New details have emerged about the 2017 Triton/Trisis cyberattack on a Middle East plant’s safety instrumentation system. New information also shows that the attackers infected six engineering systems, not just two as investigators had reported. The June incident wasn’t accurately identified as a cyberattack by the petrochemical firm’s vendor, Schneider Electric, he said. The attackers likely didn’t mean to trigger shutdowns in the Triconex safety systems, but those were the only red flags until Gutmanis’ team dug deeper into the system.”]