Source URL: https://www.techradar.com/pro/security/hackers-are-increasingly-targeting-industrial-systems-with-brute-force-cisa-warns
Source: Hacker News
Title: Attackers are increasingly targeting industrial systems with brute force
Feedly Summary: Comments
AI Summary and Description: Yes
Summary: The text highlights a significant increase in cyberattacks on operational technology (OT) and industrial control systems (ICS), specifically targeting endpoints in critical sectors like water and wastewater. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warns about the vulnerabilities, particularly concerning brute-force attacks using default credentials, and emphasizes the need for strengthened security practices in OT operations.
Detailed Description: The provided content serves as a crucial alert for security and compliance professionals, particularly within the fields of Information Security and Infrastructure Security. The rise in attacks on OT and ICS poses a tangible threat to public safety and infrastructure, underlining the importance of rigorous defense measures.
– **Increase in Cyberattacks**: The CISA has observed a marked rise in attacks against OT and ICS, featuring brute-force tactics used by hackers to access devices.
– **Targeted Sectors**: The attackers are focusing notably on the Water and Wastewater Systems (WWS) sector, which has critical implications for public health and safety.
– **Default Credentials**: Many breaches occur due to attackers exploiting devices protected only by default passwords, indicating a lapse in basic security hygiene.
– **Frequency of Attacks**: A Fortinet survey reveals a disturbing increase in the frequency of attacks, with a jump from 49% to 73% of businesses experiencing OT attacks year over year. Furthermore, 31% of respondents reported multiple intrusions within a single year.
– **Cybercriminal Adaptation**: The speed at which cybercriminals are adapting to existing defenses is highlighted as a major concern, suggesting a growing sophistication in their methods.
– **Recommendations for Defense**: CISA urges organizations to adhere to secure-by-design principles and practices aimed at protecting OT operations from ongoing threats.
The material emphasizes a critical need for increased vigilance and robust security measures for organizations operating in sectors dependent on OT and ICS. Security professionals must proactively address vulnerabilities to safeguard essential services, integrating resilient security frameworks that keep pace with evolving threats.