A natural gas compression plant was hit by a ransomware attack that forced it to shut down for two days, according to a Feb. 18, 2020, alert from the U.S. Department of Homeland Security (DHS). The attacker was able to access the plant’s IT network, and then move to its operational technology (OT) network. DHS’s Cybersecurity and Infrastructure Security Agency (CISA) said a lack of network segmentation allowed the attacker to cross the IT / OT boundary.
The increased use of digital technologies, cloud services and connected infrastructure has allowed oil and gas companies to increase efficiency and uptime, improve safety and reduce costs. However, it has also exposed the industry to heightened risk of cyberattacks.