Cybercriminals Get Industrious When Hacking Critical Infrastructure

In recent years, cyber-attacks on industrial control systems and critical infrastructure altogether have been on the rise.

A recent study by Bitkom shows that cyber-attacks cost the German industry almost $50 billion. Those attacks are not limited to Europe’s strong economy. Hackers are known to have manipulated critical industrial safety systems to cause physical damage.

The Most Critical Sectors at Risk

The United States Home Land Security (HLS) warns that there are 16 critical infrastructure sectors “whose assets, systems, and physical or virtual networks are so vital that their incapacitation or destruction would have a debilitating effect on security, national economic security, national public health or safety, or any combination thereof.” These sectors are as follows, in alphabetical order: chemical, commercial facilities, communications, critical manufacturing, dams, defense industrial bases, emergency services, energy, financial services, food & agriculture, government facilities, healthcare & public health, IT, and water & wastewater systems. To complicate matters, the vast majority of critical infrastructure is in private hands.

Cyber-Attacks on Critical Infrastructure

If we take a look at the latest attacks in the table below, we see that the motives vary, from hacktivism (RWE attack), ransom, state-sponsored cyber attacks (China is the main suspect in the TSMC hack), revenge (Tesla hack) and plain old greed (British Airways attack).

The Future of Cybersecurity in Critical Infrastructure

Although critical infrastructure industries (especially gas & oil companies) have been increasing their security substantially during the past few years, it remains a struggle to keep up (let alone stay ahead) of threat actors despite strong partnerships between the public and private sectors. This means that investments in cyber security will continue to grow. According to a recent report by Global Market Insights, Inc, the Industrial Control Systems (ICS) security market is expected to grow from its current market value of more than $1.5 billion to over $7 billion by 2024. If we look at the breakdown, we see that endpoint security is still the main focus, followed by network security and ruggedized firewalls for maintaining and managing network traffic in industrial infrastructure operating in harsh environmental conditions. In short, the focus will be on comprehensive security solutions and services that should be not only reactive, but also proactive.

How Cymulate Supports Cybersecurity Efforts

To assist with your efforts to protect critical assets, Cymulate offers a convenient and easy way to test your cyber security posture. Cymulate’s Breach & Attack Simulation (BAS) platform allows an organization to run real cyberattacks in its own environment in a safe manner without harming your network in any way. There is a choice of eight different scenarios to run, including immediate threat alert assessments to check the organization’s vulnerability to the latest threats: endpoint assessment to check if endpoint security solutions are installed correctly, phishing assessment to check employees’ awareness of socially engineered attack campaigns that hackers often use to install ransomware or APT attacks, and data exfiltration assessment that tests the control of outbound critical data before any sensitive information is exposed. Organizations can choose to run one, more, or all assessments. The simulations can be scheduled in advance (e.g., every week on Sunday morning at 6 am) or ad hoc (at any time, from anywhere).