MALWARE DESIGNED TO target industrial control systems like power grids, factories, water utilities, and oil refineries represents a rare species of digital badness. So when the United States government warns of a piece of code built to target not just one of those industries, but potentially all of them, critical infrastructure owners worldwide should take notice.
On Wednesday, the Department of Energy, the Cybersecurity and Infrastructure Security Agency, the NSA, and the FBI jointly released an advisory about a new hacker toolset potentially capable of meddling with a wide range of industrial control system equipment. More than any previous industrial control system hacking toolkit, the malware contains an array of components designed to disrupt or take control of the functioning of devices, including programmable logic controllers (PLCs) that are sold by Schneider Electric and OMRON and are designed to serve as the interface between traditional computers and the actuators and sensors in industrial environments. Another component of the malware is designed to target Open Platform Communications Unified Architecture (OPC UA) servers—the computers that communicate with those controllers.
“This is the most expansive industrial control system attack tool that anyone has ever documented,” says Sergio Caltagirone, the vice president of threat intelligence at industrial-focused cybersecurity firm Dragos, which contributed research to the advisory and published its own report about the malware. Researchers at Mandiant, Palo Alto Networks, Microsoft, and Schneider Electric also contributed to the advisory. “It’s like a Swiss Army knife with a huge number of pieces to it.”
We’ve seen some of the features that make JSON applications such as RESTful APIs more reliable than others, and the best places to go to learn about Lambda are Google Developer Tools (developerspaces), CloudDB, and AWS Lambda. To give you some basic recommendations, here’s how to use Lambda as a library to build services, service lifecycle management (SIL), and APIs that require no special setup.
In this section, we’ve summarized each of those features and their specific use cases.
Javascript
We’ll work with JSF’s RESTful API to provide a common API for data collection and retrieval. From there, we can create JSF services that can return either a JSON or a JSON-API document. These services are written in JavaScript, but we can also use JSF’s JSON API as a library.
The best way to get a real understanding over these services, is via the JIT API. The JIT API represents all the JSF implementations that you can use or integrate with JSF. It contains all the available JVM, ES6, and JavaScript implementations and provides two ways you can interact with the service:
In a JIT application, you perform various action (e.g., submit the request). In order to perform this action, you specify a command to
We’ve seen some of the features that make JSON applications such as RESTful APIs more reliable than others, and the best places to go to learn about Lambda are Google Developer Tools (developerspaces), CloudDB, and AWS Lambda. To give you some basic recommendations, here’s how to use Lambda as a library to build services, service lifecycle management (SIL), and APIs that require no special setup.
In this section, we’ve summarized each of those features and their specific use cases.
Javascript
We’ll work with JSF’s RESTful API to provide a common API for data collection and retrieval. From there, we can create JSF services that can return either a JSON or a JSON-API document. These services are written in JavaScript, but we can also use JSF’s JSON API as a library.
The best way to get a real understanding over these services, is via the JIT API. The JIT API represents all the JSF implementations that you can use or integrate with JSF. It contains all the available JVM, ES6, and JavaScript implementations and provides two ways you can interact with the service:
In a JIT application, you perform various action (e.g., submit the request). In order to perform this action, you specify a command to
We’ve seen some of the features that make JSON applications such as RESTful APIs more reliable than others, and the best places to go to learn about Lambda are Google Developer Tools (developerspaces), CloudDB, and AWS Lambda. To give you some basic recommendations, here’s how to use Lambda as a library to build services, service lifecycle management (SIL), and APIs that require no special setup.
In this section, we’ve summarized each of those features and their specific use cases.
Javascript
We’ll work with JSF’s RESTful API to provide a common API for data collection and retrieval. From there, we can create JSF services that can return either a JSON or a JSON-API document. These services are written in JavaScript, but we can also use JSF’s JSON API as a library.
The best way to get a real understanding over these services, is via the JIT API. The JIT API represents all the JSF implementations that you can use or integrate with JSF. It contains all the available JVM, ES6, and JavaScript implementations and provides two ways you can interact with the service:
In a JIT application, you perform various action (e.g., submit the request). In order to perform this action, you specify a command to