Cybersecurity Pros: Critical Infrastructure Ripe for Cyberattacks

Cybersecurity professionals lack confidence in the safety and security of industrial networks, and believe a cyberattack on critical infrastructure could be even more detrimental than an enterprise data breach.

That’s according to new research by Claroty into the state of industrial cybersecurity globally. An independent survey of 1,000 full-time IT security professionals was carried out in the United States, United Kingdom, Germany, France and Australia to determine the attitudes and concerns of IT security professionals related to operational technology (OT) security.

Dave Weinstein, Claroty’s CSO, tells us there is certainly opportunity for MSSPs and other cybersecurity providers in IT and OT convergence. According to the report, only 65% of respondents have been trained in the differences between these two networks and believe they have the skills to manage an OT network’s cybersecurity, he said.

Claroty’s Dave Weinstein

“Working to converge IT and OT networks gives MSSPs the chance to help unlock business value in terms of operations efficiency, performance and quality of services, although equally, this proves to be a challenge as well because threats, both targeted and non-targeted, have the freedom to maneuver from IT to OT environments and vice versa,” he said.

Most IT infrastructure was designed with security in mind and is built for interconnectivity, Weinstein said. The OT environment, by contrast, wasn’t designed to be either secure or interconnected, he said.

“When managing an OT network’s security, MSSPs must be cognizant of these fundamental differences and how they impact traditional security operations and policies,” he said. “With OT networks, for example, you can’t simply implement patches every day. Similarly, you can’t discover devices or monitor traffic using traditional techniques or tools because most of the assets on an OT network communicate using proprietary, vendor-specific protocols that can’t be easily parsed and understood. Perhaps the greatest opportunity for MSSPs in regard to the integration of OT and IT networks is to achieve efficiencies with respect to people and technology. As IT and OT networks converge, it’s increasingly important to glean full spectrum of visibility across both networks. Doing so also empowers defenders to track threat actors that are exploiting IT networks to access OT targets and vice versa.”

In regard to timing and urgency, about two in three (63%) of U.S. IT security professionals expect a major cyberattack to be successfully carried out on national infrastructure within the next five years. However, 10% said there will never be one, despite ample evidence of attacks targeting energy and other related sectors, according to Claroty.

“OT security is a new area of cybersecurity for most organizations, and while critical infrastructure owners and operators have made great progress in the last few years with reducing their cyber risks, most are still at the very beginning of what will be a long and continuous journey to maturity,” Weinstein said.

Global IT security professionals, including those in the United Kingdom, Germany, France and Australia, have a more positive outlook. A majority of all global respondents believes that industrial networks are properly safeguarded. Those in Australia and Germany are by far the most confident in the overall safety of industrial networks.

When asked which type of cyberattack on industrial networks would be most prevalent in 2020, a majority of U.S. IT security professionals put …