This recent alert from CISA discusses the immediate impact ransomware can have to an ICS environment when segmentation and data flow restrictions between the enterprise zone and the ICS zones is not in place. This is exceedingly common in several industries. CISA summed it up well with the statement "The victim failed to implement robust segmentation between the IT and OT networks, which allowed the adversary to traverse the IT-OT boundary and disable assets on both networks."
Read the full article here https://www.us-cert.gov/ncas/alerts/aa20-049a
Comments