Critical infrastructure remains at risk: Kaspersky

The Die Hard 4 scenario, where critical infrastructure is taken over by gangs of cyber criminals is a very real possibility

Tags: Kaspersky Lab
  • E-Mail
Critical infrastructure remains at risk: Kaspersky Eugene Kaspersky says that enterprises should pull out all the stops on IT security measures.
By  Georgina Enzer Published  June 13, 2013

Though industrial IT systems and typical office computer networks might seem similar in many ways, they are actually quite different, especially in terms of the priorities they set between security and usability. For companies, data confidentiality is of paramount importance, and system administrators are encouraged to isolate infected systems from non-infected systems to that end, among other things.

“With industrial systems, isolating infected systems is out of the question since for them of paramount importance is uninterrupted operation, constant temperature, constant humidity, etc, no matter what.

And this is true of any industrial system in the world. Security lags way behind in terms of priorities. What compounds this security downgrade is the fact that software at industrial or infrastructural installations is only updated after a thorough check for fault-tolerance so as to be 100% certain not to interrupt the working processes,” explains Kaspersky.

Manufacturers of specialised software are not all that interested in constant source code analysis and patching holes, according to Kaspersky Lab, as experience has shown, corners (costs) are normally cut on this kind of activity, and patches are released only if a particular exploit has been found and published on the internet.

This is also true for consumer software, not just specialised software; but when it’s true for critical systems/infrastructure. The risks thereof are just so much higher.

Kaspersky says that it is almost impossible to protect ourselves from state sponsored cyber attacks and attacks on industrial systems today.

Add a Comment

Your display name This field is mandatory

Your e-mail address This field is mandatory (Your e-mail address won't be published)

Security code