Triton, also referred to as TRISIS and HatMan, was developed to manipulate and target industrial control systems, the US Treasury confirms.
Triton is an open-source reporting, was designed to manipulate industrial safety systems. Such systems allow for the industrial processes at crucial infrastructure facilities to safely shut down to protect the people working there.
Back in August 2017, attackers leveraged Triton to target a petrochemical facility in the Middle East. The cyber attack infected six Triconex Emergency Shut Down (ESD) machines, all of that provide emergency shutdown for various plant processes to prevent threats when conditions are unsafe.