48% of respondents are unaware if their firm has been hacked in the last year.
On behalf of Nozomi Networks, SANS professionals performed a study of organizations and businesses in the industrial sector. According to the findings of the survey, companies that use automated process control systems (APCS) and other operational technologies (OT) are becoming increasingly concerned about cyber risks.
Nearly 70% of users feel that the danger of cyberattacks on their OT settings is substantial, up from 51% in 2019 when SANS conducted a comparable study.
While many firms are worried about the dangers of cyberattacks on their OT systems, 48% of respondents do not know if their company has been breached in the last year. It is worth noting that 42 percent of respondents in 2019 offered the same answer. This highlights the importance of companies improving their capability to identify and react to cyberattacks.
Only 12% of respondents were convinced that their systems had not been hacked, while 15% discovered intrusions that disrupted production operations.
The majority of respondents blamed the events on hackers, with organized crime, service providers and contractors, workers, activists, and APT organizations following close after.
External remote services (36 percent ) were cited as the first attack vectors associated with hacking by respondents, followed by exploitation of publicly available applications (32 percent ), network-connected devices (28 percent ), phishing (26 percent ), removable media (24 percent ), and compromised engineer workstations (18 percent ).
Many businesses have taken measures in recent years to strengthen the security posture of their OT systems. Almost half of the businesses have raised their funding for ICS cybersecurity. More than half of respondents now believe they can discover a compromise within 24 hours, up from 34% in 2019.