May 16, 2020

Is your manufacturing company practicing proactive cybersecurity?

Cybersecurity
prevention methods
Manufacturing
Digital Guardian
Admin
5 min
 Is your manufacturing company practicing proactive cybersecurity?
Four methods manufacturers can take right now to remain secure

Manufacturing companies are one of the most popular targets for cybercriminals, based o...

Four methods manufacturers can take right now to remain secure

Manufacturing companies are one of the most popular targets for cybercriminals, based on the sheer amount of classified information they hold. In fact, a recent report from IBM X-Force Research’s 2016 Cyber Security Intelligence Index found that the sector is the second most-attacked industry behind healthcare, with automotive manufacturers and chemical companies scoring as the top targets for attackers.

Hackers’ intentions can vary when targeting the industry, but they are typically financially-motivated, state-sponsored attacks, which occur when government-funded organizations break into a network to steal intellectual property (IP) and trade secrets. These groups are some of the most sophisticated hackers, using a high level of expertise when targeting companies. They seek extremely valuable IP to further the betterment of the people in their country, or perhaps more commonly, for financial gain.

Prevention methods for every manufacturer

With the continuous increase in cyber threats, and large organizations in nearly every sector making headlines as a result of data breaches, it can seem overwhelming to evaluate just where to start to protect a manufacturing company’s data. Let’s break it down:

First and foremost, manufacturers should have a vulnerability management plan in place, and conduct ongoing vulnerability scans. These regular scans can help find unpatched systems and holes, which is often where hackers find their way in. In fact, most of these attackers are not leveraging zero-day vulnerabilities all the time; instead, they are taking advantage of vulnerabilities that have been out for years.

Next, it’s highly critical to prioritize security awareness, and promote this notion to all employees, from the C-suite to temporary hires and third party contractors. From my past experience at a chemical manufacturing plant, I found that 40 to 50 percent of attacks by state-sponsored groups were conducted via spearphishing. These attacks are spread through malicious emails that appear to be from an individual or business that you know, though it isn’t. Employees think the email is from a trusted source, click links within the email, and just like that, a hacker has entry into the company’s network.

A strong example of proactive security awareness is to conduct regular white hat phishing campaigns, where an organization sends out phishing emails to employees that are not malicious, but simply used for education and to gain an understanding of threat levels. This white hat phishing technique captures important data on who is likely to fall victim to an attack, and why. It provides users with education on how to recognize and identify a malicious email, and what to do about it. However, while this is important, manufacturers must also understand that they can’t rely entirely on employees doing the right thing – mistakes will happen and links will inadvertently be clicked.

As employees get up to speed on cybersecurity, an incident response plan should also be in place. This plan should be ongoing and continuously tested, for maximum effectiveness when an incident does occur and organizations have to respond. The incident response plan should feature a few “must-haves,” including:

  • Involvement from all levels within an organization, including the CEO, CFO and more. This is not just a project for the IT team. Involve the right people, and ensure there’s a point person who can lead during an incident and make proper, fast decisions when needed.
  • A methodical approach on how to respond to an incident. Each incident is different in nature, but should fall under a certain classification, such as high, medium or low risk, so individuals know how to proceed.
  • The framework of each type of incident (for example, is it state-sponsored or hacktivism) should also help determine the prescribed approach to take.

 

Lastly, organizations should harden the security configurations of systems and servers, including revoking privileged access to endpoints. Malware, for instance, requires administrative level privileges to execute on machines. If an organization took these administrative privileges away, nearly 90 percent of infections on machines would stop – all via one fairly simple fix.

Don’t forget that security controls do hinder on culture. How hard is it to implement certain protocols in your organization? IT can make a recommendation for application whitelisting, which is when organizations prevent the usage of unapproved applications that can be launched on end-user / server computers, but it can be extremely difficult to implement since applications within a manufacturing environment can be so diverse and users may be averse to these restrictions. Evaluate your internal culture to determine which procedures are best to secure the business.

