-
Why do cybercriminals focus their attacks on factories?
Easy targets are keys to an attacker’s success. Unprotected factory devices are becoming exposed to the internet. Vulnerabilities in ICS/OT equipment abound due to the legacy nature of many systems that were designed and implemented before security became a top priority.
The exposure could be intentional as in Factory 4.0, digital transformation projects, and the desire to use AI to enhance safety and production or a mistaken configuration. Either way, reliance on ‘air-gapped’ environments or a single firewall to protect your production is no longer sufficient. And don’t forget to include IoT/building automation systems in your segmentation and protection strategy.
Solutions should include user identity, application, network segmentation, network access controls, and 7X24 monitoring and management.
We believe firms should start now on your own timeline before governmental, industry, and supply chain requirement become hard to meet deadlines.Regulations:
SP 800-82 Rev. 3, Guide to Operational Technology (OT) Security | CSRC (nist.gov)
EU Cyber Resilience Act | Shaping Europe’s digital future (europa.eu)
Recent Articles:
Microsoft Warns of Surge in Cyber Attacks Targeting Internet-Exposed OT Devices (thehackernews.com)
Rockwell Advises Disconnecting Internet-Facing ICS Devices Amid Cyber Threats (thehackernews.com)
Breaches:
Thyssenkrupp Auto Unit Hit by Cyberattack – WSJ
VARTA makes good progress in solving the cyberattack (varta-ag.com)
