Fuzzing analysis conducted by Synopsys shows that Industrial Control Systems and IoT industries are most at risk of zero days cyber attacks. The data comes from fuzz testing, an automated process that systematically sends data to devices and systems with the goal of causing errors in a targeted network protocol. Andrea Carcano, Co-Founder and Chief Product Officer at Nozomi Networks commented below.
Andrea Carcano, Co-Founder and Chief Product Officer at Nozomi Networks:
“Fuzzing is not new. It’s a simple technique to identify issues and vulnerabilities that can be applied and also to industrial control systems. These types of vulnerabilities are usually simple, but can create significant damage especially if the target is an industrial control system. Because industrial devices are proliferating as part of the move to modernize many industries, and because those devices may now be directly or indirectly exposed to the internet, this basic technique could be used by attackers. While industrial device manufactures are making improvements to the security of their equipment, it is a huge challenge. Fortunately, technologies are readily available to monitor and identify specific attacks that are using vulnerabilities discovered with fuzzing that could cause malfunctions to industrial components.”