Kaspersky Research Finds ICS Energy Sector Under the Highest Cyberthreat Pressure

EIN Kapersky 400

Oct 23, 2019

According to the recent Kaspersky ICS CERT report, a concerning percentage of industrial control system (ICS) computers in the energy sector globally were targeted by cyberattacks in the first six months of 2019. Of the Kaspersky solutions installed on ICS computers, 41.6% experienced and blocked a cyber threat. The three main cyber threats detected in energy ICS environments included worms (7.1%), spyware (3.7%) and cryptocurrency miners (2.9%).

Industrial cyber incidents are among the most dangerous cyberattacks as they typically result in production downtime, tangible financial losses and are difficult to overcome. This is especially true when incidents occur in critical, life-supporting sectors such as energy. Malware infections can also negatively affect the availability and integrity of ICS and other systems that are part of the industrial network.

Among the threats that were detected in H1 2019, a few were particularly unique. This includes Agent Tesla, a specialized Trojan spy malware designed to steal authentication data, screenshots and data captured from web cameras and keyboards. Kaspersky products also identified and blocked cases of the Meterpreter backdoor which was being used to remotely control computers on the industrial networks of energy systems. Attacks that use the backdoor are targeted and often conducted in manual mode. Syswin, a new wiper worm written in Python and packed into the Windows executable format, was also detected. This threat can have a significant impact on ICS computers due to its ability to self-propagate and destroy data.

Kaspersky experts also analyzed the automotive manufacturing (39.3%) and building automation (37.8%) industries, taking the second and the third place respectively to the percentage of ICS computers on which malicious objects were blocked.

Additional report findings include:

  • On average, ICS computers do not operate entirely inside the security perimeter of typical corporate environments, meaning tasks related to protecting the ICS and corporate segment are, to some extent, unrelated.
  • Generally, the level of malicious activity inside the ICS segment is connected with malware activity happening in the country where the ICS environment is located.
  • In countries where the security of ICS is favorable, low levels of compromised ICS computers are attributable to protection measures and tools that are in place rather than a limited level of malicious activity.
  • Self-propagating malicious programs are very active in some countries. In the cases analyzed, these were worms designed to infect removable media (USB flash drives, removable hard drives, mobile phones, etc.). It appears that infections with worms via removable media is the most common infection scenario for ICS computers.

Source

Related Articles


Latest Articles


Changing Scene

  • BC Hydro Making it Easier and More Affordable to Connect New Homes

    BC Hydro Making it Easier and More Affordable to Connect New Homes

    July 24, 2025 BC Hydro is supporting the construction of new housing developments in growing communities by advancing changes to streamline upgrades and reducing the cost of new customer connections to BC Hydro’s electricity grid. “As communities across B.C. grow, so does the need for essential housing. We are committed to ensuring we’re ready to… Read More…

  • Mitrex Sets Record with Largest BIPV Solar Panel Mural at SunRise Residential in Edmonton

    Mitrex Sets Record with Largest BIPV Solar Panel Mural at SunRise Residential in Edmonton

    July 22, 2025 Building-Integrated Photovoltaics (BIPV) manufacturer, Mitrex proudly announces that its transformative SunRise Residential project in Edmonton, Alberta, has earned the Guinness World Record for the largest solar panel mural globally. This landmark project showcases Mitrex’s innovative BIPV solar panels, blending cutting-edge solar technology with vibrant cultural artistry to redefine sustainable architecture. Sustainable Architecture with BIPV Spanning over 30,000 square feet, the Mitrex eFacade PRO plus… Read More…

  • Nexans Unveils a Cable Made with 100% Recycled Materials

    Nexans Unveils a Cable Made with 100% Recycled Materials

    July 24, 2025 Nexans has reached a major milestone in its sustainability journey by developing a prototype cable made entirely from recycled materials — a first in the company’s history. This innovation combines technical performance, industrial feasibility, and a drastically reduced environmental footprint, marking a decisive step forward in circular economy. A cross-continental success story… Read More…

  • EFC Welcomes New Manufacturer Member: MGM Transformers

    EFC Welcomes New Manufacturer Member: MGM Transformers

    July 24, 2025 Since 1974, MGM Transformers has produced tough and trusted transformers designed to get the job done right. As a leading manufacturer, the company employs a highly experienced and dedicated engineering team that excels in custom designs. MGM Transformers is committed to excellent quality and service, offering industry-leading lead times and exceptional customer service. MGM Transformers specializes… Read More…