The global health crisis has significantly altered day-to-day engagements, transforming in-person activities into distant, digital-focused interactions. From telecommuting to physical distancing, various sectors are swiftly adjusting to the current reality. Manufacturing plants are not exempt and are presently accommodating the new requirements brought about by the impact of COVID-19. Here, we highlight two instances of shifts that factories have embraced.
- Rapid Transition to Automation: Instead of relying solely on manual labor, factories are hastening their shift toward automated production lines to mitigate the consequences of staff being unable to report to work due to the pandemic. However, as automation involves a greater number of devices being linked to the Internet, the susceptibility to cyber intrusions has heightened significantly.
- Enhance Information Security: In the past, all manufacturing tools and employees were located within the factory premises. That dynamic is changing, with factories now managing operations remotely. As the workforce starts operating from remote locations, the cybersecurity measures within the factory need to expand to cover any equipment that employees utilize remotely, as these devices are particularly prone to cyber threats.
In response to these challenges, Moxa’s Jesse Ku, an expert in industrial control system cybersecurity, who holds IEC 62443 certification and has extensive experience in safeguarding critical national infrastructure, has suggested a five-step “S.M.A.R.T.” cybersecurity approach:
- Check what you wish to protect: In the realm of cybersecurity, the simplest solution is often the most effective. By routinely scanning the computers and control devices in the factory with antivirus tools for viruses, unauthorized updates, and malicious software, the risk of unforeseen downtime can be significantly minimized. With the rise of remote work in the manufacturing sector, this primary defense line needs to encompass all devices used by employees remotely to ensure comprehensive protection.
- Supervise security architecture: It is crucial to maintain stable and easily manageable networks within a factory. The recommended defense-in-depth approach, favored by cybersecurity experts, which involves employing multiple layers of security controls, is sometimes overlooked due to its complexity. Nevertheless, as factories increasingly invest in automation, cybersecurity management, such as network segmentation — for instance, setting up a firewall between the automation tools and the management server — becomes indispensable. Implementing these protocols promptly can heighten the security of sensitive data.
- Boost patching pace: In the past, the main priorities for factory operations were ensuring employee safety and sustaining smooth production. Unfortunately, updates provided by equipment manufacturers are at times neglected if the equipment is functioning as required. This oversight in applying security patches can have severe consequences, leaving the software vulnerable and open to cyber breaches. According to a report by Trend Micro[1], cybersecurity incidents related to how data is stored in industrial control devices have increased dramatically since 2014. It is crucial to keep in mind that software vulnerabilities can lead to severe repercussions if not addressed promptly.
- Secure remote control: With working from home becoming prevalent, the practice of connecting personal computers to company servers remotely has heightened. Nonetheless, this raises significant cybersecurity concerns. Therefore, security measures such as multi-factor authentication (MFA) and user verification should be put in place to mitigate the risk of cyber intrusions.
- Educate everyone: Establishing a secure network requires the involvement of every individual who accesses it. By imparting the significance of network security via suitable training sessions, elucidating the rationale behind specific decisions, and outlining the corresponding adjustments to protocols, the chances of successfully implementing security policies are increased. Moreover, equipping employees with a thorough comprehension of forthcoming changes enables them to adapt seamlessly to the new security procedures and guidelines.
As the efficiency of automation technologies advances, older OT network devices become more susceptible to security vulnerabilities. Regrettably, these security gaps, coupled with the absence of security training for factory personnel, have rendered factories susceptible to malevolent attacks. For instance, in June 2020, a cyberattack targeted a server at automobile manufacturer Honda, resulting in the shutdown of numerous factories across different countries. Thousands of staff members had to be sent home, awaiting the resumption of operations. Another instance involves Norsk Hydro, a prominent aluminum producer, which encountered a malware attack in 2019, compelling an emergency shift from automated to manual operations on the primary production line. It took Norsk Hydro over a week to restore production to normal levels, leading to estimated losses exceeding USD 75 million.
With factories gradually becoming more automated and intelligent, a thorough reassessment of their existing security strategy is imperative. The pandemic has not only altered societal norms but also influenced our work practices. As remote work becomes standard practice, the future of network security emerges as a pivotal new frontier for every smart factory manager.
Delve deeper into insights from our ISA cybersecurity expert by reading the white paper: Can a Solution Provider Manage Industrial Cybersecurity? 8 Questions to Pose
References:
1. “Secure Smart Factories-Threats to Manufacturing Environments in the Era of Industry 4.0”, Trend Micro, 2019.
- Not Only for Automobiles: Discovering CANbus Technology in Various Industrial Settings - October 29, 2024
- Boost Your Network Performance: An Exciting Manual to PoE Switches! - September 10, 2024
- Understanding Gigabit Switches: Industrial vs Regular Gigabit - September 4, 2024