Fight crime with a culture change

Russ Madley explains why energy networks are in desperate need of a culture change

Fight crime with a culture change
[image_library_tag cadc7b22-84fe-494f-a8f8-606052bc1fba 300×230 alt=” ” width=”300″ ]Russ Madley

 

There has been speculation recently that the late 2015 power outages in Ukraine were in fact the result of a deliberate attempt to knock the power grid offline. One way or another, the threat to critical infrastructure is definitely something that governments and companies responsible for such installations must take seriously.

With the majority of cyberattacks, a hacker’s motivation is driven by financial gain. But on other occasions, hackers aim to disrupt the lives of as many people as possible – and successfully infiltrating a power supplier would be a perfect way to do this.

One of the main problems is that organisations in an industrial and/or critical infrastructure setting generally place a much higher priority on continuity of processes than on data protection.

So software and systems often go unpatched for extended periods, with their operators relying on air-gaps, firewalls and sandboxing to protect from malefactors – and neglecting or deprioritising good security hygiene at an endpoint level. This not only makes them attractive targets for cybercriminals, but increases their risk of becoming collateral victims of rogue malware. In fact, it’s estimated that up to 80% of control system security incidents are unintentional. 

It’s clearly important that systems are secured effectively, to prevent them being compromised. Yet the truth has always been that, despite all efforts, there’s no such thing as 100% security. 

For example, in 2011, after the targeted attack on RSA, there was an attempt to breach the systems of Lockheed Martin: this highlights the dangers of ‘stepping-stone’ attacks, in which information stolen from further along the supply chain of a company can be used in a subsequent attack (sometimes using a smaller, potentially less secure organisation to gain access to a larger one).

It is no longer about protecting corporate endpoints, networks and traffic with a robust security solution – it’s about a deep, multi-layered, tailored and continuous approach to security.

Partner networks, education and training all play a critical role in protecting critical infrastructures, but governments must step up too. Regardless of whether cyberattacks on critical infrastructure are motivated by politics or piracy, they will continue and increase unless they are stopped, and stopped now.

Russ Madley head of B2B at Kaspersky Lab


Comments

Login on register to comment

Login Register


    Related content


    Related supplier content