Latest news with #IndustrialControlSystems
New Straits Times
7 days ago
- Business
- New Straits Times
APAC industries face rising ICS cyber threats
VIETNAM: Key subregions in the Asia Pacific (APAC) continue to face a barrage of cyber attacks on Industrial Control Systems (ICS) computers, according to Kaspersky's latest data. Kaspersky ICS-CERT reported that Southeast Asia ranked second globally by percentage of ICS computers where malicious objects were blocked in the first quarter (1Q) of 2025, while Central Asia ranked third and South Asia sixth. APAC Kaspersky managing director Adrian Hia said ICS computers in the region recorded a higher infection rate of 23 per cent in the second quarter of 2025, nearly three percentage points above the global average of 20.54 per cent. He noted that in 2Q 2025, a new wave of phishing was blocked on ICS computers in the oil and gas sector in APAC. "This time, known spyware families like FormBook, AgentTesla and Noon were directly attached to the emails. Kaspersky solutions blocked all these attacks," he told the Cyber Security Weekend 2025, here today. Citing ICS-CERT data, Hia said APAC is also among the top regions by virus detections, two to three times higher than the world average. The most affected industries include power energy, building automation, oil and gas, manufacturing, as well as ICS engineering and integration. Although viruses are often considered legacy threats, they can cause operations disruption in the event of an outbreak, and they drive up maintenance costs. Hia said the most affected APAC industries by virus threats in 2Q 2025 were power energy, building automation, oil and gas, manufacturing and ICS engineering and integration. "The most affected countries in terms of virus on ICS computers in 2Q 2025 were Vietnam, Afghanistan, China, Bangladesh, Pakistan, Myanmar, Laos, Cambodia, Indonesia and Nepal," he added. To counter the escalating threats to critical infrastructure, Kaspersky urged the adoption of a layered cybersecurity framework, anchored by an intelligence-driven Security Operations Centre (SOC). "This framework should start with prevention by using tools such as brand protection, attribution engines and compromise indicators, while also relying on incident response, penetration testing and cyber drills to minimise damage and accelerate recovery," Hia said. He added that integrating IT and operational technology (OT) security through centralised SOC systems with real-time visibility will be crucial to ensuring resilience as APAC industries move towards greater digital and operational convergence. "With IT and OT integration set to accelerate in the years ahead, cybersecurity strategies in APAC must continue evolving, bridging both domains to secure operations and ensure resilience in an increasingly connected world," he concluded.
Time of India
09-07-2025
- Business
- Time of India
Surge in ICS Attacks: Biometrics and Building Automation at Highest Risk in South Asia, ET CISO
In South Asia, the highest number of attacks on ICS (Industrial Control Systems) in Q1 2025 targeted critical sectors such as Biometrics, Building Automation, and Electric Power. The three other heavily targeted sectors were Engineering & ICS Integration, Manufacturing, and Construction. These insights come from a new report by Kaspersky ICS CERT (Industrial Control Systems Cyber Emergency Response Team). 'Our research shows that in the region, critical sectors such as biometrics, manufacturing, and energy remain prime targets for cybercriminals, underscoring the urgent need for proactive defense strategies, continuous monitoring, and robust industrial cybersecurity practices,' says Jaydeep Singh, General Manager for India at Kaspersky. 'Notably, nearly one in five ICS systems in India experienced malicious activity. As threat actors grow more persistent and sophisticated, organizations must enhance visibility across both IT and OT environments and invest in tailored security frameworks to safeguard critical operations.' Advt Advt The Kaspersky report reveals that in South Asia, the biometrics sector faced the highest number of ICS (Industrial Control Systems) threats in Q1 2025, with malicious objects blocked on 28.1% of ICS computers, matching the global average. Biometrics, used for secure authentication and identification, continues to be a high-risk target for Automation was the second-most affected sector, with 23.4% of ICS computers fending off threats. This industry, which manages energy efficiency, security, and comfort systems in smart buildings, remains vulnerable due to its reliance on interconnected Electric Power sector ranked third, with over 22% of ICS computers exposed to threats. Given its role as part of South Asia's critical infrastructure, this sector's cybersecurity posture is vital to national most industry sectors in the region recorded ICS threat levels below the global average—except manufacturing. In this sector, 18% of ICS computers were targeted, slightly above the global figure of 17.6%.Overall, South Asia saw a marginal rise in ICS attacks, with threats blocked on 21% of systems in Q1 2025, up from 20.7% in the previous quarter. However, not all industries followed this upward trend. The manufacturing sector saw a slight quarter-over-quarter drop, from 18.7% in Q4 2024 to 18% in Q1 2025. Engineering and ICS Integration also declined, falling from 19.9% to 19%.'The results of our research show that revising cybersecurity measures for legacy and time-tested technologies is essential more than ever. Organizations relying on ICS should now view cybersecurity not as a cost, but as an investment in business continuity, an insurance policy that not only protects assets and data, but also maintains the trust that has been worked hard to build with customers and partners,' adds enhance ICS security in all digitally integrated sectors, Kaspersky recommends the following measures based on enterprise OT insights. Conducting regular security assessments of OT systems to identify and eliminate possible cybersecurity issues. Establishing continuous vulnerability assessment and triage as a foundation for an effective vulnerability management process. Dedicated solutions like Kaspersky Industrial CyberSecurity may become an efficient assistant and a source of unique actionable information, not fully available in public. Performing timely updates for the key components of the enterprise's OT network, applying security fixes and patches, or implementing compensating measures as soon as it is technically possible is crucial for preventing a major incident that might cost millions due to the interruption of the production process. Using EDR solutions such as Kaspersky Next EDR Expert for the timely detection of sophisticated threats, investigation, and effective remediation of incidents. Improving the response to new and advanced malicious techniques by building and strengthening teams' skills in incident prevention, detection, and response. Dedicated OT security training for IT security staff and OT personnel is one of the key measures helping to achieve this. By , ETCISO Join the community of 2M+ industry professionals. Subscribe to Newsletter to get latest insights & analysis in your inbox. All about ETCISO industry right on your smartphone! Download the ETCISO App and get the Realtime updates and Save your favourite articles.
