News & Comment: GreyEnergy Malware

Ray DeMeo, Co-Founder and Chief Operating Officer at Virsec, today commented on ESET’s discovery of GreyEnergy malware used to attack energy companies and other critical targets in Ukraine and Poland for the past three years.

“It should be no surprise that threats like BlackEnergy are morphing into new variants. There is a large arsenal of advanced hacking tools, many developed by the NSA, now readily available. These are difficult to detect because they manipulate legitimate application processes in runtime memory, and create new variants further evades signature-based detection. More disturbing is that many of these attacks are targeted at disrupting critical infrastructure. Many of these ICS/SCADA systems have outdated security, designed for isolation, which is increasingly disappearing as IT and OT systems connect and converge.”