Top 10 Cybersecurity Threats for the Oil and Gas Industry
With the exploitation of new cost-effective operational concepts, use of digital technologies, and increased dependence on cyberstructures, the oil and gas industry is exposed to new sets of vulnerabilities and threats, DNV GL writes in an article identifying the biggest cybersecurity threats to the oil and gas industry.
According to the company, cyberattacks have grown in stature and sophistication, making them more difficult to detect and defend against, and costing companies increasing sums of money to recover from.
DNV GL is delivering a cybersecurity study to the Lysne Committee, a body appointed by the Norwegian Ministry of Justice and Public Security to assess the country’s digital vulnerabilities. DNV GL’s study reveals the top 10 most pressing cybersecurity vulnerabilities for companies operating offshore Norway.
The top 10 cybersecurity vulnerabilities identified from the study are
- Lack of cybersecurity awareness and training among employees
- Remote work during operations and maintenance
- Using standard information-technology products with known vulnerabilities in the production environment
- A limited cybersecurity culture among vendors, suppliers, and contractors
- Insufficient separation of data networks
- The use of mobile devices and storage units including smartphones
- Data networks between on- and offshore facilities
- Insufficient physical security of data rooms, cabinets, etc.
- Vulnerable software
- Outdated and aging control systems in facilities