Security Incidents Organization publishes report on Control System Malware Incidents

  • March 02, 2011
  • News

March 2, 2011 - The Security Incidents Organization released its 2011 edition of the Repository of Industrial Security Incidents (RISI) annual "Report on Cyber Security Incidents and Trends Affecting Industrial Control Systems Resulting from Malware Infections."   John Cusimano, executive director of the Security Incidents Organization (SIO) said, "This report shows the details of the continuing threats to manufacturing and infrastructure security around the world. As the Stuxnet malware showed in 2010, the threat continues and has become even more complicated and mature."   The report documents 60 incidents that have taken place between 1999 and 2010 that involved lost time, destruction of property and even fatalities. "Real stuff has happened," said Walt Boyes, RISI advisory board member and Fellow of the International Society of Automation, "This is not Y2K. When you have a continuing series of incidents that have produced deaths and injuries, it is time to pay attention on a corporate management level."   "Every new worm, virus or hack is an evolution on one from the day before," said Eric Byres, internationally known security expert and Chief Technology Officer of Byres Security Inc. "The bad guys learn from their successes and mistakes so they can build scarier, more effective attacks. As ICS professionals we have to learn as well, or we will be left far behind. We need to study what has gone wrong in the past so we don't repeat that mistake again in the future. The RISI reports are designed to help us do that."

The report is available from the Security Incidents Organization at or by calling + 1 (267) 354-0399. Information on how to report an incident is also available there.


Learn More

Did you enjoy this great article?

Check out our free e-newsletters to read more great articles..