Updated: Nov 30, 2021
Tardigrade: An APT attack on vaccine manufacturing infrastructure
WASHINGTON - Today, the Bioeconomy Information Sharing and Analysis Center, or BIO-ISAC, released an advisory regarding an advanced persistent threat (APT) attack named Tardigrade.
A large biomanufacturing facility was involved in a cyberattack in Spring 2021. Through the subsequent investigation, a malware loader was identified that demonstrated a high degree of autonomy as well as metamorphic capabilities. In October 2021, further presence of this malware was noted at a second facility.
Due to the advanced characteristics and continued spread of this active threat, BIO-ISAC made the decision to expedite this threat advisory in the public interest. Analysis continues, and updates will be released on isac.bio as further details are made available.
At this time, biomanufacturing sites and their partners are encouraged to assume that they are targets and take necessary steps to review their cybersecurity and response postures.
The Bioeconomy Information Sharing and Analysis Center (BIO-ISAC), is a critical resource for cyber threat detection, prevention, protection, response, recovery and resilience for the nation, addressing threats unique to the bioeconomy and enabling coordination among stakeholders to facilitate a robust and secure industry. The BIO-ISAC is a 501(c)3 nonprofit member organization (pending), formally chartered in 2021. For more information visit isac.bio.
For interview requests or press inquiries, please email email@example.com or call (540) 782-0087. For disclosures, please email firstname.lastname@example.org or visit isac.bio/disclosure.
November 22, 2021: WIRED, "Devious ‘Tardigrade’ Malware Hits Biomanufacturing Facilities"
November 23, 2021: HHS HC3 Alert, Report: 202111231300, "BIO-ISAC Tardigrade Amplify Report"