Can you imagine what happens when the industrial safety controllers (SIS) at the one of the world’s largest oil company are being hacked? What if hackers could penetrate, take control and/or disable all nuclear plants and other critical infrastructure systems? Damage from the 2017 Triton attack could have reached epic proportions as the first malware of its kind to specifically target industrial safety controllers. Yet, as recent discoveries indicate, the world experienced the first-ever "evil twin" attack on both SIS and Industrial Control Systems (ICS) simultaneously. Learn what steps Schneider is taking to avoid escalation to grave consequences from these types of attacks.
About the session
If this was just a PLC then maybe we would not have been quite so enthralled. In this case it was a triply redundant safety controller whose entire purpose is to protect people, equipment, and the environment from disaster. There is only one reason anyone would want to compromise such a device – to enable serious harm. Yes, you could imagine that a plant shutdown would cause an economic outcome, but if that was the intent, this could have been accomplished with only a few lines of Python script and the elaborate manipulation of processor memory would have been a total waste of time. No, the intent was much more than that. It was a grave one.
This session will discuss the issues and practical solutions to these three intriguing questions:
A) What & Why do we need to know about the "Evil Twins" TRITON attack?
B) Why do we need to change?
C) Lessons Learned & Solutions
This event is proudly sponsored by
Objectives of the session
- Bring clarity to the details of this attack
- Highlight the way the much larger scope behind the Triton Attack
- Discuss how our industry should move forward from this state
Date - 7th Feb 2023 (Tues)7.00PM - 7.30PM - Registration; collection of free (ISC)2 Singapore Chapter Nets Flashcard and 10th Anniversary Commemorative coin*
7.30PM - 7:35PM - Introduction by host from chapter EXCO
7:35PM - 8:45PM - "Overcoming the "Evil Twins" Attack: Lessons Learned from the Triton attack" by Paul Forney: Chief Security Architect, Schneider Electric
8:45PM - 9:00PM - Q&A & Wrap-Up
* For members who have not collected either their Nets Flashcard and/or 10th Anniversary Commemorative coin
Lifelong Learning Institute, Training Room 1-1
Lifelong Learning Institute
11 Eunos Rd 8, Singapore 408601
Limited to first 50 sign-ups.
Any cancellation has to be written to (ISC)2 Singapore Chapter in email, no later than 1 business day. Any no-show will be recorded as a penalty of $50, to be paid through PayNow.
ABOUT THE SPEAKER
Mr. Paul Forney
Chief Security Architect, Schneider Electric
In supplement to being the Chief Security Architect at Schneider Electric Product Security Office, Mr. Forney is a founding board member of the ISA Security Compliance Institute (ISCI) which develops the conformance specifications to the ISA 99/IEC 62443 ICS cyber security standard. He also has held the co-chair position for the Research and Development Sub-group of the Department of Homeland Security (DHS) Industrial Control System Joint Working Group (ICSJWG). He has been an advisor to the White House National Security Council, the Department of Justice, the Department of Energy and FERC. Paul holds eleven patents in the areas of event detection for Oil and Gas, power management for Utilities and Internet Portal technologies.
This is a chapter professional development event thus 1.5 CPE hour will be available for your CPE submission.
Note: (ISC)2 members residing in Singapore who are not yet members of our local Singapore Chapter please signed up with us at www.isc2chapter.sg.
Join the community.
Professional Member: $50/- year
Associate Member (Non-credential holders): $30/- year
Student Member: $10/- year