Analysis Reveals High-Risk Cybersecurity Vulnerabilities in Power and Healthcare Sectors

  • Last updated May 15, 2024
  • written by
    Editor

Claroty’s research division recently conducted a comprehensive analysis of over 20 million assets across operational technology (OT), Internet of Medical Things (IoMT), IoT, and IT sectors in cyber-physical systems (CPS) environments.

Their findings reveal significant vulnerabilities, particularly in assets classified as “high risk” due to factors like insecure internet connections and the presence of known exploited vulnerabilities (KEVs).

The study emphasized recognizing and addressing risks in systems crucial to public infrastructure and healthcare. Amir Preminger, VP of Research at Claroty, stressed the critical nature of these findings.

According to the research, 23% of industrial OT and 22% of medical devices scored CVSS v3.1 ratings of 9.0 or higher, underscoring the challenge of patching such a vast number of vulnerabilities. However, by prioritizing assets based on a combination of risk factors, organizations can more effectively identify and mitigate those at the highest risk of exploitation.

The report highlighted that 1.6% of OT and IoMT assets are at the pinnacle of risk due to their insecure internet connections and the presence of at least one KEV, representing tens of thousands of CPS assets vulnerable to remote attacks.

Claroty’s findings challenge the traditional vulnerability management approaches, which often overlook 38% of the most critical risks due to reliance solely on CVSS scores. This has led to a call for a shift towards Continuous Threat Exposure Management (CTEM), as supported by insights from Gartner.

Grant Geyer, CPO at Claroty, further underscored the necessity for a paradigm shift in how organizations manage cyber risks.

 

VPNRanks predicts that approximately 74.4% of organizations will fall victim to ransomware attacks. Data breaches are also expected to rise sharply, potentially exceeding 3,000 incidents in 2024. In contrast, the average cost of these breaches is anticipated to climb to around $4.65 million, reflecting a continuing upward trend in financial impact.

This groundbreaking research by Claroty underscores the urgent need for enhanced cybersecurity measures in critical infrastructures, pushing for a more nuanced and effective approach to safeguarding essential services against cyber threats.

In response to the identified cybersecurity vulnerabilities, experts recommend that organizations bolster their defenses using the best VPN services. Implementing top-rated VPNs can provide an added layer of security, ensuring encrypted connections and safeguarding sensitive data from potential cyber threats.


Leave a Reply

Your email address will not be published. Required fields are marked *