ICS vulnerabilities increase as remote work boosts attack surface

Disclosed vulnerabilities in industrial control systems (ICS) increased 335 percent in the second half of 2020 compared to the first half. A new report from Claroty also shows that in the same period 71 percent of ICS vulnerabilities disclosed were remotely exploitable through network attack vectors. In the second half of the year 449 vulnerabilities affecting ICS products from 59 vendors were disclosed. Of those, 70 percent were assigned high or critical Common Vulnerability Scoring System (CVSS) scores, with 76 percent not requiring authentication for exploitation. 'The accelerated convergence of IT and OT networks due to digital transformation enhances the… [Continue Reading]