Kaspersky and SADAFCO elevate cyber literacy in a critical infrastructure sector

Kaspersky and Saudia Dairy and Food Stuff Company (SADAFCO) joined efforts to share best practices and elevate cybersecurity awareness within the critical infrastructure sector in the Middle East.

According to the ICS CERT landscape report by Kaspersky, malicious objects of all types were detected and blocked on 34% of Industrial Control System (ICS) computers in the first half of 2023. In the Middle East over this period attacks were detected on 36.8% of ICS computers, which is higher than the global average. The top industries under attack were energy (38.4%), oil & gas (31.0%), and manufacturing (21.4%). All these attacks were blocked after detection.

ICS computers are used in oil & gas, energy, automotive manufacturing, building automation infrastructures and other spheres to perform a range of OT functions – from the workstations of engineers and operators to supervisory control and data acquisition (SCADA) servers and Human Machine Interface (HMI). Cyberattacks on industrial computers are considered to be extremely dangerous as they may cause material losses and production downtime for the controlled production line and even the facility as the whole. Moreover, industrial enterprises put out of service can seriously undermine a region’s social welfare, ecology and macroeconomics.

There are different types of cyberthreats that Industrial Control Systems face – malicious scripts, spy trojans, worms, ransomware, among others. The Middle East was one of the regions with the highest percentage of ICS computers on which malicious scripts and phishing pages were blocked in the first half of 2023 (14.3% in the Middle East compared to 12.7% global average). Malicious scripts serve a broad range of goals: from collecting data, tracking and forwarding users to malicious websites, to downloading various malware, such as spyware and/or covert crypto miners, to the system or the browser.

Spyware is another prominent threat for ICS. The Middle East had a high percentage of ICS computers on which spyware was blocked in the first half of 2023 (8.3%).The global average stands at 6.1%.

The Middle East was also one of the regions with the highest percentage of ICS computers attacked by ransomware in the first half of 2023 (0.56% vs. 0.32% global average).

Mission critical applications heavily leveraged within the critical infrastructure sector are often used as gateways or targets of evolving cyberthreats. To mitigate the consequences, ensuring compliance with data privacy legislation in terms of data collection, handling, storage, deletion and governance of third-party partners has become mandatory.

“The food industry is part of the critical infrastructure sector and protecting it against evolving cyberattacks from different threat actors is a national priority in Saudi Arabia. As digital transformation gains momentum, cybersecurity must be a vital consideration, from the product evaluation and development stage, to testing and delivery. While technical defences are crucial, so is awareness among the workforce. We strongly believe that training and education needs to be a continuous process. Our measures at SADAFCO are designed to the highest possible standards and follow three core tenets – cybersecurity training, communication and accountability. We have implemented an annual calendar of targeted cybersecurity training and education activities that are endorsed at all levels of our business management team. We are pleased that we have taken steps to protect our company and thereby contribute to the broader goal of safeguarding critical industries in Saudi Arabia”, said Shrikanth Andali, CIO at Saudia Dairy and Food Stuff Company.

“When it comes to ICS, all world regions have their specifics. The Middle East is a major global energy hub, with numerous critical infrastructure facilities, including oil and gas refineries. Protecting these facilities from cyber threats is of paramount importance to ensure a stable energy supply worldwide. It should also be noted that many Middle Eastern countries are undergoing rapid industrialisation and modernisation, often involving the deployment of new ICS technologies. These systems may not have robust cybersecurity measures in place, making them potential targets,” comments Evgeny Goncharov, Head of Kaspersky ICS CERT. “By understanding the risks related to ICS, organizations can make informed decisions, allocate resources wisely, and efficiently fortify their defences. In doing so, they not only protect their bottom line but also contribute to a safer and more secure digital ecosystem for all”.

To understand more about the ICS threat landscape, meet the Kaspersky experts at Stand H25-A30, Hall 25 at GITEX Global 2023, or read more here.

To keep your OT computers protected from various threats, Kaspersky experts recommend:

Conducting regular security assessments of OT systems to identify and eliminate possible cyber security issues.
Establishing continuous vulnerability assessment and triage as a basement for effective vulnerability management process. Dedicated solutions like Kaspersky Industrial CyberSecurity may become an efficient assistant and a source of unique actionable information, not fully available in public.
Performing timely updates for the key components of the enterprise’s OT network; applying security fixes and patches or implementing compensating measures as soon as it is technically possible is crucial for preventing a major incident that might cost millions due to the interruption of the production process.
Using EDR solutions such as Kaspersky Endpoint Detection and Response for timely detection of sophisticated threats, investigation, and effective remediation of incidents.
Improving the response to new and advanced malicious techniques by building and strengthening your teams’ incident prevention, detection, and response skills. Dedicated OT security trainings for IT security teams and OT personnel is one of the key measures helping to achieve this.

To equip your organisation with the right knowledge and tools, SADAFCO recommends:

With one wrong click potentially having major security consequences, educating and training the workforce must be a priority; it is the first line of defence against malicious attacks.
Implement robust Environmental, Social, and Corporate Governance (ESG) practices that ensure strategic and operational alignment across all parts of the business.
Review and evaluate cybersecurity and data privacy governance processes.
Track your company KPIs against committed ESG metrics.
Maintain transparency on cybersecurity measures across all levels of the workforce via regular corporate communications.