Techday NZ
04-06-2025
- Business
- Techday NZ
Illumio & NVIDIA partner to boost Zero Trust for critical infrastructure
Illumio has announced a strategic integration with NVIDIA aimed at helping organisations secure critical infrastructure and improve their Zero Trust maturity by bringing together breach containment capabilities with the NVIDIA BlueField networking platform. The integration allows critical infrastructure organisations to deploy Illumio directly on NVIDIA BlueField, giving security teams comprehensive visibility into network dependencies and enabling precise security controls at both the host and network levels. With this collaboration, organisations can benefit from deep visibility into network traffic and enhanced protection of critical assets. The solution leverages NVIDIA BlueField Data Processing Units (DPUs) as enforcement points for Zero Trust, thereby simplifying the protection of operational technology (OT) and information technology (IT) systems while helping organisations ensure operational continuity and meet compliance standards. In the future, Illumio's platform will also allow organisations to use its AI-driven insights to identify risks and attacker behaviours, enabling rapid threat detection within Industrial Control Systems (ICS) and OT environments. The collaboration is positioned against the backdrop of growing cyber threats and heightened global regulatory expectations for critical infrastructure. According to Illumio, the integration delivers several key benefits, including enhanced visibility and policy enforcement for traffic within and between IT and OT networks. Using Illumio's labelling architecture, organisations can visualise all traffic to and from OT systems equipped with NVIDIA BlueField to better understand system communications across the infrastructure. The integration also promises rapid deployment of Zero Trust segmentation in OT and ICS settings, designed to reduce complexity, limit lateral movement risks, and contain potential breaches. Additional benefits cited include improved compliance and operational resilience, as organisations can identify assets, monitor traffic, and enforce security policies across converged IT/OT environments without impacting system performance or requiring major architectural changes. The combined solution is intended to provide consistent and reliable microsegmentation across varying environments while maintaining uptime and resilience. Todd Palmer, Senior Vice President of Global Partner Sales and Alliances at Illumio, stated, "The integration between Illumio and NVIDIA will significantly strengthen security for cyber-physical systems and bring us closer to achieving our vision of a world without cyber disasters. Critical infrastructure is under threat like never before. Together with NVIDIA, we're making it easier for organizations to protect critical systems, ensure operational continuity, and meet stringent compliance requirements in an increasingly complex landscape." Ofir Arkin, Senior Distinguished Architect for Cybersecurity at NVIDIA, said, "Cyber risks against critical infrastructure are more sophisticated and disruptive than ever, and lateral movement remains a key factor in successful attacks. Integrating the Illumio and NVIDIA BlueField platforms enables organizations to enhance visibility and control across IT and OT networks, reduce risk, contain attacks, and strengthen operational resilience." Illumio was named as a leader in The Forrester Wave: Microsegmentation Solutions, Q3 2024. The company is part of the NVIDIA partner ecosystem, offering a platform built on an AI security graph that includes Illumio Insights for AI-driven cloud detection and response, as well as Illumio Segmentation aimed at facilitating Zero Trust strategies. The partnership targets organisations responsible for critical infrastructure, which face increasing operational risks from sophisticated cyber threats. The converged approach to IT and OT security seeks to enable these organisations to identify risks, contain threats before they spread, and comply with regulatory requirements across complex operational environments.
