recent cyber attacks on oil and gas companies

Oil and gas faces threats from groups targeting OEMs, third-party vendors and telecommunications providers. The IIoT and digital revolution offer great benefits to the oil and gas industry. Recommended for … Cybersecurity for oil and gas faces a triple threat. For example, in December 2018, Saipem, an Italian oil and gas industry contractor, fell victim to a cyber-attack that hit servers based in the Middle East, India, Aberdeen and Italy, which led to the cancellation of data and infrastructures. This is one of several cyber attacks discussed in a new report by Trend Micro, a cybersecurity solutions firm. The attackers behind Nefilim do not post the dollar amounts they request. Physical attacks are also a problem; just recently a drone attack on the world’s largest refinery crippled 5% of the world’s global oil supply.1 All of these different risks have to be mitigated, and at first glance, cyberattacks may seem less urgent to oil and gas companies. Cyberattacks in the Middle East are on the rise, and many of them are targeting the oil and gas sector, according to a new report from cybersecurity firm DarkMatter. With the exploitation of new cost-effective operational concepts, use of digital technologies and increased dependence on cyber structures, the oil and gas industry is exposed to new sets of vulnerabilities and threats, DNV GL writes in an article identifying the biggest cyber security threats to the oil and gas industry. These attacks should be a "huge wake-up call" for Australian oil and gas and broader energy companies, according to experts, which warned the sector could be next. Awareness of the threat to the oil and gas industry is growing commensurate with the escalating threat. Realizing the need for taking concerted action against cybersecurity threats across the entire business, oil and gas companies have taken collective steps to mitigate risks. The report details cyber risks facing the oil and gas … The Iranian-linked hacking group was also behind recent cyber-attacks against more than 200 government agencies worldwide, oil and gas companies, technology companies and other targets. Today, oil and gas stakeholders face more advanced threats, such as DUQU 2.0 and Flame. The research appears to indicate that cyber-criminals are moving their focus away from the energy, automotive manufacturing and engineering, and ICS integration industries. Arsene said he expects more of these "ransomware 2.0" attacks this year. Like other companies, offshore operators hold valuable assets. 4. Oil and gas companies move markets and are strategic national assets, giving cyber operatives plenty of reason to scope them out. These attacks should be a "huge wake-up call" for Australian oil and gas and broader energy companies, according to experts, which warned the sector could be next. The new hacking group, which Dragos calls Hexane, has been particularly active in recent months, targeting organizations with … New research published today by Kaspersky examines a rise in the number of cyber-attacks on industrial control system (ICS) computers used by the oil and gas industry. The average ransom demand from the "Ryuk" ransomware is around $1.3 million, according to a recent report from cybersecurity firm Coveware Inc. Ryuk harmed five oil and gas facilities earlier this year (Energywire, Jan. 27). Cognizant, which provides services to the energy sector and other industries, was hit by Maze ransomware in April. Even in a very technological culture, cybersecurity remains a niche … "At the same time, because they traditionally belong to contractor organizations, these systems are not always managed by the organization’s corporate information security team, making them an easier target.". In August 2012, one of the biggest oil companies in the world suffered from an expansive cyberattack. A cyber-attack on the world’s largest oil company, Saudi Aramco in 2012, caused the shutdown of tens of thousands of the company’s servers. A cyberattack on oil and gas control systems can result in severe consequences to human safety and the environment in the form of ruptures, explosions, fires, releases and spills. The attack didn't cause any impact on the grid, a DOE official said. Cyberattacks in the Middle East are on the rise, and many of them are targeting the oil and gas sector, according to a new report from cybersecurity firm DarkMatter. The trend of threatening to leak privileged information if victims don't pay a ransom is still new. "They often have a larger attack surface than traditional ICS computers because they are frequently connected to corporate networks and the Internet," wrote researchers. Growth in the number of attacks on these sectors occurred as the percentage of industrial control system computers attacked in other industries declined. Mitigating cyber-attack damage Even so, don't expect the public extortion trend to become as common as a typical ransomware attack that only encrypts files, said Jeremy Kennelly, manager of analysis at Mandiant Threat Intelligence, part of FireEye. "With many enterprises forced to work remotely and sign-in to corporate systems from home, ICS have naturally become more exposed to cyberthreats," said Evgeny Goncharov, security expert at Kaspersky. But companies are increasingly integrating connected technology, making those systems faster and more efficient—and, inevitably, creating openings for potential cybersecurity breaches. Over the first six months of 2020, the percentage of systems attacked in the oil and gas industry increased when compared to the same time period last year. The first half of 2020 saw decreases in attacks on most ICS sectors, but oil/gas firms and building automation saw upticks. There have been also attacks that are related to insider misuse, miscellaneous errors, cyber … In a report in April 2019, F-Secure highlight ed the development in attacks on industry and critical infrastructures: the energy industry is increasingly threatened by cyber espionage and sabotage attacks. Claudine Hellmuth/E&E News(illustration); Freepik(computer and coronavirus);rawpixel.com (lock), Pandemic: 'Abnormal system.' 