SAN FRANCISCO, Oct. 28, 2022 (GLOBE NEWSWIRE) — Nozomi Networks Inc., the chief in OT and IoT safety, in the present day introduced the SANS 2022 OT/ICS Cybersecurity Report finds ICS cybersecurity threats stay excessive as adversaries set their sights on management system parts. In response, organizations have considerably matured their safety postures since final yr. In spite of the progress, greater than a 3rd (35%) don’t know whether or not their organizations had been compromised and assaults on engineering workstations doubled within the final 12 months.
“In the last year, Nozomi Networks researchers and the ICS cybersecurity community have witnessed attacks like Incontroller move beyond traditional targets on enterprise networks, to directly targeting OT,” stated Nozomi Networks Co-founder and CPO Andrea Carcano. “While threat actors are honing their ICS skills, the specialized technologies and frameworks for a solid defense are available. The survey found that more organizations are proactively using them. Still, there’s work to be done. We encourage others to take steps now to minimize risk and maximize resilience.”
ICS Cybersecurity Risks Remain High
- 62% of respondents rated the chance to their OT setting as excessive or extreme (down barely from 69.8% in 2021).
- Ransomware and financially motivated cybercrimes topped the listing of menace vectors (39.7%) adopted by nation-state sponsored assaults (38.8%). Non-ransomware prison assaults got here in third (cited by 32.1%), adopted intently by {hardware}/software program provide chain dangers (30.4%).
- While the variety of respondents who stated they’d skilled a breach within the final 12 months dropped to 10.5% (down from 15% in 2021), 35% of these stated the engineering workstation was an preliminary an infection vector (doubling from 18.4% final yr).
- 35% didn’t know whether or not their organizations had been compromised (down from 48%) and 24% have been assured that they hadn’t had an incident, a 2x enchancment over the earlier yr.
- In common, IT compromises stay the dominant entry vector (41%) adopted by replication via detachable media (37%).
ICS Cybersecurity Postures are Maturing
- 66% say their management system safety funds elevated over the previous two years (up from 47% final yr).
- 56% say they’re now detecting compromises inside the first 24 hours of an incident (up from 51% in 2021). The majority (69%) say they transfer from detection to containment inside 6 to 24 hours.
- 87.5% have performed a safety audit of their OT/management methods or networks previously yr (up from 75.9% final yr) – one-third (29%) have now applied a continuous evaluation program.
- The overwhelming majority (83%) monitor their OT system safety. Of these, 41% used a devoted OT SOC
- Organizations are investing in ICS coaching and certification: 83% of respondents are skilled management system certification holders – a big soar from 54% within the final 12 months.
- Nearly 80% have roles that emphasize ICS operations up from 50% in 2021.
To study extra concerning the newest developments in OT/ICS cybersecurity:
About Nozomi Networks
Nozomi Networks is accelerating the tempo of digital transformation by pioneering innovation for industrial cyber safety and operational management. Leading the trade, we make it potential to sort out escalating cyber dangers to operational networks. In a single resolution, Nozomi Networks delivers OT visibility, menace detection and perception to hundreds of the most important crucial infrastructure, vitality, manufacturing, mining, transportation and different industrial websites around the globe. www.nozominetworks.com
About SANS Institute
The SANS Institute was established in 1989 as a cooperative analysis and training group. SANS is essentially the most trusted and, by far, the most important supplier of coaching and certification to professionals at governments and business establishments world-wide. Renowned SANS instructors train over 50 completely different programs at greater than 200 dwell cyber safety coaching occasions in addition to on-line. GIAC, an affiliate of the SANS Institute, validates worker {qualifications} by way of 30 hands-on, technical certifications in data safety. The SANS Technology Institute, a regionally accredited impartial subsidiary, presents grasp’s levels in cyber safety. SANS presents a myriad of free sources to the InfoSec neighborhood together with consensus tasks, analysis stories, and newsletters; it additionally operates the Internet’s early warning system–the Internet Storm Center. At the guts of SANS are the various safety practitioners, representing assorted world organizations from companies to universities, working collectively to assist your complete data safety neighborhood. (www.SANS.org)
Press Contacts:
Jil Backstrom
[email protected]
Tel. 303.913.1650
Danielle Ostrovsky
[email protected]
Tel. 410-302-9459
Follow the Nozomi Networks Blog
Follow @nozominetworks on Twitter
Visit and comply with the Nozomi Networks Corporate Page on LinkedIn
