In 2018, Kaspersky Lab detected and prevented activity by malicious objects on almost half of Industrial Control System (ICS) computers protected by the company’s products and defined as part of an organization’s industrial infrastructure. The most affected countries were Vietnam, Algeria and Tunisia. These are some of the main findings of the Kaspersky Lab ICS CERT report on the industrial threat landscape in H2 2018.

 

Malicious cyber activities on ICS computers are considered extremely dangerous threats as they could potentially cause material losses and production downtime in the operation of industrial facilities.

 

In 2018, the share of ICS computers that experienced such activities grew to 47.2% from 44% in 2017, indicating that the threat is rising.

 

According to the new report, the top three (3) countries worldwide in terms of the percentage of ICS computers on which Kaspersky Lab prevented malicious activity were the following: Vietnam (70.09%), Algeria (69.91%), and Tunisia (64.57%). The least impacted nations were Ireland (11.7%), Switzerland (14.9%), and Denmark (15.2%).

 

“Despite the common myth, the main source of threat to industrial computers is not a targeted attack, but mass-distributed malware that gets into industrial systems by accident, over the internet, through removable media such as USB-sticks, or e-mails. However, the fact that the attacks are successful because of a casual attitude to cybersecurity hygiene among employees means that they can potentially be prevented by staff training and awareness – this is much easier than trying to stop determined threat actors,” said Kirill Kruglov, Security Researcher at Kaspersky Lab ICS CERT.

 

ICS Threats in Southeast Asia and the Philippines
Globally, Southeast Asia is the second top region with the most proportion of ICS computers on which malicious objects were detected and blocked by Kaspersky Lab at 57.8%.

 

In the region, the Philippines ranked fourth with the most ICS infections that were countered by Kaspersky Lab at 41.6% in the second half of 2018. According to Kaspersky Lab, the top main sources of threats for computers in the industrial infrastructure of organizations in the region are the internet, removable devices and email attachments.

 

 

“Regardless of industry, businesses will always have to deal with human error. But it will be more pronounced and threatening for industrial companies responsible for manufacturing and critical operations. From a technology standpoint, it’s worth noting that traditional IT security solutions will no longer be enough to protect industrial networks from these threats. ICS decision makers should now aim for a “True Cybersecurity” which covers four key stages of attacks – predict, prevent, detect, and respond.” said Yeo Siang Tiong, General Manager for Southeast Asia at Kaspersky Lab.

 

Kaspersky Lab ICS CERT recommends implementing the following technical measures:  

  • Regularly update operating systems, application software on systems that are part of the enterprise’s industrial network.
  • Apply security fixes to PLC, RTU and network equipment used in ICS networks where applicable.
  • Restrict network traffic on ports and protocols used on edge routers and inside the organization’s OT networks.
  • Audit access control for ICS components in the enterprise’s industrial network and at its boundaries.
  • Deploy dedicated endpoint protection solutions on ICS servers, workstations and HMIs, such as Kaspersky Industrial CyberSecurity. This solution includes network traffic monitoring, analysis and detection to secure OT and industrial infrastructure from both random malware infections and dedicated industrial threats.
  • Make sure security solutions are up-to-date and all the technologies recommended by the security solution vendor to protect from targeted attacks are enabled.
  • Provide dedicated training and support for employees as well as partners and suppliers with access to your network.
  • Use ICS network traffic monitoring, analysis and detection solutions for better protection from attacks potentially threatening technological process and main enterprise assets.

 

 

Read the full text of the report on Kaspersky Lab ICS CERT website.


RECOMMENDED ARTICLE FOR TECHWORLD


 
Data Protection a Cornerstone of Robust Cybersecurity: Fortinet
Techworld Date Posted: 22 July 2017 2:36 PM | 584 Views
Fortinet, a global leader in high-performance cyber security solutions, urged IT leaders to take steps to protect data in their organizations in a bid to strengthen data privacy, as well as cyber security in.... See More
 
Data Protection a Cornerstone of Robust Cybersecurity: Fortinet
Techworld Date Posted: 2:36 PM | 584 Views
Fortinet, a global leader in high-performance cyber security solutions, urged IT leaders to take steps to protect data in their organizations in a bid to strengthen data privacy, as well as cyber security in...See More

 
Kaspersky Lab and DICT Ink MoU to Develop Public Sector Cybersecurity Capability
Techworld Date Posted: 30 October 2018 5:08 PM | 168 Views
DICT & Kaspersky Lab inks MoU. Present at the signing were (from left to right) Allan S. Cabanlong, Assistant Secetary, DICT; Eliseo M. Rio Jr., Acting Secretary, DICT; Stephan Neumeier, Managing Director, Kaspersky Lab.... See More
 
Kaspersky Lab and DICT Ink MoU to Develop Public Sector Cybersecurity Capability
Techworld Date Posted: 5:08 PM | 168 Views
DICT & Kaspersky Lab inks MoU. Present at the signing were (from left to right) Allan S. Cabanlong, Assistant Secetary, DICT; Eliseo M. Rio Jr., Acting Secretary, DICT; Stephan Neumeier, Managing Director, Kaspersky Lab...See More

 
Transcend Introduces High-Performance PCIe NVMe M.2 SSDs for Consumer and Embedded Applications
Techworld Date Posted: 21 May 2018 3:23 PM | 674 Views
Transcend Information Inc., a leading manufacturer of storage and multimedia products, announced today the release of the MTE110S PCIe NVMe M.2 2280 SSD for the consumer market and the MTE550T PCIe NVMe M.2 2280.... See More
 
