ZIUR publishes a new report on industrial threats
The goal is for manufacturing and iron and steel companies to learn about the trends, techniques and tactics used by cybercriminals.
The Gipuzkoa Industrial Cybersecurity Center, ZIUR, has published a new report called 'Industrial Threats Gipuzkoa Q2', which aims to analyze the risks to which this sector is exposed, especially the manufacturing and iron and steel industries. With this document, ZIUR intends that companies are aware of the trends, techniques and tactics used by cybercriminals and, in this way, can invest in security defense and detection technologies.
The report explains that the industrial sector was mired in supply chain attacks and ransomware offensives in 2021. “The growing cybersecurity threat landscape has shown that production and operational disruption is possible. Several times these cybersecurity attacks came close, all too often, to impacting operational technology (OT) and industrial control system (ICS) environments,” the document warns.
Therefore, this analysis aims to provide the industry with the latest strategies and recommendations in terms of security and resilience and proposes a series of recommendations and conclusions. Specifically, regarding SCADA systems (automation and industrial control tools used in production processes), IoT devices or embedded operating systems, he insists that "few or no" security updates make infrastructure providers vulnerable. .
In this sense, it is recommended to install contingency and continuity tools to design action plans aimed at mitigating the impact caused by any security incident. Thus, it is proposed to have system recovery tools, secure deletion, virtualization, backup copies, backup infrastructures and cloud services that allow configuring and using software and communications resources in a minimum time for recovery in case Of attack.