A new report by the Security Incidents Organization has revealed that manufacturing and infrastructure security worldwide continues to be vulnerable to malware and cyber attack.
John Cusimano, executive director of SIO, said the “Report on Cyber Security Incidents and Trends Affecting Industrial Control Systems Resulting from Malware Infections” details the continuing web hazards and how the threat to SCADA systems “has become even more complicated and mature.”
The report documents 60 incidents that occurred between 1999 and 2010, involving lost time, destruction of property and even fatalities.
“Real stuff has happened,” said Walt Boyes, RISI advisory board member and fellow of the International Society of Automation. “This is not Y2K. When you have a continuing series of incidents that have produced deaths and injuries, it is time to pay attention on a corporate management level.”
Eric Byres, security expert and CTO of Byres Security Inc., echoed Boyes’ sentiments, saying every new worm, virus or hack evolves from one day to the other.
“The bad guys learn from their successes and mistakes so they can build scarier, more effective attacks,” he said. As ICS professionals we have to learn as well, or we will be left far behind. We need to study what has gone wrong in the past so we don’t repeat that mistake again in the future. The RISI reports are designed to help us do that.”