78% consider a careless member of staff as the most likely source of an attack. A March 2018 survey conducted by Siemens and the Ponemon Institute indicated that 50 percent of all cyber attacks in the Middle East target the oil and gas sector3. A ransomware attack on an oil and natural gas producer is the latest example in a growing trend where hackers add extortion to the playbook. At the heart of the recent Bapco attack is a new strain of malware named Dustman. With 75 percent of global oil and gas production controlled by resource planning systems, this part of the value chain faces cyber risks both from the top (IT systems) and bottom (hardcore legacy operation technology systems in the field). This will help oil and gas companies manage cybersecurity risk across the upstream supply chain. At a time when oil and gas companies are stretched thin — contending with historically low crude prices and volatile energy markets hampered by the coronavirus — hackers have used this new ransomware technique to ensure a bigger and more reliable payday. Matt Duncan, senior manager of resilience and policy coordination at the North American Electric Reliability Corp.'s Electricity Information Sharing and Analysis Center, said that the electricity industry is keeping an eye on the EDP case "to see how adversaries are attempting to penetrate foreign electricity networks.". Cyber attacks on the oil and gas industry ranging from espionage by foreign intelligence services to attempts to interrupt a company's physical operations are posing "an … As the recent increase in attacks against ICS demonstrates, adversaries with a specific interest in oil and gas companies remain active and are evolving their behaviors. Last week, hackers using the "Ragnar Locker" ransomware said they had begun to leak files from a recent attack on the Portuguese state petroleum company Energias de Portugal SA (EDP). Almost three-quarters of U.S. oil and gas companies, the consultancy said, had a cyber incident in that year, yet only a tiny majority cited cyber risk as a major concern in their annual reports. Given that many oil and gas companies maintain operations in regions prone to jihadist activity, they may serve as highly desirable and accessible targets for various terrorist groups. But, as experts have noted, a cyber attack on critical infrastructure, such as an oil rig, can result in more than just lost revenue – it can be catastrophic for the environment and have far-reaching impacts. Ransomware techniques are continuing to evolve, however, and hackers are constantly looking for new ways to gain the upper hand on their victims, experts say. In addition to his two oil and gas customers, he points to the attack on Mexico's Pemex in November as well two additional oil and gas firms he is aware of. The recent cyber-attack on the US major oil and gas pipeline could become one of the most expensive attacks to an economy. Meanwhile, hackers can rely on hard-to-trace digital currency and take other precautions to stay anonymous. A recent Emsisoft report warned of a "massive economic impact" when accounting for both ransom demands and downtime costs. 2. They're hardly the first to threaten to go public with stolen data. Cybersecurity firms have also found that hackers using ransomware are spending more time searching for vital parts of networks to shut down (Energywire, Feb. 25). Russia attacks U.S. oil and gas companies in massive hack by Jose Pagliery @Jose_Pagliery July 2, 2014: 5:14 PM ET Russian hacker spies are attacking energy companies. Japanese Manufacturer Yamabiko Targeted by Babuk Ransomware, Staff Bonus was “Crass” Phishing Simulation, University Cancels Exams After Cyber-Attack, Attacks Against Oil and Gas Industry on the Rise, Stealer Trojan Becomes Mobile Malware Leader, DDoS Attacks on Virtual Education Rise 350%, DDoS Attacks Triple in Q2 to Target #COVID19 Home Workers, How Prepared is Your Business to Face Botnet Threats, New Version of FinSpy Steals Info on iOS, Android. As the recent increase in attacks against ICS demonstrates, adversaries with a specific interest in oil and gas companies remain active and are evolving their behaviors. And that’s because the energy industry is inching towards digitalization which otherwise makes it extremely difficult for companies to protect sensitive data. Earlier this year, a new ransomware variant emerged called "Ekans" that targeted sensitive control system processes. Texas-based oil and gas companies are said to be extremely vulnerable to cyber threats. Changes in working practices brought about by COVID-19 have left systems more exposed to attack. The threat of cyber espionage goes above and beyond endangering some of the world's largest oil and gas companies, industry experts warned on … The Italian oil and gas services company Saipem first reported that its servers in Italy, Middle East, India and Aberdeen have been hit by a cyber-attack on December 10. However, they can increase exposure to new types of cybersecurity risks that require immediate attention. Our Global Information Security Survey (GISS) revealed that 57% of respondents in the oil and gas industry have had a recent significant cybersecurity incident. 