Armis Identifies Riskiest OT and ICS Devices Across Critical Infrastructure Industries
전체 맥락을 이해하기 위해서는 본문 보기를 권장합니다.
"From an organizational perspective, having a risk-based approach to vulnerability management must go hand in hand with OT and IT departments working together to help coordinate mitigation efforts," continued Izrael. "Cross-departmental projects will help streamline process and resource management and achieve greater compliance and data security. Overall, to navigate the challenges of the new industrial era, security professionals need an IT/OT convergence security solution that shields all assets connected to the network."
Armis was recognized by ISG as an OT Security Leader for the 3rd consecutive year in the 2022 report "ISG Provider Manufacturing Security Services: OT Security Solutions".
이 글자크기로 변경됩니다.
(예시) 가장 빠른 뉴스가 있고 다양한 정보, 쌍방향 소통이 숨쉬는 다음뉴스를 만나보세요. 다음뉴스는 국내외 주요이슈와 실시간 속보, 문화생활 및 다양한 분야의 뉴스를 입체적으로 전달하고 있습니다.
SAN FRANCISCO -- Businesswire -- Armis, the leading asset visibility and security company, today released new research identifying the riskiest devices that pose threats to critical infrastructure industries: manufacturing, utilities and transportation. Data analyzed from the Armis Asset Intelligence and Security Platform, which tracks over three billion assets, found that the operational technology (OT) and industrial control systems (ICS) devices that present the highest risk to these industries are engineering workstations, SCADA servers, automation servers, historians and programmable logic controllers (PLCs).
Prioritization and vulnerability management remains an issue
Armis research found that engineering workstations are the OT device that received the most attempts of attack in the industry in the past two months, followed by SCADA servers. Fifty-six percent of engineering workstations have at least one unpatched critical severity Common Vulnerabilities and Exposures (CVEs) and 16% are susceptible to at least one weaponized CVE, published more than 18 months ago.
Uninterruptible Power Supplies (UPS) are the third device type that suffered the most attack attempts in the past two months. Although critical for continuity in an event of power outage, data showed that 60% of UPS devices have at least one unpatched critical severity CVE, which, as we saw with TLStorm, could potentially lead criminals to cause physical damage to the device itself or other assets connected to it.
Programmable Logic Controllers (PLCs) are another example, with 41% having at least one unpatched critical severity CVE. These legacy devices are of high importance as, if attacked, could lead to the disruption of central operations, but the research highlighted they can be susceptible to high risk factors such as end of support hardware and end of support firmware.
A set of additional devices represent risk to manufacturing, transportation and utilities environments as they have at least one weaponized CVE published before January 2022: 85% of barcode readers, 32% of industrial managed switches, 28% of IP cameras and 10% of printers.
OT industries are characterized by having multiple locations, multiple lines of production and complex distribution lines with a vast amount of both managed and unmanaged devices on their networks. In that context, understanding where risk comes from and remediation is needed presents a significant challenge and can be an obstacle to vulnerability management, posing an entry point for malicious actors.
“In an ICS environment it's pretty common to have vulnerable devices, so professionals need to see what assets are on their network and additional intelligence on what those devices are actually doing,” said Nadir Izrael CTO and Co-founder of Armis. “Contextual data will enable teams to define what risk each device poses to the OT environment so that they can prioritize remediation of critical and/or weaponized vulnerabilities to quickly reduce the attack surface.”
There is a need for collaboration between OT and IT teams
OT industries have significantly changed in the past years due to the convergence of OT and Information Technology (IT). This alignment is driving a new phase for the Industrial Era and will enable cross-domain collaboration but, in practice, unified management of both environments has yet to take place. With OT teams focused on maintaining industrial control systems, mitigating risks to OT and ensuring overall integrity within operational environments, more IT focused duties have been left aside.
Four out of the five riskiest devices notably run Windows operating systems, showcasing how a basic understanding of asset risk and securing vulnerable assets is still a challenge for IT and OT teams.
