Home

White Paper

Understanding ICS Malware: Defining a Credible Threat to Industrial Infrastructure

Understanding ICS Malware: Defining a Credible Threat to Industrial Infrastructure

Dragos
Pages 18 Pages

This white paper introduces a formal definition of ICS malware, requiring three properties: ICS-capability, malicious intent, and ability to cause adverse effects on OT systems. Using case studies like TRISIS, IoT Exploit Tool, and IOControl, it shows how to distinguish genuine ICS malware from red-team tools or incidental infections. The framework provides defenders with a consistent language and method to assess and respond to industrial cyber threats.

Join for free to read

You Might Also Like


Defining Industrial Zero Trust
White Paper Defining Industrial Zero Trust
Emerson

2025 OT/ICS Cybersecurity Report: A Year in Review
Report 2025 OT/ICS Cybersecurity Report: A Year in Review
Dragos

An Intelligence Perspective on Insider Threat & the Unique Role it Plays in Industrial Control Systems Environments
White Paper An Intelligence Perspective on Insider Threat & the Unique Role…
Dragos

ICS Monitoring: How to Improve Operational Resilience & Security
White Paper ICS Monitoring: How to Improve Operational Resilience & Security
ForeScout

More from Dragos


2025 OT/ICS Cybersecurity Report: A Year in Review
Report 2025 OT/ICS Cybersecurity Report: A Year in Review
Dragos

An Intelligence Perspective on Insider Threat & the Unique Role it Plays in Industrial Control Systems Environments
White Paper An Intelligence Perspective on Insider Threat & the Unique Role…
Dragos

ICS/OT Cybersecurity Considerations for Maritime Transportation
White Paper ICS/OT Cybersecurity Considerations for Maritime Transportation
Dragos

Understanding The Challenges of OT Vulnerability Management and How To Tackle Them
White Paper Understanding The Challenges of OT Vulnerability Management and…
Dragos
© 2025 Contentree.  All Rights Reserved   |   Privacy and Cookies   |   Legal   |   Do not sell my info