A recent report from Nozomi Networks has brought to light the growing risks associated with Internet of Things (IoT) and operational technology (OT) installations. The report, based on data from the last half of 2023, revealed a significant increase in threats and vulnerabilities targeting these networks.
According to the report, the majority of threats to IoT and OT networks were related to network anomalies and sophisticated attacks such as TCP flood and network scans. Chris Grove, Director of Cybersecurity Strategy at Nozomi Networks, emphasized that these trends indicate a shift towards more sophisticated methods employed by attackers to directly target critical infrastructure. The report also highlighted a 123% increase in traditional IoT and OT cyberattack approaches such as access control and authorization threats.
However, there was a glimmer of good news amidst the grim findings. The report noted a 12% decrease in daily cyberattacks against IoT devices during the same period, providing a small measure of relief in an otherwise concerning landscape.
The report also shed light on the increasing number of vulnerabilities affecting industrial control systems (ICS), as identified by the Cybersecurity and Infrastructure Security Agency (CISA). The analysis revealed a 38% rise in vulnerabilities over the previous six months, with manufacturing vulnerabilities dominating the CISA list. Additionally, the report noted a 230% increase in ICS vulnerabilities affecting manufacturing systems, as well as a 19% increase in the number of vendors impacted by CISA-reported ICS bugs.
Chris Grove stressed the importance of adopting a holistic approach to cybersecurity, emphasizing the need to focus not only on security defenses but also on adopting a post-breach mentality. He highlighted the importance of strategies such as network segmentation, asset discovery, vulnerability management, patching, logging, endpoint detection, and threat intelligence to minimize risk and maximize operational resiliency. Grove also emphasized the importance of actionable asset and threat intelligence in an increasingly complex threat landscape, noting that resiliency will be key to effective defenses.
Overall, the report serves as a stark reminder of the evolving threat landscape facing IoT and OT networks. As attackers become more sophisticated in their methods, organizations must prioritize robust cybersecurity measures to protect critical infrastructure and ensure operational continuity. With the increasing prevalence of threats and vulnerabilities, the need for proactive cybersecurity practices is more critical than ever in safeguarding IoT and OT installations against malicious attacks.