Australian electric organisations are experiencing elevated levels of cyber risk. The growth of ransomware attacks, compromised supply chains, and sophisticated adversaries is often met with inadequate security controls.
Dragos Intel regularly performs industry-focused threats hunts to help inform our customers. The Australian Cyber Threat Perspective highlights the key elements driving the Australian industrial control systems (ICS) and operational technology (OT) threat landscape. Notably, 6 out of the 19 Dragos-designated threat groups either directly targeted or have the assessed capability to target electric organisations within Australia. At least 3 Dragos-designated threat groups have exploited vulnerable external infrastructure and applications as part of initial access.
In this report, Dragos Intel shares the outcome of threat hunts focused on Australian electric utilities to help ICS/OT security defenders stay ahead of the threat landscape.