Home     >     Technology     >    

Trend Micro Warns of Ransomware Targeting Industrial Control Systems

HONG KONG SAR -  - 5 July 2021 - Trend Micro Incorporated (TYO: 4704; TSE: 4704), a global cybersecurity leader, today released a new report highlighting the growing risk of downtime and sensitive data theft from ransomware attacks aimed at industrial facilities.


Click here to read a full copy of the report, 2020 Report on Threats Affecting ICS Endpointshttps://www.trendmicro.com/vinfo/hk/security/news/internet-of-things/2020-report-ics-endpoints-as-starting-points-for-threats --> 


"Industrial Control Systems are incredibly challenging to secure, leaving plenty of gaps in protection that threat actors are clearly exploiting with growing determination," said Ryan Flores, senior manager of forward-looking threat research for Trend Micro. "Given the US government is now treating ransomware attacks -->with the same gravity as terrorism, we hope our latest research will help industrial plant owners to prioritize and refocus their security efforts."


Industrial Control Systems (ICS) are a crucial element of utility plants, factories and other facilities—where they're used to monitor and control industrial processes across IT-OT networks.


If ransomware finds its way onto these systems, it could knock out operations for days and increase the risk of designs, programs, and other sensitive documents finding their way onto the dark web.


Trend Micro's report found that Ryuk (20%), Nefilim (14.6%), Sodinokibi (13.5%) and LockBit (10.4%) variants accounted for more than half of ICS ransomware infections in 2020.


The report also revealed:

  • Threat actors are infecting ICS endpoints to mine for cryptocurrency using unpatched operating systems still vulnerable to EternalBlue.
  • Variants of Conficker are spreading on ICS endpoints running newer operating systems by brute-forcing admin shares.
  • Legacy malware such as Autorun, Gamarue and Palevo are still widespread in IT/OT networks, spreading via removable drives.


The report urged closer cooperation between IT security and OT teams to identify key systems and dependencies such as OS compatibility and up-time requirements, with a view to developing more effective security strategies.

Trend Micro makes the following recommendations:

  • Prompt patching is vital. If this is not possible, consider network segmentation or virtual patching from vendors like Trend Micro.
  • Tackle post-intrusion ransomware by mitigating the root causes of infection via application control software, and threat detection and response tools to sweep networks for IoCs.
  • Restrict network shares and enforce strong username/password combinations to prevent unauthorized access through credential brute forcing.
  • Use an IDS or IPS to baseline normal network behavior to better spot suspicious activity.
  • Scan ICS endpoints in air-gapped environments using standalone tools.
  • Set up USB malware scanning kiosks to check the removable drives used to transfer data between air-gapped endpoints.
  • Apply principle of least privilege to OT network admins and operators.

 

  • Media Contact
  • Trend Micro
Information contained on this page is provided by an independent third-party content provider.This Site make no warranties or representations in connection therewith.If you are affiliated with this page and would like it removed it please contact service@ceapress.com
Related tags: Technology
Recommend

BYD Rolls Off Its 3 Millionth New Energy Vehicle and Debuts A New Passenger Car Brand Matrix

2022-11-16 23:18:00

BYD's acceleration on promoting New Energy Vehicles. From the first new energy vehicle to the 1 millionth new energy vehicle in 13 years and from 1 million to 2 million in just 1 year and from 2 million to 3 million in just 6 months, BYD is actively promoting NEVs. "To reassure our customers about safety, we have made it a mission that we will carry to the end". In addition to the Blade Battery and CTB technology, BYD will also launch another safe and novel pioneering technology which will be equipped for the first time on the new model of its high-end brand, the Yangwang brand. BYD Auto will build up its brand matrix with five brands. These five brands are Dynasty, Ocean, Denza, Yangwang, and a new brand that specializes in professional and personalized identities. BYD operates globally. As a global seeker of talent, BYD acquires its talents worldwide. In terms of operation, BYD has extended its new energy vehicle footprint to over 400 cities across 70 countries and regions on 6 continents. In particular, BYD's new energy passenger cars have entered Norway, Germany, Japan, Thailand, Brazil, and other markets in the world. In the future, BYD's new energy passenger cars will enter more markets and will be manufactured as well as sold globally.

Trina Solar defines the aesthetic black product by high tech, delivering new Vertex S modules globally

2022-11-01 23:02:00

Trina Solar's Vertex S Aesthetic Module, an upgraded product highly anticipated by global customers, has arrived in Europe, Australia, Japan and other markets recently. It is the first solar PV module to win the Red Dot Award and is turning heads because of its efficient and reliable performance and an outstanding design and visual appearance, making it a favorite among distributed solar rooftops in global markets.

Hikvision released the evolutionary eDVR Series with eSSD technology

2022-10-12 00:00:00

October 12, 2022 – Hikvision recently added the eDVR Series into its expanding portfolio of security solutions for SMBs. Powered by embedded solid state drive technology, Hikvision's eDVRs are compact, durable, easy-to-use, and energy-efficient. All this means they are ideal for small-to-medium-sized businesses and residential applications.

Xiaomi Partners with National Geographic Magazine China Inspring Global Youth to Rediscover Life's Wonders

2022-10-04 00:00:00

Following the footsteps of Out of Eden Walk Paul Salopek Harnessing Xiaomi technology to inspire curiosity in their world

XPENG Receives Third Consecutive MSCI ESG Rating of AA Achieves Industry-leading DJSI Scores

2022-10-03 11:00:00

Dedication to EV technology innovation brings remarkable growth potential

OPPO Wins Impact Award and Innovation Award on Consumer Tech at BEYOND Expo 2022

2022-09-26 00:00:00

OPPO was awarded the Impact Award and Consumer Tech Innovation Award at BEYOND Expo 2022 yesterday for its achievements in sustainability and SUPERVOOC Flash Charge technology.