Tripwire Study: IT security professionals expect an increase in IIoT cybersecurity attacks
March 17, 2017 – Tripwire, a provider of security and compliance solutions for enterprises and industrial organizations, announced the results of a study conducted in partnership with Dimensional Research. The study looked at the rise of Industrial Internet of Things (IIoT) deployment in organizations, and to what extent it is expected to cause security problems in 2017.
IIoT are the connected devices in critical infrastructure segments such as energy, utilities, government, healthcare and finance. Tripwire’s study revealed that:
- Ninety-six percent of those surveyed expect to see an increase in security attacks on IIoT in 2017.
- Fifty-one percent said they do not feel prepared for security attacks that abuse, exploit or maliciously leverage insecure IIoT devices.
- Sixty-four percent said they already recognize the need to protect against IIoT attacks, as they continue to gain popularity among hackers.
“Industry professionals know that the Industrial Internet of Things security is a problem today. More than half of the respondents said they don’t feel prepared to detect and stop cyber attacks against IIoT,” said David Meltzer, chief technology officer at Tripwire. “There are only two ways this scenario plays out: Either we change our level of preparation or we experience the realization of these risks. The reality is that cyber attacks in the industrial space can have significant consequences in terms of safety and the availability of critical operations.”
“As Industrial companies pursue IIoT, it’s important to understand the new threats that can impact critical operations. Greater connectivity with operational technology (OT) exposes operational teams to the types of attacks that IT teams are used to seeing, but with even higher stakes,” said Robert Westervelt, security research manager at IDC. “The concern for a cyber attack is no longer focused on loss of data, but safety and availability. Consider an energy utility as an example - cyber attacks could disrupt power supply for communities and potentially have impact to life and safety.”
The study’s respondents were also asked how they expect their organizations’ deployment of IIoT devices to change, and how it will affect their level of vulnerability. Tripwire found that:
- Ninety percent expect IIoT deployment to increase.
- Ninety-four percent expect IIoT to increase risk and vulnerability in their organizations.
- When respondents were broken down by company size, both larger companies (96 percent) and smaller companies (93 percent) expect a significant increase in risk caused by the use of IIoT.
Meltzer continued: “The Industrial Internet of Things ultimately delivers value to organizations, and that’s why we’re seeing an increase in deployments. Security can’t be an industry of ‘no’ in the face of innovation, and businesses can’t be effective without addressing risks. The apparent contradiction of known risks and continued deployment demonstrates that security and operations need to coordinate on these issues. While IIoT may bring new challenges and risks, the fundamentals of security still apply. Organizations don’t need to find new security controls, rather they need to figure out how to apply security best practices in new environments.”
About the study
This study was commissioned by Tripwire and carried out by Dimensional Research in January 2017. A total of 403 qualified participants completed the survey. All participants had responsibility for IT security as a significant part of their job and worked at companies with more than 1,000 employees. Survey respondents were based in the United States (278), the United Kingdom (44), Canada (28) and Europe (53).
- Posted in:
- Related Portals:
- Advancing Automation using IIoT and Industry 4.0 Concepts, Cyber Security, Power & Energy
MORE INDUSTRY NEWS
ISA and Automation Federation expert Steve Mustard to present at Advanced Design and...
Mustard is featured in an online article—posted by PLASTICSTODAY—that promotes the presentation he will be giving next week at the Advanced...
On Robot to announce expansion into US market at Automate 2017
Officially launching to the North American market at Automate 2017 in April, On Robot’s two-finger RG2 grippers—available in both single and...
Helukabel announces completion of expanded German production plant
One of the project’s objectives was to consolidate global R&D activities into one location. The engineering center houses additional test and...
EU Horizon 2020 launches RobMoSys robotics software project
RobMoSys (Composable Models and Software for Robotics) is an €8 million Innovation Action involving 9 partners from 5 countries and will be...
SME Education Foundation partners with NASA Hunch to advance high school manufacturing education
This new collaboration is designed to attract and introduce more high school students to career opportunities in the industry and prepare them to...
Micro-Epsilon's displacement measurement sensors to be used in European telescope project
The European Southern Observatory based in Garching, Germany, is relying on displacement measurement systems from Micro-Epsilon for a project to...
Seeq to present with Bristol Myers Squibb and Devon Energy at OSIsoft User Conference
The presentations will speak of the benefits Seeq customers are realizing in the oil & gas, pharmaceutical, chemical, energy, mining, food and...
Insights on Digital Transformation
The reality is total adoption of IIoT is a ways off and users today need to start the digital transformation for their enterprise...
Rockwell Automation to showcase smart packaging, recognize Best Future Machines at interpack 2017
At interpack 2017, May 4 to 10 in Düsseldorf, Germany, visitors to the Rockwell Automation stand (hall 6/stand A61) will see the next generation...
CIA Exploits of IoT Devices: What lessons can we learn?
By Alan Grau, Icon Labs
Recent WikiLeak documents allege that the CIA developed, or sought to develop, or even “borrowed”, cyberattack...