Survey reveals misalignment between cybersecurity and business goals in the UAE and KSA

Bybit opens global headquarters in Dubai on the heels of 50% increase in user base

DIFC Courts reinforces its commitment to sustainability following expansion of its digital infrastructure

NETSCOUT adds new data centre presence in Dubai with added Arbor Cloud Capabilities

Dubai ranks as the second most crypto-ready city in the world

LinkShadow reinforces its commitment to Saudi Arabia

Huawei Cloud’s Riyadh launch boosts Saudi tech advancement

Cisco unveils new data centre to enhance security services in Saudi Arabia

Survey reveals misalignment between cybersecurity and business goals in the UAE and KSA

Google Cloud announce significant new collaboration with Saudi Pharmaceuticals giant

KROHNE delivers insights to inspire the next generation of engineers in Oman

Oracle supports major project to accelerate Oman digital economy

Ooredoo accelerates cybersecurity in Oman with new deal

Omantel selects Ericsson to manage its nationwide multi-vendor networks

Oman TRA shares plans to accelerate 5G deployment

BDB launches “tijara” platform for SMEs

Bahrain achieves full nationwide 5G coverage

Batelco, SonicWall launch integrated security solutions for SMEs in Bahrain

Bahrain to offer COVID-19 test results on WhatsApp, Facebook Messenger

Infor supports Bahrain’s digital transformation

Infopercept opens its first Middle East office in Kuwait

Microsoft Compliance Manager now available in Kuwait

Commercial Bank of Kuwait gets mobile payments moving with Thales Digital Solutions

Ooredoo chooses Fortinet to deliver secure SD-WAN managed services in Kuwait

Zain rolls out first-ever 5G roaming service in MENA

Looking for the best label solutions in South Africa? Go OKI!

OKI is only going bigger in the South African market!

Huawei honours Women in Tech at Apps UP 2022

Amazon payment services launches in the MENA region

Egypt turns to AI to deliver COVID-19 diagnosis service to People of Determination

Vertiv extends partnership with MDS SI Group to enhance digital infrastructure solutions

Bosch sees 21% sales surge in the Middle East

“AI has been in Google’s DNA from the beginning – we are an AI-first company” – Tarek Khalil, Google Cloud

How companies can future-proof their business with Web3

“Diversity, equity and inclusion are a core part of our culture and values at AWS” – Yasmine Afifi

Gender Lens investing vital to economic recovery

Virgin Hyperloop unveils location for Hyperloop certification centre

TikTok taps Oracle as secure cloud provider

Zoom gets security boost with Keybase acquisition

Why collaboration is the answer to the successful roll-out of 5G

OPSWAT invests $10 Million in scholarship learning program to help close cybersecurity skills gap

Alef Education showcases the Alef Metaverse to improve climate education at COP28

Bybit and AUS unveil the tech talents of tomorrow

How digital education solutions can help students achieve their full learning potential

Seeds for the Future 2023: Huawei gathers ME & CA’s brightest ICT talent in Qatar

Huawei launches ground-breaking solar inverter at World Future Energy Summit

Middle East Energy to further boost their sustainability agenda

EDF UK selects Dynatrace to keep the power flowing

KROHNE harnessing the power of analytics to drive energy transformation

“All of us are pulling in the right direction for a better tomorrow” – Frank Janssens, VP at KROHNE

Above and ‘Beyon’ – New Money SuperApp launched in the UAE

New cross-border payments platform Digit9 launches in the UAE

Hub71 partners with global economic transformation specialist on MENA start-up ecosystem

Spheroid Universe coin to be listed on MEXC exchange

DIFC Innovation Hub launches AccelerateHER program

Innovating Finance: UAE’s Pioneering Role in the Blockchain and Crypto Landscape

Pioneering Sharjah’s Digital Revolution

Interview: Shaping a Secure World

Dubai Chamber of Digital Economy scouts Asia for tech start-ups

Government leaders from IT sector honoured at GovTech Innovation Awards

Dubai Science Park study backs R&D localisation amid projected surge in UAE healthcare spending

MarkiTech expands GCC footprint

MoHAP Launches Health Sector’s First National Centre of Excellence for AI

Korian Benelux future-proofs residential Care with AI-driven solutions

SAS accelerates responsible innovation efforts with new collaborations

Digitalisation key to accelerating construction development in Middle East, says Trimble

R&M Introduces First Single Pair Ethernet System to Support Middle East Smart Building Trend

To ‘upsmart’ your building, start with the elevator

Renters searching for homes online surge amid coronavirus fears

Emirati tech entrepreneur launches new app to ease Dubai’s rental woes

Brands Beware: The Application Generation Demands Seamless Digital Experiences

Opinion: Brands must respond to meet heightened customer expectations

Thriwe: Enhancing the Omni-channel experience

Navigating the Festive Cyber Landscape: Ensuring Online Safety during Holiday Shopping

Celebrate the Dubai Shopping Festival with Eros Electronics’ exclusive deals

Interview: OTIFYD’s intelligent approach to cybersecurity

Extreme Introduces Hub for Research, Development and Innovation in Networking

Interview: AI continues to strengthen cyber defence

Help AG Unveils Top Digital Threats and Trends in Cybersecurity

AVEVA launches CONNECT, the world’s leading industrial intelligence platform, at Hannover Messe