The Leading News & Information Service For The Facilities, Workplace & Built Environment Community

Attack On Critical National Infrastructure Imminent

Image taken from InfoSecurity's State of Cybersecurity Report
19 March 2019 | Updated 22 March 2019
 

Over half of the respondents to a survey have said they believe an attack on critical national infrastructure is imminent.

Most respondents also think the convergence between physical and cyber environments is leaving businesses exposed.

59 per cent of respondents to the latest social media poll conducted by the organisers of the information security event - Infosecurity Europe 2019 - believe that an attack on the UK’s critical national infrastructure is likely this year. As more devices, systems and infrastructure are connected to the internet, the cyber and physical worlds are becoming increasingly linked, opening up new attack vectors.

According to Ciaran Martin, head of the UK's National Cyber Security Centre (NCSC), a major category one (C1) attack on our critical infrastructure – one that disrupts essential services or affects national security – is a matter of 'when, not if'.

 

Corporate lack of awareness

The responses to Infosecurity Europe’s poll also indicate that organisations in all sectors are not properly prepared to manage security effectively across both cyber and physical environments. Lack of collaboration and low levels of awareness of key legislation are the biggest problems.

Over two thirds (68%) of respondents say the security teams in charge of their physical and cyber infrastructures never collaborate. This disconnect leads to misaligned plans and conflicting priorities, while creating silos that make it difficult for chief information security officers to gain full visibility of controls and risks across both IT and OT (Operational Technology) environments.

 

From the horse's mouth

“Defending critical assets is a team sport,” Nigel Stanley, Chief Technology Officer and global head of OT cybersecurity at TÜV Rheinland told ThisWeekinFM. “IT, physical and OT teams need to get their act together and start to share and learn from each other.”

Kevin Fielder, Just Eat’s Chief Information Security Officer, agreed: “The increasing convergence of cyber and physical environments is inevitable. Managing them in a cohesive way will strengthen enterprise security.”

 

Internal risk and BMS

According to Fielder, it’s the insider threat that needs most urgent attention. “Those intent on accessing money, information or IP will often find it easier to do so from the inside – and we’re moving to a world where this can mean immediate impact to life. Hacking a building’s management systems, for example, could suppress a fire alarm or sprinkler system or prevent people leaving.”

 

NIS Directive

Only 16 per cent of respondents to the Infosecurity Europe poll were aware of the EU’s NIS Directive (issued in the UK by the National Cyber Security Centre) – which is designed to improve the security and resilience of network and information systems. The legislation, which was put in place in 2016, sets out security requirements that apply to all operators of essential services and digital service providers (DSPs). Failure to adhere to these could leave security gaps that present attackers with ‘open doors’ through which they can access infrastructure and physical assets. UK organisations found to be non-compliant can be fined up to £17 million.

To familiarise yourself with the NIS Directive - Click Here

https://www.ncsc.gov.uk/collection/nis-directive?curPage=/collection/nis-directive/introduction-to-the-nis-directive

 

Olympia, London, 4-6 June 2019

Victoria Windsor, Group Content Manager at Infosecurity Group, said: “The security challenges resulting from the convergence of physical and cyber environments will take centre stage at Infosecurity Europe 2019. Operational systems in every industry are being connected to corporate and cloud environments and the safe ‘air gap’ between IT and OT no longer exists. Cyber risk is now impacting the physical realm, and organisations must have effective management strategies in place."

The event will have over 400 exhibitors and 200 industry speakers are lined up to take part in the free-to-attend conference, seminar and workshop programme.

www.infosecurityeurope.com

Picture: Image taken from InfoSecurity's State of Cybersecurity Report.

Article written by Brian Shillibeer | Published 19 March 2019

Share



Related Articles

123456 - 23.2 Million Cyber Victims Used This Password

The most hacked passwords have been revealed as a UK cyber survey exposes gaps in online security with global breach analysis finding 23.2 million victims used 123456 as...

 Read Full Article
£17 Million Or 4% Of Turnover - Will Hacked Sodexo Face Crippling Fine?

Sodexo Engage has been hacked - seriously hacked - with the company having to advise users of one of its services to cancel their credit and debit cards as a...

 Read Full Article
From Russia With Loath - World Cyber War Happening

A joint US-UK statement has been made on malicious cyber activity carried out by the Russian government. The National Cyber Security Centre (NCSC), Federal Bureau of...

 Read Full Article
National Warning as Major Cyber Attack Detected

Third parties who manage large organisations’ IT services have been attacked by suspected cyber terrorists the government's  National Cyber Security Centre...

 Read Full Article
Office Occupancy Peaks as Schools Reopen

Office occupancy has reached its highest level since March 2020 in the first weeks of September. Using IoT sensors to track occupancy levels, new data released by...

 Read Full Article
Disruptive Technologies Named Property Tech Company Of The Year

Disruptive Technologies, the creator of the world’s smallest wireless sensors, has been named the Property Tech Company of the Year at the Global Business Tech...

 Read Full Article
Investment in Tech Will Help Landlords Save Money – And the Environment

Investment in technology will be essential to allow commercial property owners to reach UK 2050 net-zero emission goals, according to PropTech experts. The built...

 Read Full Article
FMs Must Embrace IoT to Make Efficiency Savings

Facilities managers that don’t embrace IoT will be left behind in the race to optimise services and make efficiency savings, warns Shields Energy. Over 30...

 Read Full Article
World Hand Hygiene Day – Only One in Five People Wash Their Hands Correctly

Research from a smart hand sanitiser technology company shows that just one in five people cleanse their hands correctly. Additionally, 33 per...

 Read Full Article
Is Cybersecurity a Home Working Health and Safety Issue?

Bureau Veritas is urging businesses who are remote working to prioritise cybersecurity as a health and safety risk. As Britain looks set to embrace a long-term shift...

 Read Full Article