Business Continuity Management / Disaster Recovery , Critical Infrastructure Security , Cybercrime

The Current OT/ICS Threat Landscape - Dragos' Annual Report

Findings Show Threat Groups, Vulnerabilities and Ransomware All on the Rise
Tom Winston, director of intelligence content, Dragos

The 2021 Dragos ICS/OT Cybersecurity Year in Review report says the number of industrial organizations with external connections to their industrial control systems has doubled, yet 86% of organizations report limited to no visibility of ICS environments. Tom Winston outlines the top challenges industrial organizations need to address.

See Also: Webinar | Everything You Can Do to Fight Social Engineering and Phishing

Findings from the report show that ransomware has become the number one attack vector in the industrial sector. Ransomware groups - Conti and LockBit 2.0 - caused 51% of total industrial ransomware attacks, and 70% of their activity targeted manufacturing.

Winston recommends adopting a "holistic" approach to ransomware defense, "not just looking at your specific individual environments out of context but contextualizing how these environments are connected with each other," he says.

He also says that risk assessments are "critical" for preventing ransomware attacks. "The risk assessment needs to be a conversation between operational technology engineers and the enterprise IT portions of the organization."

In a video interview with Information Security Media Group, Winston discusses:

  • The current OT/ICS threat landscape;
  • Activity groups targeting operational technologies;
  • Recommendations for improvement.

Winston is a cybersecurity subject matter expert focused on threats to critical infrastructure - ICS/SCADA - systems, as well as foreign cyber intelligence and threat analysis. He has over 25 years of professional experience in cybersecurity, ICS/SCADA systems, critical infrastructure protection, academics, and systems and network engineering. Winston joined Dragos after serving for several years as a professor of cybersecurity engineering at George Mason University.

About the Author

Anna Delaney

Anna Delaney

Director, Productions, ISMG

An experienced broadcast journalist, Delaney conducts interviews with senior cybersecurity leaders around the world. Previously, she was editor-in-chief of the website for The European Information Security Summit, or TEISS. Earlier, she worked at Levant TV and Resonance FM and served as a researcher at the BBC and ITV in their documentary and factual TV departments.

Around the Network

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing, you agree to our use of cookies.