Industrial control systems are increasingly becoming targets of cyber threats, with malware found on USB storage devices used to transfer files within and between industrial facilities being a growing concern. A report by Honeywell highlights the need for operational technology (OT) environments to enhance their cybersecurity measures as the frequency and sophistication of attacks on industrial sites continue to rise.
Cyberattackers are becoming more adept at understanding the operations of industrial environments, using USB devices to surreptitiously infiltrate industrial control systems and observe operations before launching attacks that exploit the system’s inherent capabilities. This trend has led to an increase in malware specifically targeting systems within industrial facilities, with 31% of malware attacks aimed at such systems and sites – a figure that has steadily risen since 2016 when only 16% of malware attacks were industrial-focused.
The impact of malware on OT environments can be severe, leading to the loss of visibility, loss of control, or system outages that can significantly disrupt industrial operations. Honeywell’s research indicates that 82% of malware has the potential to disrupt industrial operations by either compromising visibility or control. Additionally, the report notes a significant increase in the use of removable media, particularly USBs, in targeted attack campaigns – with over half (51%) of malware attacks designed for USB devices, representing a nearly six-fold increase from the 9% reported in the 2019 edition of the report.
