April 19, 2022
Schneider Electric, working in close collaboration with the United States Department of Energy, Homeland Security, and cybersecurity defense partner, Mandiant, identified and developed protective measures to defend against APT (Advanced Persistent Threat) Cyberattack Tools/Framework still in development that would target a set of our Programmable Logic Controllers (PLCs). The following analysis and protective measure come as a result of this public-private partnership collaboration. Their Security Bulletin includes a range of technical analytics, hunting tools, and specific mitigations to help asset owners find and defend against the framework.
The joint collaboration between private-sector cyber experts (Mandiant) and the affected Original Equipment Manufacturer (Schneider Electric) and Government agencies led to higher-confidence mitigations for protecting stakeholders. This is an instance of successful collaboration to deter threats on critical infrastructure before they occur and further underscores how public-private partnerships are instrumental to proactively detect and counter threats before they can be deployed.
Schneider Electric is committed to working hand-in-hand with Governments and Partners to advance their shared goal of protecting their customers, communities and the environment from all serious cybersecurity threats.
For more information, please see their full Security Bulletin.