中华工控网 > 工控新闻资讯 > 卡巴斯基报告:半数以上的工控系统事故由员工失误造成

Kaspersky Report: Over half of ICS incidents caused by employee errors

August 22, 2019 – According to a new report from Kaspersky, 52% of incidents affecting operational technology and industrial control system (OT/ICS) networks last year were caused by employee errors or unintentional actions. The report, “State of Industrial Cybersecurity 2019,”found this issue to be the result of the growing complexity of industrial infrastructures and a shortage of professionals who understand how to detect new threats as well as low awareness among existing employees.


According to the survey, digitalization of industrial networks and adoption of Industry 4。0 standards are a priority for many industrial companies。 Four out of five organizations (81%) consider operational network digitalization to be an important or very important task for this year。


A majority (87%) of respondents confirmed that OT/ICS cybersecurity is becoming a top priority for industrial companies. However, to achieve the necessary level of protection, they need to invest in dedicated measures and have highly qualified professionals to make them work effectively. Despite stating it as a priority, only just over half of companies (57%) have allocated budget for industrial cybersecurity.


In addition to budget constraints, there is also a question over skilled staff。 Organizations are not only experiencing a lack of cybersecurity experts with the right skills to manage protection for industrial networks, but also are worried that their OT/ICS network operators are not fully aware of the behavior that can cause cybersecurity breaches。 These challenges make up the top two major concerns relating to cybersecurity management and directly correlates as to why employee errors cause half of all ICS incidents such as malware infections and more serious targeted attacks。 


In almost half of the companies (45%) surveyed, the employees responsible for IT infrastructure security also oversee the security of OT/ ICS networks。 Although operational and corporate networks are becoming increasingly connected, OT and ICS specialists can often have different approaches (37%) and goals (18%) when it comes to cybersecurity。


In addition to a technical and awareness boost for industrial cybersecurity, organizations must consider specific protection for Industrial IoT which can become highly connected externally。 Almost half of companies (41%) are ready to connect their OT/ICS network to the cloud using preventive maintenance or digital twins。


“As this ARC Advisory Group survey conducted on behalf of Kaspersky reflects, the growing interconnection between IIoT edge devices and cloud services continues to stand as a security challenge,” said Dr. Jesus Molina, chair, IIC Security Working Group and director of business development, Waterfall Security Solutions. “It was a major driver for the creation of the IIC Industrial Internet of Things Security Framework as well as the subsequent best practices documents and recent IoT Security Maturity Model.”

工业互联网联盟(IIC)安全工作组主席、Waterfall安全解决方案业务发展总监Jesus Molina博士表示:“正如ARC咨询公司代表卡巴斯基进行的调查所反映的那样,工业物联网边缘设备和云服务之间日益增长的互连仍然是一大安全挑战。它是创建IIC工业物联网安全框架,以及随后的最佳实践文档和最近的物联网安全成熟度模型的最主要推动力。” 



  寄语 | 关于我们 | 联系我们 | 广告服务 | 本站动态 | 友情链接 | 法律声明 | 非法和不良信息举报  
版权所有 中华工控网 Copyright@2008 ezraxu.com, All Rights Reserved

澳洲幸运10怎么玩 极速赛车每天稳赚技巧 澳洲幸运10开奖结果 玩极速赛车有挣钱的吗 秒速时时彩 澳洲幸运10开奖视频直播 澳洲幸运10开奖结果 秒速飞艇单双计划 澳洲幸运10全天计划预测 极速赛车是不是官方的