Conclusion: metrics matter

With all of the aforementioned prevention methods in place, manufacturers must also understand just how their organization is performing when it comes to cybersecurity. Are the number of threats detected decreasing? Is employee security awareness increasing through the reduction of the number of links or attachments clicked? For this reason, it’s recommended that organizations take a KPI (Key Performance Indicator) perspective to cybersecurity, by setting goals and metrics to improve security stature. Manufacturing companies should have an ongoing, metrics-based intelligence-driven security program in place to evaluate the effectiveness of common programs, like vulnerability management, data loss prevention and antivirus protection.

With these metrics in place, organizations can develop a heat map of sorts, to outline where they should be focusing their efforts and/or where they should continue to invest in protecting their most sensitive assets. This security snapshot will assist in keeping every aspect of a business secure and prepared, making it that much more difficult for even the most sophisticated hacker to take off with a manufacturer’s crown jewels.

By Tim Bandos, Director of Cybersecurity, Global Services, Digital Guardian

 

Follow @ManufacturingGL and @NellWalkerMG

Share article

Jun 17, 2021

Siemens: Providing the First Industrial 5G Router

Siemens
5G
IIoT
Data
3 min
Siemens’ first industrial 5G router, the Scalancer MUM856-1, is now available and will revolutionise the concept of remote control in industry

Across a number of industry sectors, there’s a growing need for both local wireless connectivity and remote access to machines and plants. In both of these cases, communication is, more often than not, over a long distance. Public wireless data networks can be used to enable this connectivity, both nationally and internationally, which makes the new 5G network mainframe an absolutely vital element of remote access and remote servicing solutions as we move into the interconnected age. 

 

Siemens Enables 5G IIoT

The eagerly awaited Scalance MUM856-1, Siemens’ very first industrial 5G router, is officially available to organisations. The device has the ability to connect all local industrial applications to the public 5G, 4G (LTE), and 3G (UMTS) mobile wireless networks ─ allowing companies to embrace the long-awaited Industrial Internet of Things (IIoT). 

Siemens presents its first industrial 5G router.
Siemens presents the Scalance MUM856-1.

The router can be used to remotely monitor and service plants, machines, as well as control elements and other industrial devices via a public 5G network ─ flexibly and with high data rates. Something that has been in incredibly high demand after being teased by the leading network providers for years.

 

Scalance MUM856-1 at a Glance

 

  • Scalance MUM856-1 connects local industrial applications to public 5G, 4G, and 3G mobile wireless networks
  • The router supports future-oriented applications such as remote access via public 5G networks or the connection of mobile devices such as automated guided vehicles in industry
  • A robust version in IP65 housing for use outside the control cabinet
  • Prototypes of Siemens 5G infrastructure for private networks already in use at several sites

 

5G Now

“To ensure the powerful connection of Ethernet-based subnetworks and automation devices, the Scalance MUM856-1 supports Release 15 of the 5G standard. The device offers high bandwidths of up to 1000 Mbps for the downlink and up to 500 Mbps for the uplink – providing high data rates for data-intensive applications such as the remote implementation of firmware updates. Thanks to IPv6 support, the devices can also be implemented in modern communication networks.

 

Various security functions are included to monitor data traffic and protect against unauthorised access: for example, an integrated firewall and authentication of communication devices and encryption of data transmission via VPN. If there is no available 5G network, the device switches automatically to 4G or 3G networks. The first release version of the router has an EU radio license; other versions with different licenses are in preparation. With the Sinema Remote Connect management platform for VPN connections, users can access remote plants or machines easily and securely – even if they are integrated in other networks. The software also offers easy management and autoconfiguration of the devices,” Siemens said. 

 

Preparing for a 5G-oriented Future

Siemens has announced that the new router can also be integrated into private 5G networks. This means that the Scalance MUM856-1 is, essentially, future-proofed when it comes to 5G adaptability; it supports future-oriented applications, including ‘mobile robots in manufacturing, autonomous vehicles in logistics or augmented reality applications for service technicians.’ 

 

And, for use on sites where conditions are a little harsher, Siemens has given the router robust IP65 housing ─ it’s “dust tight”, waterproof, and immersion-proofed.

 

The first release version of the router has an EU radio license; other versions with different licenses are in preparation. “With the Sinema Remote Connect management platform for VPN connections, users can access remote plants or machines easily and securely – even if they are integrated in other networks. The software also offers easy management and auto-configuration of the devices,” Siemens added.

 

Share article