(MENAFN- Asdaf News)
According to the most recent OT/IoT security study from Nozomi Networks Labs, the Russia/Ukraine war, wiper malware, and IoT botnet activities all had a big impact on the threat landscape in 2022. As was the case in the first half of 2022, researchers from Nozomi Networks Labs have seen hacktivists change their strategies from data theft and Distributed Denial of Service (DDoS) attacks to more destructive malware in an effort to undermine critical infrastructure in order to advance their political agenda in the Russia/Ukraine conflict.
Nozomi Networks Labs analysis of customers' intrusion alerts over the last six months found weak/cleartext passwords and weak encryption were the top access threats to critical infrastructure environments. This was followed by brute force and DDoS attempts. Trojans were the most common malware detected targeting enterprise IT networks, Remote Access Tools (RATs) topped the malware targeting OT, and DDoS malware targeted IoT devices.
Malicious IoT botnet activity remained high and continued to rise in the second half of 2022. Nozomi Networks Labs uncovered growing security concerns as botnets continue to use default credentials in attempts to access IoT Devices.
From July to December 2022, Nozomi Networks honeypots found:
Attacks spiked in July, October and December with more than 5,000 unique attacks in each of those months. The top attacker IP addresses were associated with China, the United States, South Korea and Taiwan. “root” and“admin” credentials are still most often used as a way for threat actors to gain initial access and escalate privileges once in the network.
On the vulnerability front, manufacturing and energy remained the most vulnerable industries followed by water/wastewater , healthcare and transportation systems . In the last six months of 2022:
CISA released 218 Common Vulnerabilities and Exposures (CVEs) – down 61% from the first half of the year. 70 vendors were impacted – up 16% from the previous reporting period; and Affected products were also up 6% from the first half of 2022.
Nozomi Networks' “ot/iot security report: a deep look into the ics threat landscape” provides security professionals with the latest insights needed to re-evaluate risk models and security initiatives, along with actionable recommendations for securing critical infrastructure.
MENAFN provides the information “as is” without warranty of any kind. We do not accept any responsibility or liability for the accuracy, content, images, videos, licenses, completeness, legality, or reliability of the information contained in this article. If you have any complaints or copyright issues related to this article, kindly contact the provider above.