sb-au logo
Story image

Cyber-risk to critical infrastructure reaches all-time high — report

22 Feb 2021

Ransomware is showing no signs of easing; supply chain threats are ramping up; the healthcare industry continues to be targeted; efforts to shift to a remote working model are, more than ever, complicated by the actions of threat actors.

This is according to a new report from Nozomi Networks Labs, which found that attackers are doubling down on high-value targets and weaponising the software supply chain.

“This report leaves no doubt that the time for action is now,” says Nozomi Networks co-founder and CTO Moreno Carullo. 

“The recent Oldsmar, Florida water system attack and the ongoing SolarWinds investigation are dramatic reminders that the critical infrastructure and other systems that we rely on are vulnerable and at constant risk of attack. 

“Understanding the effectiveness of defences against the emerging threat and vulnerability landscape is vital to success.”

The report found:
  • Ransomware activity continues to dominate the threat landscape, growing in sophistication and persistence. In addition to demanding financial payments, Ryuk, Netwalker, Egregor and other ransomware gangs are exfiltrating data and deeply compromising networks for future nefarious activities.
     
  • Supply chain threats and vulnerabilities show no signs of slowing. The unprecedented SolarWinds attack not only infected thousands of organisations, including U.S. Government agencies and critical infrastructure, but it also demonstrates the massive potential for attack via supply chain weaknesses.
     
  • Threat actors are targeting healthcare. Nation-states use off-the-shelf red team tools to execute attacks and perform cyber-espionage against facilities involved with COVID-19 research. Ransomware crews are targeting healthcare providers and hospitals, in some cases disrupting patient treatment.
     
  • Analysis of 151 ICS- CERTs published in the last six months found memory corruption errors are the dominant vulnerability type for industrial devices.

“Urgency has never been higher,” says Nozomi Networks CEO Edgard Capdevielle. “As industrial organisations race toward digital transformation, threat actors are taking advantage of greater OT connectivity to create attacks that aim to disrupt operations and threaten the safety, profitability and reputation of enterprises around the globe.”

Capdevielle says that while threats may be on the rise, the technology to confront them is readily available.

“It’s never been more important or more possible to take the necessary steps to detect and defend critical infrastructure and industrial operations.”

The report’s executive summary states: “As society deals with the second year of the COVID-19 pandemic, organisations are accelerating digitisation to survive and thrive. 

“This places more focus on operational systems, which are at the heart of value and revenue creation.

“Adding to challenges, cybersecurity is ranked by executives as the second-highest risk to enterprises, and attacks on critical infrastructure are rated as the fifth-highest global risk by the World Economic Forum.”
 

Story image
Dell Technologies unveils new data protection innovations for hybrid cloud workloads
The Dell EMC PowerProtect Backup Service, powered by Druva, is designed to deliver SaaS app protection without increasing IT complexity.More
Story image
Sapien Cyber and Honeywell tackle Aus cybersecurity market
“We are incredibly excited to be working with an organisation with the global reputation of Honeywell, which will provide a single solution unique to the Honeywell/Sapien partnership that will address client’s end-to-end cybersecurity requirements.”More
Story image
5G network security a US$9 billion dollar opportunity - report
The cloud-native nature of 5G networks will have a disruptive and positive impact on the cybersecurity industry in the next few years, with 5G network security presenting a US$9 billion enterprise market opportunity by 2025.More
Story image
COVID-19-themed threats, Powershell malware continue surge
“The world—and enterprises—adjusted amidst pandemic restrictions and sustained remote work challenges, while security threats continued to evolve in complexity and increase in volume."More
Story image
Mobile devices biggest enterprise security threat - report
Businesses have left themselves vulnerable and open to cyber criminals in the rush to ensure their workforce could operate remotely during the Covid-19 pandemic.More
Story image
New wormable Android malware discovered through auto-replies in WhatsApp
Check Point Research has discovered new malware on Google’s Play Store that could spread through WhatsApp messages. More