Repository for Industrial Security Incidents (RISI) has released its 2011 annual report on Cyber Security Incidents and Trends Affecting Industrial Control Systems, which can be purchased individually or as part of a company or corporate membership.
The 80-page report found that approximately 35% of industrial control system (ICS) security incidents were initiated through remote access. Supporting this finding is RISI survey results that indicate nearly 65% of facilities allow remote access to their control systems.
Detailed analysis of the 220 incidents recorded from 2001 to 2011 identifies where and when incidents occurred, while also identifying the types of incidents and the threat agents that executed them including the methods and techniques used to gain entry. The financial and operational impact on the “victims” is also analyzed.
Also included in the report is detailed analysis from the first annual RISI Control System Security Benchmark Survey, which provides insight into the current state of control system security especially when compared with the data regarding actual incidents.
For example, RISI data indicates that the percentage of control system security incidents caused by malware, while still very high (28%), has been steadily declining over the last five years. This trend is supported by survey data that indicates that more than 60% of facilities have implemented patch and anti-malware management programs.
For more information, visit http://www.securityincidents.org.