Energy industry vulnerable to attacks on outdated systems

No Comments

Cooling towers

Critical infrastructure sites and energy distribution facilities are increasingly being targeted by cybercriminals. But many of the systems in use today were installed and built before 24/7 internet connections.

A new report from Finnish cybersecurity company F-Secure highlights the fact that cybersecurity was not a realistic threat when these systems were manufactured, and legacy protocols and systems never had the built-in security controls that we take for granted today. Connecting these systems to the internet has opened them up to attacks from myriad angles.

"Espionage and sabotage attacks against CNI (Critical National Infrastructure) organizations have increased over the years and I don't think we have seen it all yet," says Sami Ruohonen, Labs Threat Researcher at F-Secure. "Critical Infrastructure due to its nature is an interesting target for a foreign nation-state, even during peacetime."

Among the report's findings are that a variety of different adversaries, each with their own motivations and tradecraft, constantly strive to compromise organizations that operate critical infrastructure.

Nation-state sponsored advanced persistent threat (APT) groups are relentless, and continue to seek network foothold positions on CNIs and espionage opportunities in the interests of exercising political leverage.

Nine different attackers, malware types and techniques targeting the energy industry stand out, with spear phishing being the most common initial supply chain attack technique. Keeping a small attack surface in the energy industry -- while often pitched as the best way to mitigate the risk of a cyber attack -- is simply not possible.

Ruohonen advises organizations to review their cyber security posture to implement latest technologies such as an endpoint detection and response (EDR) solution. "EDR is a quick way to tremendously increase capabilities to detect and respond to advanced threats and targeted attacks which might bypass traditional endpoint solutions. Managed EDR solutions can provide monitoring, alerting, and response to cover the needs 24/7. This means organizations' IT teams can operate during business hours to review the detections while a specialized cybersecurity team takes care of the rest."

You can read more on the F-Secure blog.

Image Credit: Meryll / Shutterstock

No Comments

Comments are closed.

Got News? Contact Us

Recent Headlines

We're not going to deal with today's IT admin issues with yesterday's technology

AI-powered data management: Navigating data complexity in clinical trials

Workforces need the skills to defend against AI-enabled threats

Overcoming real-time data integration challenges to optimize for surgical capacity and better care

From Windows XP to Windows 10 -- How Microsoft's end-of-life nag screens have changed

Pour one out for the Linux homies: Fedora 40 released

Phishing attacks up 60 percent driven by AI

Most Commented Stories

Say goodbye to Microsoft Windows 11 and hello to Nitrux Linux 3.4.0 'pl'

62 Comments

The stunning Windows 13 -- yes, 13! -- is the Microsoft operating system we want

20 Comments

Windows 11 slammed for its 'comically bad' performance even on high-end hardware

18 Comments

Microsoft is up to its old tricks yet again -- Windows 10 users harassed with full-screen Windows 11 upgrade warnings

17 Comments

Outrageous: Microsoft to charge $61 for Windows 10 updates -- consider switching to Linux!

17 Comments

Microsoft 'improves' Windows 11 by bringing ads to the Start menu in the US

16 Comments

Microsoft releases preview version of Office 2024 for Windows and macOS -- download it now!

12 Comments

Easter giveaway! Get a licensed copy of 'VideoProc Converter for Windows/Mac' (worth $78.90) for FREE

10 Comments

© 1998-2024 BetaNews, Inc. All Rights Reserved. Privacy Policy - Cookie Policy.