U.S. Sanctions Russian Government Research Institution with Connections to Triton Malware

IMPORTANT: The full content of this page is available to premium users only.

Tuesday, November 17, 2020
Author: 
Julia Brock
Volume: 
36
Issue: 
11
Abstract: 

On October 23, 2020, the Department of the Treasury’s Office of Foreign Assets Control (OFAC) sanctioned a Russian government research laboratory that created the Triton malware.[1] The lab in question is the Central Scientific Research Institute of Chemistry and Mechanics in Moscow. It is supported by the State Research Center of the Russian Federation FGUP Central Scientific Research Institute of Chemistry and Mechanics (TsNIIKhM), a Russian government-controlled research institution responsible for building customized tools that enabled the attack. The Triton malware is a dangerous and malicious malware that was designed to target and manipulate industrial safety systems. The cyber actors behind the Triton malware have been described by those in the cybersecurity industry as “the most dangerous threat activity publicly known.”[2]



[1] Treasury Sanctions Russian Government Research Institution Connected to Triton Malware, U.S. DEPARTMENT OF THE TREASURY, Oct. 23, 2020, https://home.treasury.gov/news/press-releases/sm1162

[2] Treasury Sanctions Russian Government Research Institution Connected to Triton Malware, U.S. DEPARTMENT OF THE TREASURY, Oct. 23, 2020, https://home.treasury.gov/news/press-releases/sm1162