The latest report on the State of Operational Technology and Cybersecurity, published by Fortinet Inc., has unveiled concerning trends in the operational technology (OT) realm. According to the report, OT organizations are confronting an escalating number of cyberattacks targeting their systems, which has serious implications for the security and stability of these critical systems.
Released in mid-June, the report sheds light on the current state of OT security and offers insights into best practices that organizations can adopt to mitigate these risks. While there has been some progress in improving OT security, the report highlights several areas that require urgent attention.
One of the most worrying findings of the report is the surge in cyberattacks compromising OT systems. In the past year, the number of organizations impacted by such intrusions has significantly risen. In 2023, 49% of respondents experienced an intrusion, whereas this year, that number has escalated to 73%. This presents a troubling trend that necessitates immediate addressal.
Additionally, the report also reveals a rise in the number of intrusions experienced by organizations. Phishing and compromised business email intrusions were the most common, and the utilization of mobile security breaches and web compromise techniques has also been increasing.
Moreover, the report highlights that detection methods have not kept pace with the evolving threat landscape. Many organizations still have blind spots in their security environment, making them vulnerable to sophisticated cyber threats. This is a significant concern, given the rise in ransomware and wiper intrusions experienced by organizations.
To tackle these challenges, the report offers actionable steps that organizations can implement to bolster their security posture. These steps include deploying segmentation, establishing visibility and compensating controls for OT assets, integrating OT into security operations, embracing OT-specific threat intelligence, and considering a platform approach to overall security architecture.
John Maddison, the chief marketing officer at Fortinet, has stressed the significance of embracing essential tools and capabilities to enhance visibility and protection across the entire network. According to Maddison, this is crucial for organizations to reduce the mean time to detection and response, ultimately decreasing the overall risk of these environments.
Aside from these findings, the report also underscores Fortinet’s commitment to secure product development and responsible disclosure processes. The company has pledged to CISA’s Secure by Design pledge, showcasing its dedication to the safety and security of its customers.
Furthermore, Fortinet has expanded its global SASE Points-of-Presence (POPs) through a partnership with Google Cloud and has also entered into an MoU with Samsung Heavy Industries for cooperation in the maritime cybersecurity of ships. These initiatives demonstrate Fortinet’s continuous commitment to driving the convergence of networking and security and addressing the evolving cyber threats faced by organizations.
In conclusion, the State of Operational Technology and Cybersecurity report by Fortinet highlights the growing threats facing OT organizations and provides valuable insights into how these risks can be mitigated. By adopting the recommended best practices, organizations can enhance their security posture and protect their critical systems from cyber threats.