Industrial control system (ICS) security needs urgent revamp, warns a set of three reports from industrial cyber-security specialists Dragos.
A total of 438 industrial control system (ICS) vulnerabilities were identified by Drago in 2019, said its annual ‘year in review’ reports. More than 25 percent of advisories had no patch available at the time of disclosure, while 30 percent published incorrect data that prevented accurate patch management prioritisation.
Last year, three new threat groups specifically targeting ICS entities on a global basis joined the list of eight groups that were identified earlier. With escalating geopolitical tensions, the chances of regular offensive cyber-operations against ICS increase and put both critical infrastructure and human life at a higher risk than before, according to the reports.
The fact that 100 percent of organisations had routable network connections into their operational environments and 76 percent were unable to detect Red Team activity by Dragos aggravates the possibility of a crisis.
“The trend of threat proliferation continues as activity groups start targeting new verticals and geographies not…
