Kaspersky reports a rise in attacks on oil and gas industries in 2H2023
Kaspersky’s ICS CERT unveils an analysis of Operational Technology (OT) cybersecurity trends for the second half of 2023 (H2 2023). The report offers insight into the evolving threat landscapes globally and regionally, as well as within specific industries.
Kaspersky's
analysis shows a decrease in the percentage of Operational Technology, or OT
computers attacked — to 31.9% in the second half from 34.0% in the first half
of 2023. This drop moves the attack rate closer to the levels observed in 2020,
with a yearly average of 38.6% of OT computers attacked in 2023. Despite this
reduction, the landscape of threats remained diverse and multifaceted over the
past year, with threats spreading via internet continuing as the main source of
cyber risks to OT computers, accounting for 18.1% of the attacks, followed by
email clients at 4.0% and removable media at 1.9%.
Percentage of ICS computers on which the activity of malicious objects of various categories was prevented
A concerning finding is the 1.4-fold global increase ICS systems on which miner executables for Windows were blocked in H2 2023 compared to H1 2023. This highlights the evolving tactics employed by threat actors, who are increasingly seeking to exploit vulnerabilities and leverage ICS infrastructure for their own financial gain. Additionally, this may signify a shift in attackers' focus towards more discreet exploitation techniques.
Kaspersky's analysis delves deeper, revealing regional variations in the threat landscape. In H2 2023, the percentage of computers on which malicious activity was prevented varied across regions from 38.2% in Africa to 14.8% in Northern Europe. South Asia, Eastern and Southern Europe were the regions that witnessed increases in the blocking of malicious objects.
The report also emphasizes the importance of taking care of country-specific cybersecurity problems. The data shows a stark disparity in the impact of threats across different nations (e.g., Yemen: 56.6% blocked objects, Iceland: 7.4%).
Focusing on specific industries, the report identifies building automation as the most targeted sector (H2 2023: highest percentage of blocked objects). The oil and gas sector display a fluctuating trend, experiencing a slight increase in attacks in H2 2023 after a period of decline.
Percentage of OT computers on which malicious objects were blocked in selected industries
“Although the general exposure of the Global OT infrastructure to cyberthreats decreased in the second half of 2023, industrial companies should continue fortify their defenses and stay ahead of ever-evolving threats. Our report includes regional-, country- and industry-specific breakdowns of threats capable of reaching out to OT systems, which can help organizations to tailor their cybersecurity strategies,” comments Evgeny Goncharov, head of Kaspersky’s ICS CERT.
Read the full report on ICS threats in 2H2023 here.
To keep your OT computers protected from various threats, Kaspersky experts recommend:
· Conducting regular security assessments of OT systems to identify and eliminate possible cyber security issues.
· Establishing continuous vulnerability assessment and triage as a basement for effective vulnerability management process. Dedicated solutions like Kaspersky Industrial CyberSecurity may become an efficient assistant and a source of unique actionable information, not fully available in public.
· Performing timely updates for the key components of the enterprise’s OT network; applying security fixes and patches or implementing compensating measures as soon as it is technically possible is crucial for preventing a major incident that might cost millions due to the interruption of the production process.
· Using EDR solutions such as Kaspersky Endpoint Detection and Response for timely detection of sophisticated threats, investigation, and effective remediation of incidents.
· Improving the response to new and advanced malicious techniques by building and strengthening your teams’ incident prevention, detection, and response skills. Dedicated OT security trainings for IT security teams and OT personnel is one of the key measures helping to achieve this.
Kaspersky reports a rise in attacks on oil and gas industries in 2H2023
Kaspersky
Related Articles Press Releases
Updated Kaspersky Security for Mail Server offers advanced content filtering and enhanced visibility for SOC
Kaspersky has announced a significant update to its Kaspersky Security for Mail Server, designed to strengthen systems against emerging email threats. The latest version of Kaspersky Security for Mail Server features advanced functionality for content filtering, quarantine management, and enhanced visibility for Security Operations Centers (SOC).Read More >Innovation journey: Dubai welcomed Kaspersky's Cyber Immunity Conference
Leading cybersecurity experts, scientists, business leaders and government officials from more than 20 countries worldwide have come together for the inaugural international Cyber Immunity Conference. Exploring the complex and evolving cyberthreat landscape the conference provided invaluable insights into the future of our digital age and celebrated the pioneering efforts of the first Cyber Immunity Champions.Read More >Kaspersky Thin Client 2.0: Cyber Immune protection with enhanced connectivity, performance and design
Kaspersky has presented an updated operating system for thin clients that offers enhanced connectivity, higher speed of applications delivery, lower total cost of ownership, user-friendly graphical interface and quick deployment. Kaspersky Thin Client 2.0 is the main component of the Cyber Immune solution for building thin client infrastructure in a wide range of industries, including healthcare, finance, education and manufacturing.Read More >
We use cookies to make your experience of our websites better. By using and further navigating this website you accept this. Detailed information about the use of cookies on this website is available by clicking on more information.