After a year that began with the fall-out from another Ukraine electric grid attack, saw the discovery of the first toolset since Stuxnet to target physical systems (CrashOverride/ Industroyer) and included significant harm from ransomware attacks (WannaCry, Petya/NotPetya), what’s in store for 2018?
Our team looked ahead 12 months and thought about how ICS cyber security will be different at the end of that period. From there we came up with 5 predictions you won’t want to miss.
Recently reports of a new ransomware malware known as Bad Rabbit was making headlines in the press. A suspected variant of NotPetya, Bad Rabbit spread quickly through IT networks in Europe and elsewhere.
Our research indicates that while Bad Rabbit infections started to be reported in late October, the group behind the attacks started creating an “infection-network” in July. While not reported as impacting industrial systems, industrial operators should take note of this attack and what it means for their cyber resiliency programs.
The SANS Institute recently surveyed hundreds of ICS practitioners and cyber security stakeholders on the topic of industrial cyber security. The results provide a valuable source of information for organizations seeking to understand the state of ICS security or to benchmark their organization against others.
Amongst the findings are a ranking of top threat vectors. Read on to learn what global leaders in critical infrastructure are most concerned about, and how Nozomi Networks’ SCADAguardian defends and mitigates against the top threats.