Attacks aimed at SCADA networks are still much rarer than those targeting IT networks, but the number is slowly rising.
And, according to Radiflow CTO Yehonatan Kfir, there’s no time like the present to start using a consistent, evidence-based taxonomy to analyze them and learn from them.
“The current lack of a single taxonomy to analyze security incidents leads to difficulties in understanding the threat landscape in an unbiased way,” he opines.
Classifying and assessing OT attacks
In a recently published whitepaper, Kfir proposes a taxonomy that distinguishes between non-technical and technical properties. Each property has three “grades”.