INCIDENT: Safety Instrumented System is disabled by malware

Triton, which has been called the Worlds 1st murderous malware was discovered in 2017. In December 2017, it was reported that the safety systems of an unidentified petrochemical plant in Saudi Arabia were compromised when the Triconex industrial safety technology made by Schneider Electric SE was targeted in what is believed to have been a state sponsored attack. The computer security company Symantec claimed that the malware, known as "Triton", exploited a vulnerability in computers running the Microsoft Windows operating system. The intention of Triton was to disable the safety instrumented systems, thus earning the name of the 1st murderous malware.

Incident Date

December 1, 2017


Saudi Arabia

Estimated Cost

No cost values disclosed.


  • Russian Lab Linked to Malware That Attacks Industrial Plants
  • TRITON Attribution: Russian Government-Owned Lab Most Likely Built Custom Intrusion Tools for TRITON Attackers
  • Russian Research Institute Was Actively Involved In TRITON ICS Attack Activity
  • US Treasury sanctions Russian research institute behind Triton malware




Pin It on Pinterest

Scroll to Top
Scroll to Top