What Industrial Control Systems Can Do Today To Prevent Being Hacked Tomorrow

Jun 28, 2021

Industrial control systems in transportation, manufacturing, energy, and more have been prime targets for hackers for many years. As hacking groups continue to attempt to breach these networks, the number of cyberattacks is on the rise. Moreover, the fact that traditional industries often run on outdated operating systems isn’t doing much to help decrease their vulnerability to hackers.

Naturally, hackers know all of this and the impact of the damage they can cause to such mammoth systems. From compromised sensitive data and critical systems, to complete network shutdowns due to ransomware attacks, hacker attacks on industrial systems can sometimes even lead to physical harm. An example of this might be changing sodium levels in water supply, the results of which would be far reaching and potentially, disastrous.

16.7% of attacks on

industrial control centers

are via the Internet

*Source: Kaspersky Lab’s Threat Landscape for Industrial Automation Systems 

Critical Infrastructure Access Challenges

Critical infrastructure industries, such as energy and transportation, are highly dependent on different systems located in their OT and IT networks for day-to-day organizational operations.

While many of the OT systems use legacy and proprietary protocols, many systems have migrated to standard TCP-based protocols. This has enabled IT teams to provide easier remote/cross-network access to OT-based systems often carried out using solutions such as VPNs or remote desktop services.

However, IT/OT personnel face many challenges when trying to provide remote access. Among them:

  1. Controlling access between different network segments, such as IT to OT, while preventing lateral movement.
  2. Controlling and securing remote access to IT and OT located systems for external users, while supporting different types of users accessing a variety of systems (new and legacy), using different remote access tools (such as VPN). In addition, access must only be granted after trust is established, and networks are hidden from unauthenticated users.
  3. Controlling and securing access to IT and OT located systems for internal users, while segmenting the users from the systems and applications, and ensuring access is only be granted after trust is established, and services are hidden from unauthenticated users. In addition, the need to add MFA to applications which do not support MFA is a big challenge.

 Changing the way secure access is granted

Safe-T’s ZoneZero® offers critical infrastructure organizations a solution that changes the way secure access is granted from the get-go.  Acting as a perimeter access orchestration platform that provides central management of all secure access technologies, ZoneZero® helps organizations to achieve zero-trust network access (ZTNA).

The first-ever perimeter access orchestration solution, ZoneZero® incorporates four key factors:

  1. ZoneZero SDP architecture – A clientless ZTNA solution for non-VPN users
  2. ZoneZero VPN architecture – A ZTNA solution for VPN users, achieved by integrating with all VPN solutions

It also allows critical infrastructure organizations to support:

  • All user types – people (managed or unmanaged), applications, APIs, and connected devices
  • All user locations – external or internal
  • All application types – modern and legacy
  • All application locations – cloud or on-premises

Secure, transparent, controlled access for everyone and everything

ZoneZero® offers secure and transparent and controlled access for all types of entities – people, applications, and connected devices – to any internal application, and service, such as TCP based application, legacy applications HTTP/S, SFTP, SSH, APIs, RDP, and SMB.

Implementing Safe-T’s patented reverse-access (outbound) technology designed to eliminate the need to open incoming ports in the critical infrastructure industries organization’s firewall, ZoneZero® allows critical infrastructure organizations to logically segment their networks, preventing lateral movement between IT and OT networks.

 

Dafna Lipowicz

VP of Human Resources

In her role, Dafna leads all HR activities at Safe-T, including: partnering with management team to advance and support the company vision and strategy, developing strategic HR plans and policies (training, compensation and benefits, etc.), organizational and managers development, recruitment and welfare. Dafna brings to Safe-T more than 17 years of experience in various HR managerial roles, in global and complex organizations as well as in growing start-ups (such as SanDisk, Logic Industries and Mantis Vision), specializing in establishing and leading HR departments, initiating and building organizational development, according to company strategy, management consultant, talent management and recruitment. Dafna holds both an LLB and an MA in Labor Studies from Tel Aviv University. She is also a certified mediator and group facilitator.

Request a Demo

  • This field is for validation purposes and should be left unchanged.