PRESS RELEASE
Woburn, MA – January 31, 2024 — Kaspersky at this time releases its Industrial Management Methods Cyber Emergency Response Crew (ICS CERT) predictions for 2024, outlining the important thing cybersecurity challenges going through industrial enterprises within the yr forward. The predictions spotlight the persistence of ransomware threats, the rise of cosmopolitical hacktivism, an outlook on the state of “offensive cybersecurity”, and the transformative shifts in logistics and transport threats.
Wanting again at 2023, Kaspersky predicted the commercial cybersecurity panorama would proceed to evolve, with a number of key developments rising. The pursuit of effectivity in IIoT and SmartXXX programs fueled an expanded assault floor, whereas the surge in vitality provider costs led to heightened {hardware} prices prompting a strategic shift in the direction of cloud companies. The rising authorities involvement in industrial processes additionally launched recent dangers, together with considerations about information leaks attributable to underqualified workers and inadequate practices for accountable disclosure.
This retrospective evaluation lays the groundwork for understanding the cybersecurity panorama confronted by industrial enterprises in 2024, comparable to:
Ransomware focusing on high-value entities
Ransomware is projected to persist as the first concern for industrial enterprises in 2024. Giant organizations, distinctive product suppliers, and main logistics corporations face elevated dangers, with potential extreme financial and social penalties. Cybercriminals are anticipated to focus on entities able to substantial ransom funds, inflicting disruptions in manufacturing and supply.
Cosmopolitical protest hacktivism
Geopolitically motivated hacktivism is forecasted to accentuate, presenting extra harmful penalties. Along with country-specific protest actions, the rise of cosmopolitical hacktivism is predicted, pushed by socio-cultural and macro-economic agendas comparable to eco-hacktivism. This diversification of motives might contribute to a extra complicated and difficult menace panorama.
Subtler threats and detection challenges.
Using “offensive cybersecurity” for gathering cyberthreat intelligence is anticipated to have controversial penalties. Whereas it might enhance company safety by offering early indicators of potential compromises, the skinny line between the gray zone and the shadows could also be breached. Revenue-driven cyber actions, armed with business and open-source instruments may function extra discreetly making detection and investigation difficult.
Shifts in threats associated to logistics and transport linked to automation and digitization challenges
The speedy automation and digitization of logistics and transport are introducing new challenges, intertwining cyber and conventional crimes. This contains theft of automobiles and items, maritime piracy, and smuggling. Non-targeted cyberattacks might result in bodily penalties, particularly in river, sea, truck, and special-purpose automobiles.
“The commercial sector’s cybersecurity is repeatedly going by vital modifications, with each new sorts of assaults and extra subtle variations of previous ones,” mentioned Evgeny Goncharov, head of Kaspersky ICS CERT.“Ransomware assaults are nonetheless an enormous downside, and hackers are getting higher at focusing on massive, worthwhile corporations with extra superior strategies. Hacktivists who’re motivated by social points are additionally turning into extra energetic, including one other layer of complexity to the threats. The transportation and logistics trade is particularly weak to those modifications as a result of its programs have gotten an increasing number of digital. This mixture of cyber and conventional crime is a critical menace to world provide chains. To guard ourselves, we have to prioritize cybersecurity, keep away from paying ransoms, and maintain enhancing our defenses.”
Learn the total checklist of ICS predictions for 2024 at ICS CERT web site.
ICS predictions are a part of Kaspersky’s Vertical Menace Predictions for 2024, one of many segments of the Kaspersky Safety Bulletin, an annual collection of predictions and analytical experiences on key shifts within the cybersecurity world.
About Kaspersky
Kaspersky is a worldwide cybersecurity and digital privateness firm based in 1997. Kaspersky’s deep menace intelligence and safety experience is continually reworking into modern options and companies to guard companies, important infrastructure, governments and shoppers across the globe. The corporate’s complete safety portfolio contains main endpoint safety, specialised safety services, in addition to Cyber Immune options to combat subtle and evolving digital threats. Over 400 million customers are protected by Kaspersky applied sciences and we assist over 220,000 company purchasers shield what issues most to them. Study extra at www.kaspersky.com.
