1 minute read
September 2023
As factories become smarter and the number of connected devices grows, so do the cybersecurity risks. With a greater number of connected devices, there are more potential entry points for cybercriminals. Components or software sourced from third-party vendors might have vulnerabilities, and many IoT devices don’t get regular software updates, making them vulnerable to known exploits.
Disgruntled employees or contractors might exploit internal knowledge to cause harm, where physical access to devices might lead to malware installation or alteration of their functions.
If a malicious attack occurs, sensitive operational data, intellectual property, or production-related data might be targeted, or production halted, leading to significant financial losses.
Therefore, it is critical that, as automation levels grow within a factory site, the business has a thorough approach to mitigating these risks. This should include regular software updates and patches, tight controls over system and device access – using multi-factor authentication where appropriate – and carrying out vendor security assessments. Physical security should be in place to prevent unauthorised in-person access to devices and systems, and staff should be regularly trained around the importance of cybersecurity and their obligations.
Critical data and systems should, of course, be regularly backed up to allow for fast recovery if needed, and an incident response plan should be developed to enable the business to address potential cyber incidents swiftly.
As the benefits of automating factories are increasingly understood, adopting a multi-layered security approach and considering cybersecurity as an integral part of the design and operation phase will significantly reduce the associated risks.
Chris Callander, Editor
