Reported cyber incidents to ICS-CERT are down for the first half of the fiscal year, but don’t think that is because there were fewer events, it could be because fewer organizations are reporting attacks.
In the first half of FY 2015 (October 2014 through April 2015), ICS-CERT responded to 108 cyber incidents on the critical infrastructure in the United States, according to a report in the ICS-CERT Monitor. As in previous years, the energy sector continues to lead all others with the most reported incidents, with electricity at 13 incidents, petroleum, 9, natural gas, 4, and miscellaneous, 3, totaling 28 percent. The water and critical manufacturing sectors came in second and third with incidents reported with 19 percent and 18 percent respectively.
Incident reporting is slightly below the pace for FY 2014.
ICS-CERT and DHS remained concerned, though, with the lower percentage of reporting directly by asset owners, the Monitor report said. Just over one-quarter of the reported incidents to ICS-CERT are coming directly from owners and operators, while federal partners, researchers, and open source media are the primary sources of reported incidents. In several cases, internal DHS analysis of data obtained through our partnerships in the cyber security community helped to uncover new incidents.
2015 Energy Industry Cybersecurity Report
Strategic Cybersecurity: A Toolkit for Prioritizing, Coordinating,
and Transforming Your Cybersecurity Program