Today, Nozomi Networks Labs released its new security research report featuring trends analysis of public OT/IoT cybersecurity incidents over the past six months, as well as real-world telemetry data from Nozomi Networks deployments. The report focuses on findings based on ICS vulnerabilities, data from IoT honeypots, and attack statistics from OT environments. This blog reveals a snapshot of the overall report.
Threat Landscape Trends
There are three main categories of OT/IoT cyber incidents: opportunistic, targeted, and accidental. A review of publicly-disclosed attacks over the past six months finds opportunistic attacks remain the most prevalent and continue to flood traffic via DDOS attempts, enumerate common weaknesses and vulnerabilities for initial access, and trial and error malware strains regardless of network domains and target systems.
Targeted attacks continue to tailor exploitation to a specific, well-researched victim organization, location, or both. Threat actors are also continuing to pursue living off the land techniques to evade security and extend their reconnaissance efforts to increase the severity of potential exploitation, disruption, and/or damage. Finally, accidental impacts – human error or attacks slipping out of scope to impact OT and IoT – though not always publicly reported, are still fairly common and will become more costly as interoperability continues to drive organizational missions and business decisions...Read More!
