environmental damage."

What we know: XENOTIME "is presently operating in multiple facilities targeting safety systems," according to Dragos.

"It is the only activity group intentionally compromising and disrupting industrial safety instrumented systems."
— Dragos on XENOTIME

What we don’t know: Where those facilities are and which systems are being targeted, and which country may be behind the group.

The original attack: Dragos and FireEye published a report in December 2017 chronicling XENOTIME's attack on Schneider Electric’s Triconex safety instrumented system using both custom malware and credential gathering tools. The operation didn’t play out as planned because of a misconfiguration.

  • What to watch, per Dragos: “As XENOTIME matures, it is less likely that the group will make this mistake in the future.”

Go deeper

Judge declines to delay Wisconsin April 7 primary, extends absentee deadline

Photo: Darren Hauck/Getty Images

A federal judge on Thursday declined to delay Wisconsin's April 7 primary election, saying he doesn't have the authority to do so.

Why it matters: Wisconsin is the only state scheduled to vote next Tuesday that has not yet delayed its primary.

Navy removes captain of aircraft carrier who sounded alarm about coronavirus

Photo: Photo: Mai/Mai/The LIFE Images Collection via Getty Images/Getty Images

Acting Secretary of the Navy Thomas Modly relieved the captain of nuclear aircraft carrier the U.S.S. Theodore Roosevelt after he sent a letter to officials pleading for help when members of his crew contracted the coronavirus.

The big picture: Capt. Brett Crozier's four-page letter was leaked to the San Francisco Chronicle earlier this week, quickly garnering national attention after Crozier pleaded for more resources and more space to quarantine crew members offshore. Modly said at a press conference that Crozier went outside the chain of command and "at no time relayed" the levels of alarm that he wrote in his letter.

Go deeperArrow11 mins ago - Health

The coronavirus unemployment numbers in perspective

Data: U.S. Department of Labor; Chart: Danielle Alberti/Axios

Over the past two weeks, 10 million Americans have filed for unemployment, with millions more to come.

Why it matters: The jobless hits right now are like a natural disaster hitting every state at the same time.