Cyber Threat Report: 'TRITON Attribution: Russian Government-Owned Lab Most Likely Built Custom Intrusion Tools for TRITON Attackers'
| Report Author | FireEye Intelligence |
|---|---|
| Publication Date | 2018-10-23 |
| Original Reporting | Source |
| Attributed to Nation | Russia |
| Related Intrusion Sets | TEMP.Veles |
| Related Threat Actors | Russian Central Scientific Research Institute of Chemistry (CNIIHM) |
| Victim Sectors | Energy |
This blog post by FireEye intelligence outlines how they attributed TEMP.Veles to a Russian government sponsored research institute - CNIIHM. TEMP.Veles is the name FireEye assigned to the intrusion set responsible for deploying the TRITON malware against the industrial control systems of a critical infrastructure facility.
Cyber Threat Graph Context
Explore how this report relates to the wider threat graph