Offering complementary experience sets and market knowledge, Thales and GE have published a joint cyber threat intelligence report that provides unprecedented analysis about threats in the energy sector. The landscape of cyber threats to the power generation industry follows the evolution of cyber threats in the broadest sense, the report suggests. “It evolves, becomes more complex and requires permanent and specialised monitoring.”
According to the report:
- Up to 10% of cyber attacks on operations like power plants are led by highly effective threat actors, whether state-sponsored or cyber criminals. The growing intertwining of companies’ information technology (IT) and operations technology (OT) systems allows attackers to create bridges between any machine and the core infrastructure. While vulnerabilities in IT environments are mostly understood and managed, OT vulnerabilities still lack attention.
- Industrial control systems (ICS) and supervisory control and data acquisition (SCADA) systems are more and more targeted by cyber attacks, especially from state-sponsored groups who know how to exploit the possibility of harshly targeting these systems in the event of international conflicts.
It has become vital for power generation operators to get specific and regular training to understand what they are fighting and how to better protect their systems. Through their new partnership, Thales and GE say they are joining forces to perform joint training for power plant operators.
As part of the agreement, GE has already installed equipment at the National Digital Exploitation Centre (NDEC), created by Thales and the Welsh government for cyber and digital development and education, in order to carry out demonstrations of cyber-attacks and response scenarios using Thales’s Cyber Range and GE hardware.
