Systems for manufacturing and process automation - summarized under the term Industrial Control Systems (ICS, IACS) - are used in almost all infrastructures that handle physical processes. This ranges from energy generation and distribution to gas and water supply, factory automation, traffic control technology and modern building management. Such ICS are increasingly exposed to the same cyberattacks as conventional IT. Operators need to urgently address this issue in light of an increasing frequency of incidents and newly discovered vulnerabilities.Hence, they have to consider the risk and damage potential of untargeted malware as well as targeted, high-quality attacks against ICS infrastructures. This applies both to systems that are directly connected to the Internet and to those that can be attacked indirectly by cyberattacks.
[Deutsche Version]