wonderfully unique software solutions

StormShield scopes out cyber-threats to food industry systems

StormShield’s digital manager Victor Poitevin has warned that the global agrifoods industry — increasingly reliant on automation — must face the risk of targeted cyber attacks.

Poitevin pointed out that attacks on the industry are rising. Early in 2021 saw French firms Lactalis and Laurent Perrier as well as US brewing giant Molson Coors hit, for example, with more happening as the year unfolded.

This is partly reflecting increased connectivity in the sector, he said.

“Farms are embracing the concept of ‘precision’ agriculture, while food factories are using highly automated processing and production lines,” he explained in a StormShield blog post.

However, warnings that more attacks are imminent, even amid an atmosphere of increasing cyberattack across many industries, have been largely “drowned out” in the focus on Covid, Poitevin said.

As far back as July 2020, the US’s National Security Agency (NSA) and Cybersecurity and Infrastructure Security Agency (CISA) recommended that industries including food-and-drink reduce their exposure via remote management tools.

“This recommendation referred in particular to all old-generation operational tech (OT), especially ICS/SCADA systems, which are the most commonly used monitoring systems in food processing plants and must therefore be protected,” Poitevin said.

The NSA and CISA pointed to assorted attack methods — including spear-phishing the IT to then infiltrate OT production networks and attempts to take advantage of failures to properly authenticate users.

“Attacker methodologies are now more complex than mere random and pre-scheduled releases. The result: more sophisticated, targeted and devious cyberattacks that have seriously impacted the agrifood industry,” Poitevin said.

He added that experts have expressed alarm at the vulnerability of UK agrifoods supply chains. A targeted cyberattack on one link in the supply chain could disrupt the entire industry.

“Part of the answer lies in network segmentation and Intrusion Prevention System (IPS) and Endpoint Detection and Response (EDR) technologies,” he said.

Poitevin said agribusinesses need to implement combinations of these cybersecurity mechanisms to reduce risk of attack via privilege escalation or malware installation.

( Photo by NOAA on Unsplash )

Recent Articles

RealVNC remote-access highlighted by six finalists for Raspberry Pi prize

RealVNC, maker of RealVNC Connect, has named six finalists for this year's RealVNC Raspberry Pi Prize with winner and runners-up to be...

Cyberattack climate entails customised firewalling, notes Stormshield

Firewalling at the edge is no longer enough so organisations increasingly need to combine suitable location with segmentation and zero-trust strategies that...

Palm vein biometrics market set to explode this decade

The market for palm-vein based biometrics has been forecast to expand in line with a compounded annual growth rate of 22.4% from...

Automox targets unsigned scripts with PowerShell signing capability

Endpoint management company Automox is unveiling Worklets Signing, which complements Worklets and Ask Otto with a view to helping companies dodge the...

Arista warns SMBs to take precautions against edge threats

Arista Networks, the vendor of Arista Edge Threat Management (ETM) has warned that SMBs aren't always aware of the extent of targeting...

Related Stories

Leave A Reply

Please enter your comment!
Please enter your name here

Weirdware monthly - Get the latest news in your inbox