USB devices pose a major cyber threat to OT systems

May 30, 2024

Cyberattacks on industrial facilities are becoming more advanced and more frequent, according to the latest edition of Honeywell’s annual USB Threat Report. It also shows that more than half (51%) of malware attacks on OT (operating technology) systems aim to introduce them via removable media such as USB sticks. The report shows that the number of targeted attacks via USB devices has increased almost sixfold from the 9% recorded in 2019.

The report, produced by Honeywell’s Global Analysis, Research and Defense Group, examines cyber threats originating from USB. It focuses on malware found on USB memory devices used to transfer files to, from and between industrial facilities. The analysis used Honeywell’s Secure Media Exchange (SMX) tool.

The report shows that cybercriminals are becoming more sophisticated and now have a good understanding of how industrial environments operate. This means they have the potential to cause more harm.

Other findings are that:

Malware increasingly attacks industrial facilities. Nearly a third (31%) of malware attacks now target industrial systems and websites – almost double the 16% reported in 2016.

Malware can cause loss of control, system crashes, or loss of view in OT environments. The study indicates that 82% of malware is capable of disrupting industrial operations through loss of view or control.

Many attackers use USB devices to achieve silent residency in industrial control systems Instead of simply exploiting vulnerabilities, many attackers hide and observe operations for some time before launching attacks that exploit system capabilities.

Honeywell: : Twitter LinkedIn Facebook