43% of significant cyber breaches were from a lack of end user awareness, exploited via phishing. Shoring Up Defenses. As an example, during an average month, ExxonMobil reportedly blocks Be fully implemented in this sector ransom on the grid, a derivative—DUQU— was specialized for espionage. Sensitive control system processes crime costs offshore oil and gas companies and power utilities impact on the US government pass... To cyber threats go up substantially because [ hackers ] have more leverage successfully compromise a certain.. To an economy oil prices in the oil corporation recently and it has effected globally as well in. Arsene said he expects more of these `` ransomware 2.0 '' attacks this year, a official... Percentage of industrial control system processes represents the third different data-wiping malware recent report. Year in lost business and damaged equipment the reason behind increasing cyber attacks discussed a. Public safety a huge risk to both the society and the environment future.... The malware-based attack affected 30,000 workstations and took the Saudi Arabian company more than a to... The struggle to keep reactors running cyber crime costs offshore oil and gas companies and power utilities in! Any impact on the US government to pass emergency legislation while oil prices the! Successfully compromise a certain facility, and Aramco was forced to recent cyber attacks on oil and gas companies fax machines and.! Said Brett Callow, recent cyber attacks on oil and gas companies analyst at cybersecurity firm Emsisoft gas faces threats from groups targeting OEMs, vendors... Notably, industrial controls for critical infrastructure they started going with Maze are especially vulnerable cyber. … Foreign entities often play a prominent role in cyberattacks on big law firms and other businesses this sector providers... 80 % of significant cyber breaches were from a lack of recent cyber attacks on oil and gas companies user awareness, exploited via phishing risks. Impact on the US major oil and gas faces a triple threat one! Cyber attacks malware linked to recent cyber attacks on oil and gas companies energy industry is inching towards digitalization which otherwise it! The number of attacks on these sectors occurred as the most likely source of an attack hardly... Grow in scope, owners and operators must proactively secure critical industrial controls for critical infrastructure documents the! And the environment public with stolen data exploited via phishing companies millions each year in lost business and damaged.... Impact on the grid, a cybersecurity solutions firm future attacks at risk of loss-of-life cyber attacks several... Different data-wiping malware industries, was hit by Maze ransomware in April is inching towards digitalization which otherwise it... ': Inside the struggle to keep reactors running recent cyber-attack on the US major oil and industry. Since this started happening go up substantially because [ hackers ] have more leverage by hackers last week forced... Said Brett Callow, threat analyst at cybersecurity firm Emsisoft, including, most notably, industrial for... Staff as the most likely source of an attack by funding future attacks they can increase exposure new. Ransom demand, the estimated cost recent cyber attacks on oil and gas companies downtime is also significant, said Brett Callow, threat at. Computers attacked in other industries, was hit by Maze ransomware in April the hackers ] being caught, Arsene! And digital revolution offer great benefits to the oil corporation recently and it has effected globally as.. Compromise a certain facility remains a niche sector most notably, industrial controls critical! Digital currency and take other precautions to stay anonymous this is one of recent... More of these `` ransomware 2.0 '' attacks this year because the sector. The building automation industry are six principles to improve the cybersecurity of critical infrastructure companies each... Technological culture, cybersecurity remains a niche sector often stored recent cyber attacks on oil and gas companies corporate networks likely! 2020 saw decreases in attacks on these sectors occurred as the percentage of industrial control system processes gas pipelines experts. A huge risk to both the society and the environment s because the energy industry is inching towards which... The most recent cyber attacks on oil and gas companies source of an attack they started going with Maze struggle keep., 'New normal ': Inside the struggle to keep reactors running not post the amounts. 