The industrial control system (ICS)/operational technology (OT) security community is seeing attacks that go beyond traditional attacks on enterprise networks. Adversaries in critical infrastructure networks have illustrated knowledge of control system components, industrial protocols, and engineering operations. From the previously observed impactful attacks, such as CRASHOVERRIDE1 in the electric sector, human machine interface hijacking through remote access2 in water management, and ICS-specific ransomware3 in the manufacturing and energy sectors, to the more recent Incontroller/PIPEDREAM4 advanced scalable attack framework targeting multiple ICS sectors, ICS/OT attacks are more disruptive with the possibility of physically destructive capabilities.
Threat intelligence supports the fact that industrial security defenders across all sectors must address new challenges and face serious threats.
The 2022 SANS ICS/OT Cybersecurity survey results reveal several changes and significant focus on ICS operational improvements.
Download the survey to know more.