The National Security Administration (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) warn that there are active and known threats to industrial control systems (ICS) and operational technology (OT) whose critical infrastructure sectors must be aware.
In particular, the “Control Systems Defense: Know the Opponent” report warns of the increase in attacks against utilities and industrial targets by Advanced Persistent Threat (APT) groups and gathers information on tactics, techniques and Procedures (TTPs) of common threats to ICS and OT systems to help security teams strengthen their defenses. For example, APTs have recently begun developing tools specifically to scan, compromise and control targeted OT devices, according to the federal government.
“State-sponsored APT actors target critical infrastructure for political and/or military purposes, such as destabilizing political or economic landscapes or causing psychological or social impacts on a population,” according to the alert issued on September 22. . “The cyber-actor selects the target and the desired effect – to disrupt, disable, deny, deceive and/or destroy – based on those objectives.”
Awareness of this growing threat is essential. “Owners and operators of these systems must fully understand the threats coming from state-sponsored actors and cybercriminals to better defend against them,” said NSA control systems defense expert Michael Dransfield. about the new cybersecurity notice. malicious actors’ playbook so that we can harden our systems and prevent their next attempt.