Rampant Cyber Attacks: The Growing Threat to Western Countries’ ICS Computers

ICS Computers in Western Countries See Increasing Attacks: Report

A recent report from cybersecurity firm Kaspersky has revealed that industrial control system (ICS) computers in Western countries are experiencing an increase in cyberattacks. While the percentage of attacks is still relatively small compared to other regions, the upward trend is concerning.

Increase in Attacks

The report states that in the first half of 2023, Kaspersky blocked threats on 34% of the ICS computers protected by its products. This marks the highest quarterly level since 2019. The data collected by Kaspersky includes various industrial systems, such as SCADA servers, historians, OPC systems, engineering and operator workstations, HMIs, and computers used to manage industrial networks.

Western Europe, the US and Canada, Australia and New Zealand, and Northern Europe saw the highest increase in attack percentages in the first half of the year. This is interesting because these regions historically have had the lowest percentages of ICS devices on which malicious elements were blocked.

The biggest increase in attacks was observed in Western Europe, where the percentage of attacked ICS devices rose from 14.2% in the second half of 2022 to 18.8% in the first half of 2023. However, it is crucial to note that Western countries still have the lowest attack percentages compared to other regions.

Denylisted Internet Resources

The report also highlights that the category of “denylisted internet resources” saw growth in the first half of the year. Denylisted internet resources include email addresses sending spam, malicious websites, and potentially malicious apps that users may try to download.

Kaspersky explains that blocked denylisted internet resources, malicious scripts, and phishing pages were the primary contributors to the increase in attacks in the historically safer regions. Prior to 2022, denylisted internet resources had topped the list of threat categories, but in recent years, malicious scripts and phishing pages have taken the lead.

Analysis and Implications

The rise in attacks on ICS computers in Western countries brings about several important implications. Firstly, it suggests that cybercriminals are stepping up their efforts to target critical infrastructures in these regions. This poses a significant security risk as disruption to ICS systems can have severe consequences, ranging from economic losses to potential harm to public safety.

Secondly, the fact that Western countries still have relatively lower attack percentages compared to other regions could be attributed to stronger cybersecurity measures and advanced defense mechanisms. However, as cyber threats continue to evolve, it is essential for organizations to remain vigilant and continue investing in robust security systems.

Ensuring Cybersecurity in the Western World

Given the increasing cyber threats faced by Western countries, it is crucial for organizations and governments to prioritize cybersecurity measures. This includes implementing strong access controls, conducting regular cybersecurity audits, and educating employees about best practices for online security.

Furthermore, collaboration between government agencies, private sector organizations, and international cybersecurity bodies is vital to establish a coordinated approach to cyber defense. Sharing threat intelligence and best practices can help strengthen defenses and protect critical infrastructure from sophisticated attacks.

Conclusion

The rise in cyberattacks on ICS computers in Western countries is a concerning trend. While the percentages of attacks are still relatively low compared to other regions, the increase highlights the need for continued vigilance and investment in cybersecurity. Protecting critical infrastructure should be a top priority for organizations and governments, and collaborative efforts are necessary to stay one step ahead of cybercriminals.