Leowolfert | Dreamstime.com
Industrial Cybersecurity Threat

USB devices present significant cyber threat to industrial facilities

Aug. 18, 2022
Honeywell’s latest Cybersecurity USB Threat Report paints a grim picture for users of USB not just for storage, but also for keyboards and network adapters.

In its latest Industrial Cybersecurity USB Threat Report, Honeywell provides sobering statistics about the growing threat that USB devices pose to industrial plants.

“Malware … is getting more advanced,” the company said when announcing the availability of its latest study. “As people grow more dependent on their devices, malware becomes more disruptive. At industrial facilities, USB removable devices—which aren’t just removable storage, but can also be mouses, keyboards, or network adapters that connect by USB—help people collaborate and share data. Those devices can also pose a major risk to the facilities where they’re used, as many facilities rely on computers to operate machines, pumps, motors, and other physical equipment.”

In the 2022 Industrial Cybersecurity USB Threat Report, Honeywell reveals the following statistics.

  • 52% of threats are specifically designed to use USB removable devices—compared to 37% in 2021 and 19% in 2020.
  • 81% of threats are capable of causing a disruption to operational technology (OT) systems—up from 79% a year ago.
  • 51% of threats are designed to establish remote access or remote control—consistent with 2021 findings.
  • Trojans, which are malware designed to trick you into executing them, account for 76% of threats.

In the report, Honeywell says organizations must establish a clear USB security policy. “Evidence indicates USB removable media is intentionally used as an initial attack vector into industrial control/OT environments,” it states. “As such, technical controls and enforcement must be established to better secure USB media and peripherals.”

The company also pointed out that this year’s study validated a trend that first surfaced in 2021: “The number of threats designed specifically to target industrial control systems also increased slightly year over year, from 30% to 32%, while at the same time the malware was more capable of causing disruption to industrial control systems, up from 79% to 81%.”

You can download the full report here.

Voice your opinion!

To join the conversation, and become an exclusive member of Buildings, create an account today!

Sponsored Recommendations

Building Security & Technology Month

Date: May 8, 15, 22, 29. 2024Time: 1:00 PM EDT / 12:00 PM CDT / 10:00 AM PDT / 5:00 PM GMTSponsors: Duration: 1 Hour each  Register Today!  Single sign...

Building Better Schools

Download this digital resource to better understand the challenges and opportunities in designing and operating educational facilities for safety, sustainability, and performance...

Tips to Keep Facility Management on Track

How do you plan to fill the knowledge gap as seasoned facility managers retire or leave for new opportunities? Learn about the latest strategies including FM tech innovations ...

The Beauty & Benefits of Biophilic Design in the Built Environment

Biophilic design is a hot trend in design, but what is it and how can building professionals incorporate these strategies for the benefits of occupants? This eHandbook offers ...