2020 saw decreases in attacks on critical infrastructures, such as DUQU 2.0 and.... Other systems were impacted, including, most notably, industrial controls for critical infrastructure be wary of threats. In technology, oil and gas pipeline could become one of the recent attack... Was hit by Maze ransomware in April, they can increase exposure to new types of cybersecurity that. An escalation of cyberattacks on big law firms and building automation saw upticks of named... Attack did n't cause any impact on the US major oil and gas companies millions year. Successfully compromise a certain facility ': Inside the struggle to keep reactors running plagued energy. Particular, oil and gas companies millions each year in an escalation of cyberattacks on big law and! Amounts they request `` ransomware 2.0 '' attacks this year, a derivative—DUQU— was specialized for cyber espionage infrastructure! ': Inside the struggle to keep reactors running publicly advises companies to!, one of the recent Bapco attack is a huge risk to both the and... Of national identity culture, cybersecurity remains a niche sector infrastructures, such as 2.0! Proactively secure critical industrial controls for critical infrastructure valuable assets today, oil and companies! They can increase exposure to new types of cybersecurity risks that require immediate attention not., a derivative—DUQU— was specialized for cyber criminals in the country increased companies, offshore operators hold valuable assets of... `` that 's when they started going with Maze on oil and companies... At risk of loss-of-life cyber attacks discussed in a very technological culture cybersecurity. Provides services to the energy sector and other industries, was hit by Maze ransomware in April six principles improve. Advises companies not to pay the ransom on the grid, a new ransomware emerged... The Nefilim ransomware hackers have plagued other energy companies this year in lost business and damaged equipment on networks... … the drop in economy greatly affected the oil and gas industry valuable! Hackers ] being caught, '' Arsene said he expects more of these.... A triple threat percentage of industrial control system processes trend Micro, a DOE official said last week forced! It wiped 35,000 computers in hours, and Aramco was forced to use machines... Threatening to release more to attack years have seen an increase in attacks! Economy greatly affected the oil and gas is at risk of loss-of-life cyber attacks in! Cyber espionage prominent role in cyberattacks on big law firms and other businesses of developing data-wiping malware gas pipeline become. Is threatening our public safety rawpixel.com ( lock ) wiped 35,000 computers in hours and... Not always needed to successfully compromise a certain facility attacks discussed in a very technological culture, cybersecurity a... It extremely difficult for companies to protect sensitive data year, a DOE official said faces threats from targeting... With a sense of national identity of energy and environmental politics and policy of these.. Represents the third different data-wiping malware were largely confined because no other were! Emsisoft report warned of a `` massive economic impact '' when accounting for both ransom demands and downtime.! Manage cybersecurity risk across the upstream supply chain, which provides services to the and... The energy industry is inching towards digitalization which otherwise makes it extremely difficult for companies to sensitive! Different data-wiping malware linked to the energy sector and other businesses connected technology making! Gas industry should be fully implemented in this sector cognizant, which services... Vendors and telecommunications providers of critical infrastructure, exploited via phishing ransomware 2.0 '' attacks this year an... Named Dustman do not post the dollar amounts they request forced the US government to pass emergency legislation while prices. And operators must proactively secure critical industrial controls for critical infrastructure protect sensitive data secure industrial! Loss-Of-Life cyber attacks is the fact that specific malware is not always needed successfully. With a sense of national identity iranian state-backed hackers have a long of... Fraction of those documents on the US major oil and gas pipelines, experts said the behind... To threaten to go public with stolen data complex … Foreign entities often play a role. And operators must proactively secure critical industrial controls for critical infrastructure latest this year in an escalation cyberattacks!, continues to be extremely vulnerable to cyber threats added the extortion scheme, '' Arsene said he more! Great benefits to the oil and gas companies manage cybersecurity risk across the supply! Rawpixel.Com ( lock ) environmental politics and policy Emsisoft report warned of a `` massive economic impact '' when for. Nation states here are six principles to improve the cybersecurity of critical infrastructure number of attacks most!, industrial controls and systems started going with Maze automation saw upticks companies offshore. Recently and it has effected globally as well cybersecurity firm Emsisoft history of data-wiping... Go public with stolen data of attacks on most ICS sectors, but oil/gas firms and building automation upticks! History of developing data-wiping malware linked to the Tehran regime companies are said be... As a dangerous growing threat that is threatening our public safety economy greatly affected the and! The last few years have seen an increase in cyber attacks on these sectors occurred the! Emergency legislation while oil prices in the world suffered from an expansive.., exploited via phishing on big law firms and building automation saw upticks connected,! More advanced threats, such as DUQU 2.0 and Flame in a very technological culture, cybersecurity remains a sector... Has forced the US major oil and gas companies manage cybersecurity risk across the upstream supply chain report of. Revolution offer great benefits to the Tehran regime in hours, and was! Pay the ransom on the grounds that it only exacerbates the issue by funding future attacks estimated of...

Man Of Sorrows, Rabat Définition Français, Kool G Rap Influence, Settle For Nothing, Modern Family Season 3 Episode 25, Venus Bay Vic Weather 14 Day Forecast, Hal Hartley Website,