Transcend Introduces High-Performance PCIe NVMe M.2 SSDs for Consumer and Embedded Applications
Techworld Date Posted: 3:23 PM | 674 Views
Transcend Information Inc., a leading manufacturer of storage and multimedia products, announced today the release of the MTE110S PCIe NVMe M.2 2280 SSD for the consumer market and the MTE550T PCIe NVMe M.2 2280...See More

 
The ASEAN Foundation and SAP Extend Strategic Collaboration to Drive Positive Social Impact in the Digital Economy
Techworld Date Posted: 1 December 2017 4:00 PM | 183 Views
In the photo (L-R) His Excellency Vongthep Arthakaivalvatee, Deputy Secretary General of ASEAN for Socio-Cultural Community, Claus Andresen, President and Managing Director of SAP Southeast Asia, Elaine Tan, Executive Director of the ASEAN Foundation.... See More
 
The ASEAN Foundation and SAP Extend Strategic Collaboration to Drive Positive Social Impact in the Digital Economy
Techworld Date Posted: 4:00 PM | 183 Views
In the photo (L-R) His Excellency Vongthep Arthakaivalvatee, Deputy Secretary General of ASEAN for Socio-Cultural Community, Claus Andresen, President and Managing Director of SAP Southeast Asia, Elaine Tan, Executive Director of the ASEAN Foundation...See More

 
Lenovo Continues Support for Youth Organizations, Named Exclusive Technology Partner Anew of TAYO Awards Foundation
Techworld Date Posted: 15 February 2018 5:13 PM | 176 Views
Lenovo, one of the world’s biggest technology companies, is once again the official technology partner of the Ten Accomplished Youth Organizations (TAYO) Awards Foundation, Inc.. See More
 
Lenovo Continues Support for Youth Organizations, Named Exclusive Technology Partner Anew of TAYO Awards Foundation
Techworld Date Posted: 5:13 PM | 176 Views
Lenovo, one of the world’s biggest technology companies, is once again the official technology partner of the Ten Accomplished Youth Organizations (TAYO) Awards Foundation, Inc.See More

 
Half of Businesses Find It Hard to Identify a Serious Security Breach. Do You?
Techworld Date Posted: 8 November 2017 4:53 PM | 41 Views
Prevention is still the main pillar of corporate cybersecurity, says the report ‘New Threats, New Mindset: Being Risk Ready in a World of Complex Attacks’ from Kaspersky Lab.. See More
 
Half of Businesses Find It Hard to Identify a Serious Security Breach. Do You?
Techworld Date Posted: 4:53 PM | 41 Views
Prevention is still the main pillar of corporate cybersecurity, says the report ‘New Threats, New Mindset: Being Risk Ready in a World of Complex Attacks’ from Kaspersky Lab.See More

 
Lenovo Opens First Legion Gaming Store in PH
Techworld Date Posted: 1 March 2019 4:30 PM | 427 Views
Global innovation leader and number one PC developer Lenovo inaugurated its first ‘Legion Concept Store’ in the Philippines as part of its efforts to bring game-changing devices closer to Filipino gamers in the company’s.... See More
 
Lenovo Opens First Legion Gaming Store in PH
Techworld Date Posted: 4:30 PM | 427 Views
Global innovation leader and number one PC developer Lenovo inaugurated its first ‘Legion Concept Store’ in the Philippines as part of its efforts to bring game-changing devices closer to Filipino gamers in the company’s...See More

 
Grade School Students, Big Winner in Power Mac Center App Contest
Techworld Date Posted: 27 February 2019 3:51 PM | 333 Views
A game app that will help toddlers and grade school students build their passion for learning bagged the grand prize in Power Mac Center’s recently concluded “emPOWER UP! Design a Better World: App Development.... See More
 
Grade School Students, Big Winner in Power Mac Center App Contest
Techworld Date Posted: 3:51 PM | 333 Views
A game app that will help toddlers and grade school students build their passion for learning bagged the grand prize in Power Mac Center’s recently concluded “emPOWER UP! Design a Better World: App Development...See More

 
Fortinet Predicts Highly Destructive and Self-Learning “Swarm” Cyber Attacks in 2018
Techworld Date Posted: 13 December 2017 4:02 PM | 32 Views
Fortinet® (NASDAQ: FTNT), the global leader in high-performance cybersecurity solutions, today unveiled predictions from the Fortinet FortiGuard Labs global research team about the threat landscape for 2018. The trends reveal the methods and strategies.... See More
 
Fortinet Predicts Highly Destructive and Self-Learning “Swarm” Cyber Attacks in 2018
Techworld Date Posted: 4:02 PM | 32 Views
Fortinet® (NASDAQ: FTNT), the global leader in high-performance cybersecurity solutions, today unveiled predictions from the Fortinet FortiGuard Labs global research team about the threat landscape for 2018. The trends reveal the methods and strategies...See More

 
Symantec Unveils Industry’s First Neural Network to Protect Critical Infrastructure from Cyber Warfare
Techworld Date Posted: 13 December 2018 11:59 AM | 551 Views
Symantec Corp. (NASDAQ: SYMC), the world’s leading cyber security company, today introduced Industrial Control System Protection (ICSP) Neural, the industry’s first neural network-integrated USB scanning station that helps organizations protect critical infrastructure by preventing.... See More
 
Symantec Unveils Industry’s First Neural Network to Protect Critical Infrastructure from Cyber Warfare
Techworld Date Posted: 11:59 AM | 551 Views
Symantec Corp. (NASDAQ: SYMC), the world’s leading cyber security company, today introduced Industrial Control System Protection (ICSP) Neural, the industry’s first neural network-integrated USB scanning station that helps organizations protect critical infrastructure by preventing...See More


Power by

Download Free AZ | Free Wordpress Themes