New research has found external attackers could access 91% of industrial business’ corporate network

Study Reveals High Cybersecurity Risk for Industrial Companies

Recent research conducted by Positive Technologies has found that 91% of industrial companies are susceptible to cyberattacks, making them one of the most at-risk sectors in 2020. This vulnerability allows external attackers potential access to their corporate networks.

Vulnerabilities in Industrial Control Systems

The study highlights a concerning possibility for cybercriminals to penetrate industrial control system (ICS) networks at 75% of these companies. Gaining this access could lead to severe consequences, including halting production lines, causing equipment malfunctions, or instigating dangerous incidents.

Cybersecurity Deficiencies Identified

Olga Zinenko, a senior analyst at Positive Technologies, commented on the findings: “Today, the level of cybersecurity at most industrial companies is too low for comfort. Internet-accessible external network perimeters typically show weak protection, flaws in device configurations, and inadequate ICS network security. Commonly observed issues include the use of dictionary passwords and outdated software versions.”

Consequences of Network Breach

The report further reveals that once attackers infiltrate the internal network, they can compromise user credentials and assume complete control over the infrastructure in all observed cases. Additionally, at 69% of these companies, attackers could access sensitive data such as details about partners and employees, email exchanges, and internal documents. More alarmingly, at 75% of the surveyed industrial companies, testers could reach the technological segment of the network, and in 56% of cases, they could interact directly with operational industrial control systems.

Motivations Behind Targeting Industrial Sectors

Industrial firms are attractive targets due to their substantial size, the critical nature of their business processes, and their significant impact on the economy and public safety. The primary threats to these companies include espionage and potential financial losses.

This comprehensive research underscores the urgent need for industrial sectors to enhance their cybersecurity measures to protect against external threats and safeguard their critical operations.

For further details, the complete research can be accessed on the Positive Technologies site.