Cyber hackers could take over critical infrastructure and bring enormous attacks
Kaspersky Lab held a multi-city press conference focusing on Kaspersky Industrial Cybersecurity Solutions (KICS). KICS is a specialized protection for industrial control systems. The company brought together its senior team of experts to share their views at the gathering. Present on the occasion were Mr. Vicente Diaz, Principal Security Researcher, Kaspersky Lab Global Research & Analysis Team, Vikram Kalkat, Senior Key Account Manager, Kaspersky Industrial Cyber Security Global Business Development, APAC Region and Mr. Altaf Halde, Managing Director, Kaspersky Lab - South Asia. A number of critical issues were discussed during the consecutive events organized at ITC Grand Central in Mumbai and Le Meridien in New Delhi.
In addition to malware and targeted attacks, industrial organizations face a number of threats and risks targeting people, process and technology. As we’ve seen in the past, underestimation of these risks could have serious consequences. Kaspersky Lab has developed a comprehensive portfolio of technologies, solutions and services to help our customers tackle and manage many of these risks. Only cyber security companies that understand the differences between industrial systems and standard, business-oriented enterprises are able to deliver security solutions that meet the unique needs of industrial control systems and industrial infrastructure owners.
In his opening remarks, Vicente Diaz, Principal Security Researcher, Kaspersky Lab Global Research & Analysis Team said, “In the current APT landscape, India is realizing that they need to keep up with new technologies and best practices in cybersecurity, as there are many cyber criminals and nation-sponsored attacks targeting both companies and governmental organisations perceived as ‘low hanging fruit’ in the eyes of the attackers.”
In his welcome address, Vikram Kalkat, Senior Key Account Manager, Kaspersky Industrial Cyber Security Global Business Development, APAC Region said, “Operation technology of critical infrastructures should focus on infrastructure availability of automated systems rather than only data confidentiality. On top of that, in these cases business risks should be addressed by the CEO or CFO of a company rather than a CIO.”
Some of the key highlights of the discussions are as follows:
Global and Local Cyber threats overview
- According to KSN data, Kaspersky Lab solutions detected and repelled 171,802,109 malicious attacks from online resources located in 190 countries all over the world
- 45,169,524 unique URLs were recognized as malicious by web antivirus components
- Kaspersky Lab’s web antivirus detected 12,657,673 unique malicious objects: scripts, exploits, executable files, etc
- Attempted infections by malware that aims to steal money via online access to bank accounts were registered on 1,198,264 user computers
- Crypto ransomware attacks were blocked on 821,865 computers of unique users
- Kaspersky Lab’s file antivirus detected a total of 116,469,744 unique malicious and potentially unwanted objects
- Kaspersky Lab mobile security products detected:
- 1,520,931 malicious installation packages
- 30,167 mobile banker Trojans (installation packages)
- 37,150 mobile ransomware Trojans (installation packages).
Cyber security culture in an ICS/SCADA environment
- The modern ICS network infrastructure is insecure by design. It has a long utilization cycle of 15 years or more. Modern cyber security threats are sophisticated, causing catastrophic damage when penetrating ICS networks.
- Energy, oil and gas, and critical manufacturing industries are most affected by cyber security threats.
- We learnt from a cyber security incident in the Ukraine that a mediocre phishing attack, which started in spring of 2015, ended up with about 200,000 customers losing power for hours, disabling SCADA automation for weeks.
Critical infrastructure: a role model to protect normal businesses?
- The most important part for every Organization towards security, is the need to have the right attitude. When you know that the wrong software update can cause so much damage and losses of thousands of rupees per minute, you have to alter your approach.
- Traditional IT is usually more relaxed, although it is possible to lose anything from $66K (SMBs) to $1,4M (enterprises) due to downtime from a security incident. Given this, adopting a ‘critical’ attitude when thinking about IT security seems to be a wise choice.