OT attacks surge during 2022


By Dylan Bushell-Embling
Wednesday, 22 February, 2023

OT attacks surge during 2022

Last year saw a breakthrough evolution in the development of malware targeting industrial control systems, with cybercriminals attacking operational technology [OT] at a greater scale, according to Dragos.

The year 2022 was also characterised by the emergence of scaled ransomware attacks against the manufacturing sector and heightened geopolitical tensions, all of which served to bring increased attention to the industrial cyberthreat landscape, the OT cybersecurity company said.

In a new report, Dragos has highlighted the emergence of recent industrial control system [ICS] specific malware discoveries, including Pipedream, the seventh known ICT-specific malware.

Pipedream is the first scalable, cross-industry ICS attack framework, capable of targeting three ubiquitous software components in OT systems.

Meanwhile two new ICS threat groups have been identified targeting ICS and OT, known as Chernovite and Bentonite respectively. Chernovite is the developer of Pipedream, while Bentonite has been found to target the maritime oil and gas industries, various levels of government, and the manufacturing sector, the report found.

Meanwhile Dragos has detailed findings on the activity of six known ICS threat groups targeting industrial organisations.

The top financial and operational risk to industrial organisations remains ransomware, the report states. Of the 57 ransomware groups targeting industrial organisations and infrastructures only 39 were active in 2022, according to the report.

But Dragos still identified 605 ransomware attacks against industrial organisations in 2022, up 87% from 2021.The manufacturing sector was targeted in 72% of attacks, but ransomware groups also targeted sectors including food and beverage, energy, pharmaceuticals, oil and gas, water, mining, and metals.

Image caption: Key findings from the study into OT threats.

The report also found that the number of ICS/OT vulnerabilities reported in 2022 grew by 27%, with the Dragos Threat Intelligence team analysing 2170 common vulnerabilities and exposures during the year.

Top image credit: iStock.com/greenbutterfly

Related Articles

How surveillance cameras facilitate a smarter and safer world

As Australia's population continues to grow, surveillance technologies will be crucial to...

Adapting to new cybersecurity challenges: a roadmap for Australian government agencies

Given the rise in cyber threats against government networks and critical infrastructure sectors,...

Growing fraud trends in Australian health care

As the healthcare landscape evolves, so do the methods of fraud.

Content from other channels on our network

'Curving' light beams could enable terahertz comms

Panasonic offers private 5G network testing in Munich

Antenna upgrade enables better sewer management

60 million Aust drone flights predicted for 2043

The fire on Marley's Hill

EV future for Monash Uni

Shell Cove battery launched on NSW South Coast

Million-dollar rooftop solar for Kimberley hospital

Protecting wildlife from electrical assets — and vice versa

Immersive VR training for electricians

Big AI in big business: three pillars of risk

Cradlepoint launches 5G-ready SASE solution

Veeam buys ransomware response company Coveware

Cognizant and Microsoft forge AI partnership

Queensland's Something Digital festival to return in August

  • All content Copyright © 2024 Westwick-Farrow Pty Ltd