Trusted Design

20160203: BE2 extraordinary plugins, Siemens targeting

概要

It examines several additional plugins more closely, targeting details around BE2 Siemens exploitation, and some of their unusual coding failures.We previously introduced an unknown set of plugins and functionality for the linux platform, six in total. For the windows platform, we collected 17 plugins. The incident explained about attacks made through Plugins.The plugins mostly used were related to Windows and Linux functionality .These plugins gave access to the attacker into the system , through this attacker was able to control the systems.The plugin in connection with Windows systems are User mode functionality plugin, plugin which controls Driver and kernel mode functionality,communication plugin and so on.Some of the plugins installed were failed to do the purpose.This incident source also gives details of timing cycle to their visits.This incident might be helpful in analyzing behavior of the attacker and attack vectors used by them.

Created: 2026-02-23

Indicators

Indicatorsは見つかっていない。

類似Pulses

• Payloads from MS15-093 (PlugX) (score: 0.61)
• Bookworm Trojan: A Model of Modular Architecture (score: 0.57)
• The relationship between PlugX and the attacker group "DragonOK" (score: 0.56)
• BBSRAT Attacks Targeting Russian Organizations (score: 0.56)
• BadRabbit - Ukranian Metro, Airport hit with ransomware (score: 0.56)

このPulseに関連する脅威アクター (事実ベース)

このPulseに関連する脅威アクター (推論ベース)

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクター グラフ

---

← Pulse一覧に戻る