Oil and Gas Cyber Security: The Mammoth Cost Of Not Being Prepared
- cyber security, ics security, it security, oil and gas cyber security
Cyber Security within the oil and gas industry is a threat that is, in many cases, being ignored. It has a direct effect in the creation of government regulation and legislation, can have deep financial impact and – in some cases – can even cost lives. The US ICS-CERT recognises these trends and are listing a growing number of attacks launched on Industrial Control systems.
It further states that:
• 53% of cyber-attacks in the USA are aimed towards the energy sector
• 30% of malware gets through precautionary measures
• 55% of incidents involved advanced persistent threats (APT).
The 2014 Verizon Data Breach report states that 40 per cent of the attacks performed in the manufacturing and mining industry are cyber espionage based. A UK survey revealed that 81 per
cent of large companies were digitally attacked, at an average cost of £1 million per company. Similarly, 62 per cent of small and medium-sized enterprises (SMEs) were digitally attacked in 2014 at an average cost of more than £100,000 per incident piece. Eventually, even your company will be a target and the cost of unpreparedness could be crippling.
We have to realise that the reasons why people, governments and critical infrastructure are attacked via computers is fivefold:
• It is relatively easy
• It is cheap
• It can be catastrophically effective
• It is forensically difficult to trace
• It pays no heed to state jurisdictions of frontiers.
IT Security is a continuous process. And it is necessary to focus your investment not only on solutions helping you to protect your valuable assets but also to monitor, detect and respond to cyber threats. This report from Oil & Gas IQ looks at the critical factors involved and looks to address the real impact of cyber threats against the oil and gas industry.