- Last Typhoon of Volt’s attack discovery raises concerns about OT’s security culture
- The role of artificial intelligence in attacks continues to worry cybersecurity leaders
- OT vulnerable servers leave SMEs and companies open to ransomware attacks and IP theft
Volt Typhoon, a group of threats with links to China, had access to the operational network (OT) of the Massachusetts electricity and electric water departments for ten months in 2023.
The intrusion lasted from February to November 2023, however, Dragos security researchers, who discovered it, moved quickly once it was known; Identify group activities on the server and contain the threat without the client data being compromised.
OT networks, especially with regard to critical national infrastructure (CNI), it is important that it is blocked. Infosecurity informed about Donovan Tindill, director of Cybersecurity of Denexus, explaining that the servers of small companies exposed of this type allow the theft of intellectual property, the mapping of grid structures of public services and that the data are used in ransomware attacks.
Keep up of the cybersecurity of OT
Experts have been evaluating the implications of the attack. Tim Mackey, head of the Risk Strategy of the Black Duck software supply chain, said that “one of the greatest challenges with cybersecurity in critical infrastructure is the long useful life of the devices. Something that was designed and tested with the best practices available when it was released can become easily vulnerable to attacks using more sophisticated attacks later in their life cycle. “
Nathaniel Jones, Vice President of Darktrace’s threat research, added that the impact of AI tools on attacks against CNI was a “continuous and growing concern” for those who defend the OT networks.
AGNIDIPTA SARKAR, Vice President of CISO ADVISOR OF COLOROKENS, warned that the attacks were increasing, but were also incorrectly treated by defenders and leaders of the OT. “Unfortunately,” they said, “cyber leadership focuses on stopping attacks instead of stopping the proliferation of attacks.”
In the event that it has been lost, Techradar Pro reported that the complexity of IT systems could be increasing security risks for companies, and a recent adaptist report revealed that 40% of IT leaders are afraid to admit errors due to a work culture of fear.
Through infosecurity
