Dragos works with the community to help vendors provide more accurate , actionable and easier-to-track advisories .
access solution , Ivanti Connect Secure . KOSTIVITE used dedicated operational relay infrastructure against this target to obfuscate the origin of its activities , then stole and used legitimate account credentials for its intrusion .
targets mining and energy operations in Kazakhstan . One targeted group has 16 business units that focus on mining and power generation throughout Kazakhstan . Dragos is aware of targeted operations that started during the third quarter of 2019 and intermittently continued throughout 2021 .
is an activity group that broadly targets organisations in the US and Canada with ongoing iterative malware campaigns . Dragos has observed ERYTHRITE compromising the OT environments of a Fortune 500 company and the IT networks of large electrical utility , food and beverage companies , auto manufacturers , IT service providers and multiple oil and natural gas service firms .
While the industrial community has discussed the importance of OT cybersecurity for years , 2021 brought high-profile attacks that showed realworld outcomes on local communities and global economies .
The cyber risk to industrial sectors is accelerating at a time of rising geopolitical tensions and Digital
Transformation initiatives driving hyperconnectivity . The real-world observations and data-backed insights can serve as practical , timely guidance as the industrial community strives to understand where they are exposed , what threat groups are doing and how to build security and resiliency into their OT systems .
How much of a threat is ransomware to ICT / OT ?
According to the Year in Review report , ransomware has become the number one attack vector in the industrial sector . Dragos assessed that manufacturing accounted for 65 % of all ransomware attacks . Two ransomware groups , Conti and Lockbit 2.0 , caused 51 % of attacks
52 www . intelligentciso . com