June 2020

MANUFACTURING IS the sector of the UK economy most commonly attacked by cyber- criminals, according to a new analysis by the global technology services provider, NTT. Last year, almost a third (29%) of all cyber-attacks in the UK were targeted at manufacturers, followed by the technology sector (19%) and business and professional services (17%). According to NTT’s 2020 Global Threat Intelligence Report , the UK and Hong Kong are the only locations where manufacturing tops the list of most-attacked sectors. In Hong Kong, manufacturing accounts for 46% of all cyber-attacks. Reconnaissance activity (60%) was the most common form of attack on UK and Irish manufacturers, followed by Web application attacks (36%). Across the UK economy as a whole, reconnaissance attacks account for half of all hostile activity, followed by Web applications on 22%. “UK manufacturing has become a major target for attackers in recent years as a result of the increased risks brought about from the convergence of IT and operational technology (OT),” explains Rory Duncan, NTT’s security go-to-market leader. “The biggest worry is that security has lagged behind in this sector, potentially exposing systems and processes to attack. “Poor OT security is a legacy issue,” he adds. “Many systems were designed with efficiency, throughput and regulatory compliance in mind, rather than security. In the past, OT also relied on a form of ‘security through obscurity’. The protocols, formats and interfaces in these systems were often complex and proprietary and different from those in IT systems, so it was difficult for attackers to mount a successful attack. As more and more systems come online, hackers are innovating and see these systems as ripe for attack.” Globally, cyber-attacks on manufacturing are usually linked to intellectual property (IP) theft, but the sector is increasingly facing financially motivated data breaches, global supply chain threats, and risks from unpatched vulnerabilities. Manufacturing accounts for 25% of cyber- attacks identified in Japan, 21% of those in Germany, and 20% in the Americas. The NTT report – the eighth in an annual series – finds that attackers have been investing in automation techniques, and developing multi-function attack tools that use artificial intelligence (AI) and machine learning. It also reports that 21% of global attacks took the form of scanners purportedly looking for vulnerabilities. The NTT report analyses and summarises trends based on data from trillions of logs and billions of attacks. It describes 2019 as a“year of enforcement”with the number of governance, risk and compliance (GRC) initiatives growing, creating a challenging global regulatory landscape. It offers recommendations to help navigate compliance, including identifying acceptable risk levels, building cyber-resilience and implementing secure-by-design systems. https://hello.global.ntt June 2020 www.drivesncontrols.com 10 n NEWS Manufacturing is main target for cyber-attackers in the UK BY EQUIPPING factory workers with personal transponders, Siemens has created a way for companies to model how their employees interact with each other, and with production lines and plant designs. The technology, based on proven hardware and software, will allow organisations to create digital twins that simulate worker safety, and can optimise workspace layouts and validate safety and efficiency measures. The Simatic Real Time Locating Systems (RTLS) tool measures distances between workers continuously, provides themwith real-time visual feedback on their spacing from others, and creates a log of their movements and interactions over time. It facilitates safe distancing continuously and provides other benefits, according to Siemens, which says that that the system can be implemented in a week or two. Combining RTLS with a digital twin of a manufacturing environment will allow companies to model and simulate how their employees are interacting with equipment and with each other. This will help to optimise safety and productivity in the short term, and validate redesigns of entire operations before any costly physical changes are made. To implement RTLS, transponders are embedded in badges worn as personal protective equipment by all employees. Receivers located across a site can then track and record their movements continuously. When two employees are in a potentially risky situation – being less than 2m apart, for example – their badges will display a warning. Data collected over time can be analysed to identify“hot spots”where risky situations occur frequently. Using the collected data, newmanufacturing layouts or workflows can be simulated until one is found that delivers the desired outcomes – and can then be implemented. Manufacturers will be able to add traceability through on-premise systems or applications such as Siemens’Trusted Traceability Application on its MindSphere cloud platform, which will help to perform rapid contact analysis in the event of any illness. All movements and contacts with affected employees can be visualised, allowing rapid notification to those who have come into close contact, as well as selective (rather than site-wide) deep- cleaning of physical environments. “We are helping our customers create a safe work environment, which is extremely important as they look to produce efficiently and reliably under unprecedented circumstances,”says Tony Hemmelgarn, president and CEO of Siemens Digital Industries Software.“The combination of real-time distancing management and digital simulations will help companies maintain safe work environments today and make educated decisions about ongoing and long-term optimisation.” https://new.siemens.com/global/en Siemens suggests using digital twins to keep factories safe The NTT's cyber-security report is based on analyses of cyber-threats around the world