ICS-CERT updates a number of recommendations for critical infrastructure operators to prevent infections from the Shamoon wiper malware. Shamoon struck Saudi oil company Aramco, destroying more than 30,000 workstations last August. The virus overwrote the Master Boot Record on tens of thousands of machines, rendering them useless. The updated bulletin urges policy implementation and enforcement to limit the use of social networks such as Facebook and Twitter, as well as personal email and instant messaging. The malware also spreads via network shares, trying to hit other computers on the same network.
Source: https://threatpost.com/ics-cert-revises-recommendations-to-avoid-shamoon-infections/100204/