We live in a world where connectivity is key. It’s brought conveniences to our personal lives, and organizations are adopting it into the industrial world to boost productivity.
Industrial control systems (ICS), which manage utilities like water, gas, and electricity, are one such example of this ongoing trend. Organizations are putting ICS systems online so that jobs once carried out manually can now be carried out remotely or with the help of automation.
One of the key concerns with growing connectivity in the industrial world is a successful cyberattack and its many consequences. As demonstrated by the June 2017 NotPetya wiper malware outbreak, ICS systems are a key target for cybercriminals. Security should therefore be a priority; given the importance of ICS, one would assume these systems would be running the most secure technology available. This is not the case. Much of the equipment is at risk of aging out, that is, requiring replacement or upgrade with very little security.
ICS systems are now vulnerable to a host of digital threats like ransomware and DDoS attacks, which could put the delivery of these utilities at risk. For instance, if a cybercriminal gained access to computer systems and cut off a city’s supply of electricity or water, chaos would erupt soon after. Not only are these systems a target for cybercriminal gangs; they are also a target for nation-state actors looking to target a country and attack its critical national infrastructure.
So, what needs to happen in this new reality? Where do utilities begin defending against threats they didn’t have to think about before?
A Solid Approach to Protect your ICS Systems: Simple as 1-2-3
To protect ICS systems against today’s online security threats, it is important that companies take adequate steps to create effective industrial security programs and (Read more...)
*** This is a Security Bloggers Network syndicated blog from The State of Security authored by Gabe Authier. Read the original post at: https://www.tripwire.com/state-of-security/ics-security/3-simple-steps-securing-ics-systems-digital-threats/