Control System Cyber Security
of the vulnerabilities published by the NVD can be exploited remotely , reinforcing the fact that fully air-gapped ICS networks that are isolated from cyber threats have become vastly uncommon .
Table 3 . Control System Threat Vectors
The potential for remote exploitation has been exacerbated by a rapid global shift to a remote workforce and the increased reliance on remote access to control system networks in response to the COVID-19 pandemic . The energy , critical manufacturing , and water & wastewater infrastructure sectors were by far the most impacted by vulnerabilities published in ICS-CERT advisories . Of the 385 unique Common Vulnerabilities and Exposures ( CVEs ) included , energy had 236 , critical manufacturing had 197 , and water & wastewater had 171 . The research team discovered 26 ICS vulnerabilities disclosed during the first half of 2020 , emphasizing critical or high-risk vulnerabilities that could affect the availability , reliability , and safety of operations .
121