Exploring the True Attack Surface of Industrial Control Systems
In their third annual State of the Internet Report, the Censys Research Team is back with fresh insights into the state of internet security and its implications for organizations and their security teams.
This year, the team focuses specifically on the security of Industrial Control Systems (ICS) to understand the extent of exposures across these Internet-connected devices, many of which are relevant to critical infrastructure operations.
What You’ll Find in the Report:
Key findings from this year’s report include:
- Global Exposures: Censys observed over 145,000 exposed ICS services around the world; 38% of these services were in North America, 35% were in Europe, and 22% were in Asia.
- C-More Human-Machine Interface (HMI) Exposures: Of the HMIs exposed to the public internet that Censys analyzed, 34% were water and wastewater related, while 23% were associated with agricultural processes.
- Prohibited Vendors: 200 hosts were observed running HMIs that were also running products from vendors explicitly prohibited by the U.S.’s National Defense Authorization Act (NDAA) Section 889.
- ICS Protocol Exposures: Censys finds that most observed ICS services and HMIs run on mobile or consumer and business-grade ISPs, which make it difficult to attribute ownership and intended purpose.
Get your copy of The 2024 State of the Internet Report to learn more about these exposures and their implications for critical infrastructure security.
