Data theft from a UK military security fencing provider is a stark reminder the manufacturing sector is rife with aging, unsupported and vulnerable systems that can endanger the entire supply chain.
Using modified firmware, attackers would be able to turn the power on and off and remotely alter the waveform of and voltage of the electricity being supplied.
More than 20,000 data center infrastructure management systems, including UPS controllers, thermal and cooling management dashboards, transfer switches, and humidity controllers, are publicly exposed and could be exploited by threat actors in significant cyberattacks.
Threat actors could leverage operational technology data leaked from ransomware attacks against industrial and critical infrastructure organizations to perform cyber physical attacks that could result in property damage and even endanger lives.
An industrial control system cybersecurity initiative established by the Biden administration for the electric and pipeline industries will be expanded to include critical infrastructure entities in the water and wastewater sectors.
New CISA report on the manufacturing sector said while many companies may need to automate to offset worker shortages, they also need to invest in cybersecurity talent so they can more effectively manage the factories of the future.
