One of the most evolving threats in the past year has been targeted attacks; 28% organizations surveyed have had this kind of problem over the past 12 months, demonstrating how hackers have specialized in this type of attack.
In 2017, one of the fastest-growing types among the multitude of threats aimed at industries was targeted attacks. To give you an idea, a quarter of the industries that participated in the IT Security Risk Survey have already faced various virtual attacks. To make the shop floor safer by 2018, it is critical to eliminate targeted attacks from cybersecurity blind spots, warns Kaspersky Lab.
Due to the increasing complexity and number of attacks on the industrial market today, ignoring cybersecurity issues can have disastrous consequences. 28% of 962 industries surveyed have experienced targeted attacks in the last 12 months. This is 8 percentage points higher than last year, when only 20% of industrial organizations experienced targeted attacks. This confirms Kaspersky's ICS CERT experts' predictions about the emergence of specific malware targeting industrial automation component vulnerabilities in 2018. As the most dangerous type of incident has grown by more than a third, cybercriminal groups are likely to be paying much more attention to the industrial sector.
About 48% from industries report that there is insufficient information about threats specifically targeting their industry. Given the lack of network visibility, 87% from industry organizations responded in the affirmative when asked if any of the previous year's IT / TO security events were complex. This is a strong indicator of the increasingly complex nature of security incidents affecting IT and TO infrastructures, and not surprisingly, industrial organizations spend on average several days (34%) to several weeks (20%). detecting a security event. These results suggest that for large enterprises with critical infrastructures today, it is essential to use dedicated security solutions that can handle a multitude of threats, from malware targeting commodities to attacks designed to exploit vulnerabilities in components of the industrial automation system.
Industries themselves are fully aware of the need for high quality protection against virtual threats. About 62% of industry employees firmly believe that more sophisticated IT security software is required. However, software alone is not enough: nearly half (49%) of participating industries blame employees for not following IT security policies correctly, representing 6% more than respondents from other industries. Cybersecurity awareness training is 'mandatory' when it comes to industrial organizations, considering that every employee, from management to the shop floor, plays a key role in corporate security and maintaining business continuity.
“Arguably, virtual attacks on industrial control systems have become our biggest concern. The good news is that most industry players know what threats are ahead today and which ones will be relevant in the near future. Therefore, it is extremely important to implement a complex security solution designed specifically to protect highly automated automated industrial environments that is configured according to the technology processes of each organization, ”says Andrey Suvorov, Head of Business Development for Critical Infrastructure Protection. from Kaspersky Lab.
Source: securityreport.com.br
About [SAFEWAY]
THE [SAFEWAY] is a widely recognized company as a provider of premium information security and cybersecurity solutions. From its extensive portfolio, we highlight several solutions, including those based on platforms:
● Archer da RSA Security, considered by the institutes Gartner and Forrester and by the market itself, the most complete process integration solution for Governance, Risk Management, Compliance and Business Continuity Management;
● [SAFEWAY] Security Tower, supported by IBM Qradar (Watson technology), tailored to each organization in its security and cyber defense management needs.
● And others, involving technologies Imperva, Thales, Tripwire and WatchGuard Technologies.
We await your contact: [email protected]