Reports
Vendors

GE and Thales to secure power plant operators

January 31, 2020
secure power plant

GE and Thales to provide new solutions to secure power plant operators, announcement follows joint report focused on energy sector security.

Electrical systems manufacturer Thales Group and GE Steam Power recently announced a new collaboration to deliver a suite of cybersecurity solutions to power plant operators.  On January 27, the two companies signed an agreement solidifying their partnership at the International Cybersecurity Forum in France.

According to Thales, the new partnership, “brings together Thales’ cyber knowledge and GE’s expertise in the power generation industry to help protect customers from cyber risks by providing threat intelligence, joint training and a combined portfolio of cyber solutions.”

As part of the joint solution to secure power plant operators , GE has already installed equipment at the National Digital Exploitation Centre, a technology hub in the South Wales Valleys. NDEC was created by Thales and the Welsh government for cyber and digital development and education. The facility carries out cyber-attack demonstrations and response scenarios using Thales’s Cyber Range and GE hardware.

“It has become vital for power generation operators to get specific and regular training to understand what they are fighting and how to better protect their systems,”  GE and Thales say in releases announcing their new partnership. “Through this partnership, Thales and GE are joining forces to perform joint training for customers that operate individual or fleets of power plants.”

The recent partnership announcement comes a few months after Thales and GE published a joint cyber threat intelligence report that includes an analysis of cyber threats in the energy sector. According to the Cyberthreat Handbook,  the power generation industry is one of the most at risk. The report details major hacking groups and includes a scoring methodology and individual ratings cards for each group of attackers.

“The landscape of cyber threats to the power generation industry follows the evolution of cyber threats in the broadest sense,” GE and Thales say in their releases. “It evolves, becomes more complex and requires permanent and specialized monitoring.”

The handbook includes profile of approximately 60 major groups of cyber attackers based on analysis of 490 attack campaigns. According to the report, up to 10 percent of cyber attacks on operations like power plants are led by highly effective threat actors.

Of the major groups identified, 49 percent are state-sponsored hackers focused on stealing sensitive data from targets of geopolitical interest. Twenty-six percent are ideologically motivated actors. Another 20 percent are cybercriminals motivated by financial gain. Cyber terrorists account for 5 percent of the 60 groups analyzed.

“The growing intertwining of companies’ information technology (IT) and operations technology (OT) systems allows attackers to create bridges between any machine and the core infrastructure,” Thales and GE say.  “While vulnerabilities in IT environments are mostly understood and managed, OT vulnerabilities still lack attention.”

According to the report, industrial control systems (ICS) and supervisory control and data acquisition systems (SCADA) are  being increasingly targeted by state-sponsored groups. These cyber attacks are designed to exploit these systems in the event of international conflicts.

“As cyberthreats proliferate and evolve, cybersecurity clearly has a major role to play, particularly for critical infrastructure providers,” Marc Darmon, Thales’ executive vice president for secure communications and information systems, said in an October 2019 press release. “It is our duty to analyse, understand and describe the techniques employed by cyberattackers so that our customers and all other businesses and organisations are better prepared to detect and anticipate future attacks.”

Rebecca Addison
Industrial Cyber Editor. Rebecca Addison is a former newspaper editor with a decade of experience in the media industry. During her career, she has interviewed world leaders and corporate CEOs, and covered topics ranging from blockchain and CBD to healthcare and education.

A complimentary guide to the who`s who in industrial cybersecurity tech & solutions

Free Download

Related

Mandiant exposes APT44, Russia's Sandworm cyber sabotage unit, targeting global critical infrastructure
Mandiant exposes APT44, Russia’s Sandworm cyber sabotage unit, targeting global critical infrastructure
Hexagon and Dragos announce technical alliance to boost industrial cybersecurity, reduce overall OT cyber risk
Hexagon and Dragos announce technical alliance to boost industrial cybersecurity, reduce overall OT cyber risk
Armis
Armis acquires Silk Security for $150 million to enhance AI-driven cybersecurity capabilities
Nozomi discovers five vulnerabilities in AMI MegaRAC SP-X BMC, exposing OT, IOT devices to RCE attacks
Nozomi secures US$1.25 million US Air Force contract to boost DoD critical infrastructure security
Industrial Cybersecurity Buyers’ Guide 2024 navigates complex industrial landscape
Industrial Cybersecurity Buyers’ Guide 2024 navigates complex industrial landscape
Kaspersky ICS CERT reports on escalating consequences of cyber attacks on industrial organizations
Kaspersky ICS CERT reports on escalating consequences of cyber attacks on industrial organizations
Forescout discloses Connect:fun exploitation campaign targeting organizations using Fortinet's FortiClient EMS
Forescout discloses Connect:fun exploitation campaign targeting organizations using Fortinet’s FortiClient EMS
Salvador
Salvador secures investment from Deutsche Telekom to expand cyber-attack recovery platform
SecurityGate
SecurityGate announces general availability of ISA/IEC 62443-2-1 workflow in its platform
Waterfall’s WF-600 unidirectional security gateway brings 'unbreachable protection' to OT/ICS networks
Waterfall Security and AXYS partner to deliver OT protection for data centers