Armis looked at device types and found that many are more exposed to malicious activity because they are using the SMBv.1 protocol, end of support operating systems and many open ports. SMBv.1 is a legacy, unencrypted and complicated protocol with vulnerabilities that have been targeted in the infamous Wannacry and NotPetya attacks. Security experts previously advised organizations to stop using it completely, but the data shows it is still preeminent in the field.
“From an organizational perspective, having a risk-based approach to vulnerability management must go hand in hand with OT and IT departments working together to help coordinate mitigation efforts,” continued Izrael. “Cross-departmental projects will help streamline process and resource management and achieve greater compliance and data security. Overall, to navigate the challenges of the new industrial era, security professionals need an IT/OT convergence security solution that shields all assets connected to the network.”
The Armis Unified Asset Intelligence Platform discovers all connected assets, maps out the communications and relationships between them, and adds contextual intelligence to help understand their context and the risk they may introduce to the business. It is purpose-built to protect both OT and IT environments and can ingest meaningful signals from hundreds of IT and OT platforms. Armis’ cloud-based threat detection engine uses machine learning and artificial intelligence to detect when a device is operating outside of its normal “known good” baseline and triggers an automated response for an easier management of the overall attack surface.
Armis was recognized by ISG as an OT Security Leader for the 3rd consecutive year in the 2022 report “ISG Provider Manufacturing Security Services: OT Security Solutions”. And was named a Representative Vendor for the 3rd consecutive year in the Gartner “Market Guide for Operational Technology Security.”
To see how Armis stops threats and protects global organizations such as Colgate-Palmolive and Fortive, and helps utilities, transportation and leading manufacturers stay online 24/7, 365 days a year, please visit: https://www.armis.com
Methodology
Armis calculated device risk by looking at all devices on the Armis Asset Intelligence and Security Platform and identifying which types have the highest-severity risk factor and/or Common Vulnerabilities and Exposures (CVEs). Additionally, business impact level and endpoint protections had a weighted influence.
About Armis
Armis, the leading asset visibility and security company, provides the industry’s first unified asset intelligence platform designed to address the new extended attack surface that connected assets create. Fortune 100 companies trust our real-time and continuous protection to see with full context all managed, unmanaged assets across IT, cloud, IoT devices, medical devices (IoMT), operational technology (OT), industrial control systems (ICS), and 5G. Armis provides passive cyber asset management, risk management, and automated enforcement. Armis is a privately held company and headquartered in California.
View source version on businesswire.com: https://www.businesswire.com/news/home/20230612005040/en/
이 뉴스는 기업·기관·단체가 뉴스와이어를 통해 배포한 보도자료입니다.
출처:Armis
보도자료 통신사 뉴스와이어(www.newswire.co.kr) 배포
Copyright © 뉴스와이어. 무단전재 및 재배포 금지.
- 피치스 ‘포니’ 드리프트 카로 세계적 자동차 축제 ‘울트레이스 2024’ 우승 - 뉴스와이어
- KG 모빌리티, 포니 AI 및 포니링크와 자율주행 기술협력 MOU 체결 - 뉴스와이어
- 우주 시대 대비 ‘위성 공동활용’ 위해 수자원·국토·농업·산림 업무협력 - 뉴스와이어
- 덥고 습한 장마철엔 ‘맥주 프리’ 제주 루체빌 호텔, 여름맞이 맥주 무제한 패키지 론칭 - 뉴스
- 탄소중립기업경영지원재단, 국립공주대학교 충남중견기업지역혁신센터 ‘ESG 탄소중립 환경지
- 동원F&B, 역대 가장 매운 ‘동원 불참치’ 출시 - 뉴스와이어
- 김동명 LG에너지솔루션 CEO “자만심 버리고 겸손한 자세로 도전과 혁신의 DNA 되살리자” - 뉴스
- 케어스트림, 케어스트림 DRX-에볼루션 플러스 시스템 및 이미지뷰 소프트웨어의 새로운 개선사항
- 베트남 다낭서 세계적 수준의 여름 이벤트와 예술 공연 펼쳐져 - 뉴스와이어
- 한국양자협회-크라우드웍스-브이알엑스, 초중등 양자과학기술 교육훈련 방안 수립 및 기획 운영