Supply chain and third-party risk is a major threat to operational technology
News summary
- Overconfidence foreshadows future breaches: 73% of CIOs and CISOs "highly confident" they will not suffer an OT breach in the next year
- Cybersecurity is still an afterthought: Cyber insurance is considered a sufficient solution by 40%
- Complexity increases risk: 78% of respondents challenged by multivendor complexity
- Download the full report: Operational technology cybersecurity risk significantly underestimated
SAN JOSE, Calif., Nov. 9, 2021 /PRNewswire/ -- A new research study by Skybox Security found that 83% of organizations suffered an operational technology (OT) cybersecurity breach in the prior 36 months. The research also uncovered that organizations underestimate the risk of a cyberattack, with 73% of CIOs and CISOs "highly confident" their organizations will not suffer an OT breach in the next year.
"Not only do enterprises rely on OT, the public at large relies on this technology for vital services including energy and water. Unfortunately, cybercriminals are all too aware that critical infrastructure security is generally weak. As a result, threat actors believe ransomware attacks on OT are highly likely to pay off," said Skybox Security CEO and Founder Gidi Cohen. "Just as evil thrives on apathy, ransomware attacks will continue to exploit OT vulnerabilities as long as inaction persists."
The new research, Operational technology cybersecurity risk significantly underestimated, unearths the uphill battle that OT security faces – comprised of network complexity, functional silos, supply chain risk, and limited vulnerability remediation options. Threat actors take advantage of these OT weaknesses in ways that don't just imperil individual companies – but threaten public health, safety, and the economy.
Key takeaways from the 2021 study include:
Supporting quotes
To learn more, download the full research study.
Methodology
The research study included responses from 179 OT security decision-makers in the U.S., U.K., Germany, and Australia. The majority of the respondents (152) were from companies with $1B or more in revenue within the manufacturing, energy, and utility industries.
About Skybox Security
Over 500 of the largest and most security-conscious enterprises in the world rely on Skybox for the insights and assurance required to stay ahead of dynamically changing attack surfaces. At Skybox, we don't just serve up data and information. We provide the intelligence and context to make informed decisions, taking the guesswork out of securely enabling enterprises at scale and speed. Our unified security posture management platform delivers complete visibility, analytics, and automation to quickly map, prioritize, and remediate vulnerabilities across your organization. The vendor-agnostic platform intelligently optimizes security policies, actions, and change processes across all corporate and cloud environments. With Skybox, security teams can focus on the most strategic business initiatives while ensuring that enterprises remain protected.
We are Skybox. Secure more, limit less. https://www.skyboxsecurity.com/
Media & analyst contact
Ashley Nakano
Corporate Communications Director
skyboxglobal@allisonpr.com
© 2021 Skybox Security, Inc. All rights reserved. Skybox Security and the Skybox Security logo are either registered trademarks or trademarks of Skybox Security, Inc., in the United States and/or other countries. All other trademarks are the property of their respective owners. Product specifications subject to change at any time without prior notice.
Logo - https://mma.prnasia.com/media2/1011662/Skybox_Security_logo.jpg?p=medium600