Techday NZ
02-06-2025
- Business
- Techday NZ
Illumio & NVIDIA team up to boost Zero Trust for infrastructure
Illumio has announced a new integration with NVIDIA BlueField Data Processing Units (DPUs) aimed at strengthening Zero Trust security in critical infrastructure environments. The collaboration brings together the Illumio breach containment platform with the NVIDIA BlueField networking platform, designed to provide security and operational efficiency across both Information Technology (IT) and Operational Technology (OT) environments. This integration allows critical infrastructure organisations to deploy Illumio directly on NVIDIA BlueField, giving security teams a holistic view of network dependencies and permitting security controls at both host and network levels. Through this solution, organisations gain visibility into traffic, protect vital assets, and are able to use NVIDIA BlueField DPUs as Zero Trust enforcement points. The architecture is intended to simplify breach containment for critical systems and help maintain operational continuity while meeting increasingly strict compliance requirements. In addition to current features, future capabilities are planned, including the use of Illumio's AI-driven insights to identify risks and attacker patterns. This will aim to enable rapid detection of threats within Industrial Control Systems (ICS) and OT settings. The integration comes in the context of escalating threats and higher regulatory demands worldwide for improving cyber resilience and reducing risks in OT infrastructure. Organisations are facing challenges from sophisticated cyber threats and the need for solutions that can bridge IT and OT security requirements. One of the key advantages of the integration is expanded visibility and policy enforcement for traffic within and between IT and OT layers. Using Illumio's labelling architecture, teams can view all traffic to and from OT systems equipped with NVIDIA BlueField, enabling a greater understanding of cross-infrastructure communications. The integration is positioned to help organisations rapidly deploy Zero Trust security strategies within critical infrastructure. By extending segmentation to OT and ICS environments, organisations are able to decrease deployment complexity, accelerate the implementation process, and contain breaches by limiting lateral movement risks. Illumio also highlights the compliance and resilience benefits of this integration. Organisations can identify assets, monitor traffic, identify threats, and enforce security policies across integrated IT and OT environments without compromising system performance or requiring significant architectural changes. The microsegmentation provided is designed to be consistent and reliable, supporting diverse environments and maintaining uptime and resilience. Todd Palmer, Senior Vice President of Global Partner Sales and Alliances at Illumio, commented: "The integration between Illumio and NVIDIA will significantly strengthen security for cyber-physical systems and bring us closer to achieving our vision of a world without cyber disasters. Critical infrastructure is under threat like never before. Together with NVIDIA, we're making it easier for organisations to protect critical systems, ensure operational continuity, and meet stringent compliance requirements in an increasingly complex landscape." Ofir Arkin, Senior Distinguished Architect for Cybersecurity at NVIDIA, added: "Cyber risks against critical infrastructure are more sophisticated and disruptive than ever, and lateral movement remains a key factor in successful attacks. Integrating the Illumio and NVIDIA BlueField platforms enables organisations to enhance visibility and control across IT and OT networks, reduce risk, contain attacks, and strengthen operational resilience." Illumio is recognised as a vendor within the NVIDIA partner ecosystem and was named a leader in The Forrester Wave: Microsegmentation Solutions, Q3 2024. Its AI-powered security graph underpins the breach containment platform, which comprises Illumio Insights for AI cloud detection and response, and Illumio Segmentation for Zero Trust segmentation. The objective is to enable organisations to promptly identify risks and contain threats for a Zero Trust security posture.
Hans India
27-05-2025
- Business
- Hans India
‘HackSky' Hackathon to Tackle Real-World Cybersecurity Threats
Bengaluru: Global cybersecurity firm Kaspersky has joined hands with Manipal Institute of Technology (MIT), Bengaluru – a constituent unit of MAHE – to host HackSky, an intensive 48-hour on-campus hackathon focused on combating emerging cybersecurity threats. Scheduled for July 29–30, 2025, the event will take place at the MIT Bengaluru campus and is open to students, cybersecurity professionals, and enthusiasts from across India. With a top prize of ₹1 lakh, sponsored by MIT Bengaluru, the competition also offers exclusive cybersecurity training and mentorship from Kaspersky experts to the winning team or individual. The hackathon is designed to foster innovation and identify solutions to some of today's most pressing digital security issues. 'As cyberthreats grow more sophisticated and widespread, the need for a new generation of cybersecurity experts has never been greater,' said Evgeniya Russkikh, Head of Cybersecurity Education at Kaspersky. 'HackSky is an opportunity to bring together India's brightest minds to address real-world challenges such as disinformation, deepfakes, and AI-driven scams.' Three Cybersecurity Tracks Participants will compete in one of three Kaspersky-designed tracks: Transformation of ICS & Cyber Threats – Focused on protecting Industrial Control Systems, which are increasingly targeted by cyberattacks as they form the backbone of critical infrastructure. AI vs AI: Detecting Deepfakes and Misinformation – Challenges participants to use AI to counter AI-generated disinformation and deepfakes. Trapping the Honey Trapper – Focuses on identifying and dismantling fake social media profiles and content used for digital deception and manipulation. Dr. Iven Jose, Director, MIT Bengaluru, MAHE, said, 'We are delighted to host HackSky in collaboration with Kaspersky. This initiative offers a dynamic platform for emerging tech talent to engage with real-world cybersecurity challenges and gain hands-on industry experience.'
