Manufacturing is becoming increasingly digitized as the industry is adopting automation, to a greater extent than ever before. The Industrial Internet of Things (IIoT) is bringing artificial intelligence, cloud computing and robotics into factories. Cyber-physical systems can now integrate all aspects of the supply chain, including operational systems and information systems, and are taking the place of outdated, siloed machines.
Any factory making use of these new technologies is known as a Smart Factory, and they’re prompting what experts are calling the fourth industrial revolution, or Industry 4.0. Smart Factories will help the manufacturing industry considerably, as digital technology can offer greater efficiency in the production stage, better quality products with fewer mistakes, and more flexibility for working processes.
What cybersecurity risks do manufacturers face?
The result of not securing the Smart Factory network is clear. The manufacturing industry is the third most targeted industry for cybercrime, just behind the finance and government sectors. Often, attackers are looking to do one of three things through their crime:
• Steal data – with client details stored on CRM systems, hackers might look to take this information and hold it to ransom
This happened in 2013 when American retailer Target was the victim of a data breach that allegedly saw the theft of personal details from between 70 and 110 million people. Attackers initially gained access through Target’s heating and air conditioning supplier – the manufacturer’s operational systems were hacked and due to their connection to Target’s IT infrastructure, it provided a gateway for the hackers to infiltrate.
Having confidential information stored on connected devices is essential. But the IoT means that information can be accessed in more ways than ever before, from laptops to smartphones or control panels. These devices offer a way for attackers to infiltrate the network and for manufacturers, increase the risk of industrial espionage.
Key questions every manufacturer should ask themselves
Are you investing enough in cybersecurity?
While governing bodies like the EU have begun to invest more in outlining cybersecurity standards, there’s a concern that there isn’t enough focus on the manufacturing industry and frameworks aren’t always relevant.
There’s still a lot of research to be done to identify the specific needs of manufacturers but investing in a range of security services including consultancy, training, software and hardware could help your business mature more quickly.
Do you have a clear response strategy to mitigate an attack?
12% of manufacturers surveyed said they had no technical or managerial measures to assess or mitigate a cyberattack. Without a proper response strategy, there’s a risk that it could take longer for the business to recover and this will intensify any damage caused – financial or otherwise.
Manufacturers should have an audit trail for compliance, and cyberattack insurance in place to provide support in the event of a data breach and for mitigation purposes. There also needs to be a clear management plan to minimize the effects. It’s thought that cyberattacks will only become more prevalent.
