CrashOverride / Industroyer Malware
CrashOverrride is an industrial control system cyberattack launched in December 2016 that created a massive blackout in Kiev, Ukraine. Also known as Industroyer by security firm ESET, CrashOverride is a form of malware developed with capabilities to control electricity substation switches and circuit breakers on a wide scale.
The Industroyer / CrashOverrride malware doesn't need to target any zero-day exploits or unpatched security vulnerabilities to do its damage; instead it communicates directly with industrial hardware through communication protocols that were designed many years in the past without significant security in mind.
Industroyer Image Source: ESET
Following in the Footsteps of Stuxnet and BlackEnergy
CrashOverride also isn't the first form of malware to target electricity substations, as it followed an attack known as BlackEnergy that created a blackout in the Ukraine in 2015.
The CrashOverrride / Industroyer malware also shares similarities with the Stuxnet malware that targeted an Iranian power plant in 2010 and which also used its ability to communicate directly with industrial hardware to do its damage.
These forms of malware have brought to light just how vulnerable industrial environments — and most environments in our increasingly Internet of Things (IoT) world — can be to cyberattacks.
Defending against them requires a multilayer approach that can be difficult to apply when dealing with hardware and software systems that were developed many years ago without sophisticated — or even basic in many cases — security measures taken into consideration.
IT Solutions Builder TOP IT RESOURCES TO MOVE YOUR BUSINESS FORWARD
Which topic are you interested in?
What is your company size?
What is your job title?
What is your job function?
Searching our resource database to find your matches...
Stay up to date on the latest developments in Internet terminology with a free weekly newsletter from Webopedia. Join to subscribe now.
The following facts and statistics capture the changing landscape of cloud computing and how service providers and customers are keeping up with... Read More »SEO Dictionary
From keyword analysis to backlinks and Google search engine algorithm updates, our search engine optimization glossary lists 85 SEO terms you need... Read More »Texting & Chat Abbreviations
From A3 to ZZZ this guide lists 1,500 text message and online chat abbreviations to help you translate and understand today's texting lingo. Read More »
Java is a high-level programming language. This guide describes the basics of Java, providing an overview of syntax, variables, data types and... Read More »Java Basics, Part 2
This second Study Guide describes the basics of Java, providing an overview of operators, modifiers and control Structures. Read More »Network Fundamentals Study Guide
Networking fundamentals teaches the building blocks of modern network design. Learn different types of networks, concepts, architecture and... Read More »