SAN FRANCISCO, October 28, 2022 — Nozomi Networks Inc., the chief in OT and IoT safety, at the moment introduced the SANS 2022 OT/ICS Cybersecurity Report finds ICS cybersecurity threats stay excessive as adversaries set their sights on management system elements. In response, organizations have considerably matured their safety postures since final 12 months. In spite of the progress, greater than a 3rd (35%) don’t know whether or not their organizations had been compromised and assaults on engineering workstations doubled within the final 12 months.
“In the last year, Nozomi Networks researchers and the ICS cybersecurity community have witnessed attacks like Incontroller move beyond traditional targets on enterprise networks, to directly targeting OT,” mentioned Nozomi Networks Co-founder and CPO Andrea Carcano. “While threat actors are honing their ICS skills, the specialized technologies and frameworks for a solid defense are available. The survey found that more organizations are proactively using them. Still, there’s work to be done. We encourage others to take steps now to minimize risk and maximize resilience.”
ICS Cybersecurity Risks Remain High
- 62% of respondents rated the danger to their OT surroundings as excessive or extreme (down barely from 69.8% in 2021).
- Ransomware and financially motivated cybercrimes topped the checklist of menace vectors (39.7%) adopted by nation-state sponsored assaults (38.8%). Non-ransomware legal assaults got here in third (cited by 32.1%), adopted carefully by {hardware}/software program provide chain dangers (30.4%).
- While the variety of respondents who mentioned that they had skilled a breach within the final 12 months dropped to 10.5% (down from 15% in 2021), 35% of these mentioned the engineering workstation was an preliminary an infection vector (doubling from 18.4% final 12 months).
- 35% didn’t know whether or not their organizations had been compromised (down from 48%) and 24% had been assured that they hadn’t had an incident, a 2x enchancment over the earlier 12 months.
- In normal, IT compromises stay the dominant entry vector (41%) adopted by replication by means of detachable media (37%).
ICS Cybersecurity Postures are Maturing
- 66% say their management system safety finances elevated over the previous two years (up from 47% final 12 months).
- 56% say they’re now detecting compromises inside the first 24 hours of an incident (up from 51% in 2021). The majority (69%) say they transfer from detection to containment inside 6 to 24 hours.
- 87.5% have carried out a safety audit of their OT/management programs or networks previously 12 months (up from 75.9% final 12 months) – one-third (29%) have now carried out a continuous evaluation program.
- The overwhelming majority (83%) monitor their OT system safety. Of these, 41% used a devoted OT SOC
- Organizations are investing in ICS coaching and certification: 83% of respondents are skilled management system certification holders – a major soar from 54% within the final 12 months.
- Nearly 80% have roles that emphasize ICS operations up from 50% in 2021.
To be taught extra concerning the newest traits in OT/ICS cybersecurity: