When it comes to cyber threats, some industries have it harder than others. Few are as heavily targeted by sophisticated cyberattacks as the energy sector.
Over the last decade, state-sponsored hacking groups have routinely targeted utility networks and other energy providers for the purposes of espionage and disruption. And according to the latest research, advanced persistent threat (APT) group attacks against critical infrastructure are still going strong.
Outages are merely annoying for many industries, but in the energy sector — which provides power to millions of household customers, public services, military functions, hospitals, and others — service outages are much more critical. Securing companies in the energy sector is growing more difficult with each passing year.
Energy companies have extremely large and complex network environments and are increasingly employing connected internet of things (IoT), operational technology (OT), and industrial control system (ICS) devices to improve efficiency and unlock new business models. An unfortunate side effect of this innovation is the effect it has on security — more connected devices mean a larger attack surface with more entry points.
Source: Recorded Future