OT/IT Cybersecurity Report

Throughout the year, Dragos identifies threats to operational technology (OT) and industrial control systems (ICS) infrastructure, conducts services to help defenders mature their program, and prioritizes mitigations for resilient operations. Enhanced by Dragos telemetry, we approach our eighth annual Year in Review report with field-tested guidance. It serves to provide several detailed examples of key attack paths Dragos observed as well as some of the context and motivation behind these attacks.

If this is the beginning of your OT/ICS cybersecurity journey, welcome and don’t be alarmed. Start your year off by systematically identifying your organization’s exposure and work to reduce that exposure as much as possible. Read more about threats to exposed assets such as BAUXITE on page 22 and KurtLar SCADA on page 35.

If you already know your exposure, or have a plan to reduce it, consider the attack scenarios mentioned throughout this report and decide whether you’d be susceptible to these same attacks. Use these scenarios to inform visibility and monitoring strategies, create your incident response plans, and plan segmentation efforts.