image credit: unsplash
After a ransomware attack conducted by a Russia-linked cybercrime group forced Colonial Pipeline to shut down systems in May 2021, the TSA issued a directive requiring pipeline owners and operators to improve their defenses and work with authorities in the event of an attack.
However, those requirements, described as inflexible and confusing, posed some serious issues to the pipeline industry. Organizations and experts in the pipeline and cybersecurity industries complained that some of the requirements seemed to be best practices designed for IT systems rather than operational technology (OT). Applying IT security principles to OT could result in significant disruptions and safety issues.
Comments are closed.
