How can manufacturers avoid a cyber-attack?
Author : Scott Fawcett, Divisional Managing Director, Essentra Components
11 September 2018
According to a recent study by EEF, almost half of all UK manufacturers have suffered a cyber-attack. Worryingly, 48% of those surveyed said they have been subject to a cyber security incident, and half of those suffered some financial loss or disruption to their business as a result. As Industry 4.0 pushes manufacturers to become digitised and data driven it is increasingly likely that many more of these attacks are likely to occur, with a number remaining undetected.
As manufacturers experience the benefits of automation and the rise in digitisation, the industry will become potentially more vulnerable to cyber-attacks. Manufacturers are realigning their operational models to take advantage of these technologies but must also be aware of the security risk these updates entail. Hackers could potentially hold a huge amount of power if they successfully break into a company’s server network and completely disrupt operations.
There are several key steps manufacturers must take to mitigate their chances of falling foul of a cyber-attack. One of the main risks associated with cyber-attacks is the simple fact that many companies are not aware of their digital vulnerabilities. For example, every piece of ‘smart’ equipment must have its own cyber-security policy and strategy and manufacturers must invest in using cyber-professionals to check, monitor for and flag any emerging threats. Companies must also set formal, frequent timeframes to reassess and update security controls.
Manufacturers must also be aware of the risk of hackers stealing data and embedding malware and ransomware. In 2017, hackers sent infected emails to manufacturers demanding $5,000 per manufacturer after Defray Ransomware was detected. Manufacturers are responsible for implementing strong, virtual padlocks across their entire IT system for all manufacturing processes. Always change factory-set usernames and passwords and ensure each system has its unique set. Use different identification, two-factor authentication methods as well as encrypting your IP and key data. It’s also important to implement firewalls which will protect the wider connected network and deep pocket inspection software monitors your network and routers.
Needless to say cyber-attacks can also seriously damage a company’s reputation and finances. AI can be used to detect attacks by identifying failed login attempts and slower networks, which will alert the relevant individuals. All employees should also undertake a cyber training course to ensure individuals are aware of key threats and who to inform if there is an attack. Manufacturers should also know what to do immediately after an attack such as restoring backed-up data and immediately informing customers and suppliers.
Finally, a recent study by the US National Institute of Standards and Technology revealed that 80% of all information breaches originate in the supply chain, yet only 59% of companies assess their suppliers’ cyber-security policies. When choosing new technology, cyber security challenges must be a priority for all vendors. It is up to the manufacturer to question the supply chain and ensure they are following company procedure. If a supplier is using collaborative software, ensure you meet regularly with these partners and customers to discuss new cyber-threats and responses.
As the industry continues to adapt to the demands of Industry 4.0 through the complete automation and digitisation of manufacturing processes, it’s important that manufacturers are aware of the ever-changing security threats posed by updating both equipment and hardware and software. Manufacturers can take advantage of Essentra Component’s Industry 4.0 Hub which is full of content aimed to demystify the fourth industrial revolution. Those wanting to compete on a global scale must digitise day to day manufacturing processes now.
For more information about Essentra Components go to: http://www.essentracomponents.com/en-gb.
Contact Details and Archive...