SecurityBrief Australia - Technology news for CISOs & cybersecurity decision-makers
Story image

Claroty predicts increased focus on OT cybersecurity by 2025

Tue, 26th Nov 2024

Claroty has unveiled its cybersecurity predictions for 2025, highlighting significant developments in the protection of Operational Technology (OT) and critical infrastructure sectors.

Leon Poggioli, ANZ Regional Director at Claroty, outlines several key areas for the coming year. "A major cyberattack will be executed on critical infrastructure as part of a wartime scenario and this will enter mainstream news, as world leaders recognise the need to protect their domestic critical infrastructure from being attacked by an act of war from their enemies," he stated.

Proposed legislation to safeguard Australia's critical infrastructure sectors is expected to come into effect, spotlighting organisations that have neglected their cybersecurity investments.

This increased focus on cybersecurity is anticipated to influence political discourse as well. "A successful attack on critical infrastructure will also become an election issue in some jurisdictions as citizens demand their governments to protect the critical infrastructure they rely on from cyberattacks," Poggioli added.

An emphasis on a "back to basics" approach to OT cybersecurity is expected in response to potential undetected attacks on critical infrastructure organisations. Poggioli cited a past example, saying, "In 2025, we will see at least one 'invisible' cyber attack on a critical infrastructure organisation, i.e. where the attack proceeds completely undetected due to an organisation's lack of knowledge regarding its network and connected devices. An example of this was the Danish Power grid attack in 2023, where one electricity operator didn't even realise it had a device in its network with a critical vulnerability." This issue underscores the necessity for organisations to map their attack surfaces and maintain up-to-date inventories of connected assets.

Identity Access Governance within OT environments will also be a significant area of focus. "Organisations will place a renewed focus on user access in their Operational Technology (OT) environments — targeting both internal and external users," Poggioli explained. This shift will involve moving from traditional methods such as jumpboxes and VPNs to more secure, fit-for-purpose solutions designed for "Just in Time" Access.

Moreover, unsanctioned remote access methods, including hidden 4G modems and FTP servers, will be targeted, alongside the elimination of password sharing in favour of improved user identity and control methods.

Claroty's cybersecurity predictions for 2025 highlight the growing need to protect Operational Technology (OT) and critical infrastructure from evolving cyber threats. With the potential for cyberattacks to impact national security, organisations must prioritise securing access, mapping attack surfaces, and addressing vulnerabilities in OT environments. As the landscape shifts, businesses will need to remain proactive to ensure resilience and safeguard their critical systems against emerging risks.

Follow us on:
Follow us on LinkedIn Follow us on X
Share on:
Share on LinkedIn Share on X