Apr 10, 2019 - World

Second target hit by notorious TRITON malware

Statue of Triton, son of Neptune, Nicola Salvi's Trevi Fountain, Italy. Photo: DeAgostini/Getty Images

The attackers who launched TRITON, a notorious industrial-system-focused malware only known to have been used once, have struck a second target, according to researchers at FireEye presenting at the Kaspersky Lab SAS Summit in Singapore.

Why it matters: FireEye was the first to discover TRITON, which startled researchers by amassing an uncommon amount of control over industrial systems. Due to a mistake in the attack, it inadvertently led to a plant shutdown and nearly caused a deadly explosion. While no one expected TRITON to be a one-time affair, its resurgence is jarring.

Background: The victim of the first attack was not identified by FireEye, but a harrowing account of the attack in E&E News revealed it to be the Petro Rabigh refinery in the Red Sea.

  • FireEye later attributed the design of components of the TRITON malware to a research institute in Moscow.

Details: The new victim, also not identified by FireEye, revealed the use of hacking tools not seen in the first attack.

  • The tools appear to date from as far back as 2014, though FireEye has never seen them in use in the past.
  • FireEye reported indicators and recommended techniques defenders can use to identify and thwart future TRITON attacks.
  • "[W]e strongly encourage industrial control system (ICS) asset owners to leverage the indicators, TTPs [tactics, techniques and procedures], and detections," FireEye wrote in its official report.

Go deeper

Alayna TreeneSam Baker
3 hours ago - Politics & Policy

Amy Coney Barrett's immediate impact

Illustration: Eniola Odetunde/Axios

In her first week on the job, Amy Coney Barrett may be deciding which votes to count in the presidential election. By her third week, she’ll be deciding the fate of the Affordable Care Act.

Where it stands: The Senate votes on Barrett’s nomination tomorrow. If she’s confirmed, Chief Justice John Roberts is expected to swear her in at the Supreme Court within hours, an administration official tells Axios.

Go deeper (1 min. read)Arrow
Alexi McCammondHans Nichols
3 hours ago - Politics & Policy

Texas Democrats beg Biden to spend now

Photo: Ron Jenkins/Getty Images

The Biden campaign is rebuffing persistent pleas from Texas Democrats to spend at least $10 million in the Lone Star state, several people familiar with the talks tell Axios.

Why it matters: If Texas — which has 38 electoral votes and is steadily getting more blue, but hasn't backed a Democrat for president since 1976 — flipped to the Biden column, it would be game over. But the RealClearPolitics polling average stubbornly hovers at +2.6 for Trump — and Team Biden appears more focused on closer targets.

Go deeper (1 min. read)Arrow
Alayna Treene, author of Sneak Peek
4 hours ago - Politics & Policy

Election night in Trumpworld

Photo illustration: Aïda Amer/Axios. Photo: Chris Carlson-Pool/Getty Images

A luxe election-night watch party at the Trump International Hotel on Pennsylvania Avenue is being planned for President Trump's donors, friends and advisers — but Trump's hand in it is minimal because he's "very superstitious" — people familiar with the plans tell Axios.

The big picture: This "mecca for all things MAGA," as one adviser described it, is one of three hubs where they say Trumpworld will watch returns. The others are the war room at campaign HQ in Rosslyn, Virginia, and the White House residence, where Trump and the first lady will gather close family and advisers before heading to the hotel later that night, the sources said.

Go deeper (<1 min. read)Arrow