Cyber agency warns manufacturing groups

Manufacturing organizations are at higher risk of being targeted by hackers during the COVID-19 pandemic, the nation’s key cybersecurity agency warned Wednesday.

Key target: The Cybersecurity and Infrastructure Security Agency (CISA) laid out the potential threats to the critical manufacturing sector in an insights report released Wednesday, noting that attacks could increase due to more remote work, which had expanded the threat surface for hackers to exploit.

“The Critical Manufacturing Sector is at risk from increased cyber-attack surface areas and limited cybersecurity workforces related to the COVID-19 pandemic,” the report reads. “These trends increase the vulnerability of the Critical Manufacturing Sector to the growing number of ransomware attacks aimed at private businesses by increasing attack surfaces and reducing protective abilities. To mitigate future threats, the Critical Manufacturing Sector should prioritize the management of risks.”

Key areas of concerns highlighted by CISA include the increased use of robotics and remote processes during the pandemic to protect workers, which CISA noted has opened up new security vulnerabilities, and the increasing lack of qualified personnel to protect highly technical manufacturing systems. Ransomware attacks, which have become a major concern during the course of the pandemic in all sectors, have also become a threat to manufacturing companies.

Warning: “If current trends hold, attacks against manufacturing sector infrastructure will continue to increase,” the report reads. “A new threat to manufacturing—ransomware…has begun to target systems lacking the inherent security controls required to protect themselves. The result can be catastrophic production loss and downtime as well as lost revenues and penalties for production delays.”