Perfection in Protection, Licensing, and Security

{{ moduleLabel }}
{{ label }}

Cyber-Security 4.0

WIBU-SYSTEMS AG
Marketing WIBU-SYSTEMS AG on September 28, 2018 at 11:19 AM

Much has been written about the unbridled optimism brought on by the so called 4th Industrial Revolution (a.k.a. Industry 4.0) and the unprecedented cyber-related risks facing manufacturers given the increasing digitization of industry. The story was reported once again as a result of a recent survey conducted by EEF, a trade organization representing the manufacturing and engineering sectors in the UK and the EU, in partnership with AIG and conducted by The Royal United Services Institute (RUSI).

According to the report, nearly half of manufacturers surveyed have been victims of cyber-crime, with the manufacturing sector now being the third most targeted for attack after the government and financial sectors. The report revealed that 41% of companies do not believe they have access to enough information to even assess their true cyber risk, and 45% feel that they do not have access to the right tools for the job.  Furthermore, 12% of manufacturers admitted that they have no technical or managerial processes in place to even start assessing the true risks.

Manufacturing is considered to be an attractive target as there are vulnerabilities in both operating systems and industrial control systems that can be easily exploited. The report cited two well publicized breaches where production systems were infiltrated and severely disrupted after hackers gained access to their IT systems via unprotected office software.

The first incident cited occurred in August 2017, when a petrochemical manufacturer in Saudi Arabia was infected with malware that investigators believe was not simply designed to steal data or shut down operations but potentially to cause a catastrophic explosion. The attacker targeted operational technology in the form of industrial control systems rather than the more traditional focus on information technology. The malware overrided the facility’s safety system that was designed to stop automated equipment from going beyond safe operating conditions. The attack was not intercepted by the existing cyber security measures and failed only because the developers of the malware had made an error in the code that caused the systems to simply shut down safely.

The second representative incident occurred in late 2014 when an attacker used sophisticated social engineering and spear-phishing tactics to hack into a German steel mill’s office computer network. Attackers took control of production software and made it impossible to turn off a blast furnace, resulting in massive damage to the foundry. The attacker, who is believed to be an industry insider or someone working with an insider, had specific knowledge of the production processes involved so that maximum damage could be done to the mill. The company’s systems were specifically vulnerable because the office network was connected to the industrial control system, allowing the attackers to effectively take control of production.

Statistics brought forth in EEF’s report, like many others before it, continue to raise awareness of vulnerabilities inherent in the Internet-connect Industry 4.0 environment and the need for manufacturers to put cyber-security measures in place.

An interesting side-note in the report was the recognition that stakeholders along the supply chain as well as end users are becoming increasingly aware of cyber-risks as well. 59% of manufacturers reported that they have already been asked by a customer to demonstrate or guarantee the robustness of their cyber-security processes, and 58% have asked the same of a business within their own supply chain. Increasingly, the report notes that cyber-protection measures are becoming part of contractual arrangements. That doesn’t bode well for the 37% of manufacturers who reported that – as of today - they could not demonstrate good cyber-hygiene to arm themselves with the tools necessary to provide such assurances.

One of those tools, however, is readily available today. Wibu-Systems’ CodeMeter technology provides protective measures for software-driven industrial controllers. Manufacturing equipment, from entire plants to individual machines, rely on the use of individual or multiple integrated control systems, typically including a combination of both hardware and software that plant engineers use to program the desired application. You can learn more about these industrial controllers and mechanisms to protect them in our white paper, CodeMeter in the Automation Industry: A Win-Win Opportunity for Producers of Machinery and Control Systems.

Login or register now and enjoy all the benefits of a community!

To get the whole functionality of IndustryArena Forum you need to login or register. This process is absolutely free.

Password forgotten?
Contact request
Guest Photo
Your message
The controller within the meaning of Art. 4(7) GDPR is: IndustryArena GmbH, Katzbergstraße 3, 40764 Langenfeld, Germany.
You may reach our data protection officer under [email protected].

Purpose of processing
We process your personal data concerning the use of the contact form and the communication with the company of the newsroom as well as the transmission of your data to this company in accordance to Art. 6 (1a) GDPR. This constitutes a legitimate interest for us in accordance to Art. 6 (1f) GDPR.

Recipient of the data
Within our organization, those units gain access to your data, which are necessary to fulfil the above purposes.
Personal data will only be transmitted to third parties if this is necessary for the aforementioned purposes or if another legal basis exists. If necessary, we conclude the corresponding data protection agreements with third parties, in particular pursuant to Art. 28 GDPR.

Data storing
Your data will be transmitted to the company of the newsroom for further processing. The period of storing is the duration of the processing of your request by the respective company.

Select contact person

Newsroom Logo

Design options

  • Title text color:
  • Content background:
  • Content text color:
  • Navigation background:
  • Tab text color:
  • Active tab text color:
  • Link text color:
  • Active link text color:
  • Background image Background color:

    How do you want to position the background-image?

    Please note: Banners and skyscrapers are only saved for the current language. For other languages, change the language using the button at the top right.

    Set the link for the background image

  • Banner

    How do you like to align the banner?

    Please note: Banners and skyscrapers are only saved for the current language. For other languages, change the language using the button at the top right.

    Set the link for the banner

  • Skyscraper

    Set the link for the skyscraper

Please note:

Banners and skyscrapers are only saved for the current language. For other languages, change the language using the button at the top right.