https://motherboard.vice.com/en_us/article/neajng/researchers-find-triton-malware-damage-critical-infrastructure

Security researchers say they have found a new victim of the destructive malware, which targets critical infrastructure, known as Triton or Trisis.

On Thursday, security firm FireEye revealed that it was hired to respond to a breach at an undisclosed critical infrastructure facility, and that the hackers used Triton, a type of malware that had previously hit the Saudi Arabian oil giant Petro Rabigh, as first reported by E&E News. In that breach, the hackers used the malware to manipulate industrial processes and inadvertently cause a process shutdown. Infrastructure security experts said that was the most dangerous malware attack in history, given the tangible risk of physical damage. FireEye believes a Russian government-linked research lab is responsible for developing Triton.