While the findings, published online in the lead up to the seventh Kaspersky Industrial Cybersecurity Conference 2019, reveal a 5.4 percent increase in cyberattacks on building-based automation systems over the second half of 2018. Although the systems may not have been deliberately targeted – the issues were detected on systems associated with the systems, not the systems themselves – the very presence of such malicious objects poses a very serious concern for smart building operators.
Source: FM Media
For the past two years, the entire Facilities Management industry has been going bonkers over the concept of smart building solutions. In fact, the craze was so much that we would see a series of content on IoT based smart building solutions coming from every major integrated facility management company around the world.
It was a glorious innovative change that was all set to disrupt the way facilities are managed. Smart buildings promised lots of great things, including reduced cost of building operations and more efficient power management systems. Well, those are just the two of the great benefits that a smart Building System offers.
It is not like that the smart buildings fail to deliver on what they promised. Here the concern is very different. Smart building systems are actually working and delivering whatever they had promised, and in fact, almost each and every building that evolved into a smart building has become much more efficient in terms of costs and labor. The facility managers also are actually in a better position than ever before. However, if you read the starting quote of the blog post, you would know that cybersecurity is a serious concern now. Almost 40% of the smart buildings have been a victim of Cyberattacks.
Of the 37.8 percent of building management systems affected, 11.3 percent were attacked with spyware designed to steal account credentials and other valuable data, 10.8 were infected with worms, 7.8 percent had involved phishing scams, and 4.2 percent encountered ransomware threats.
One more thing to be noted here is that most of the cyber attacks were never meant to disturb the operational modalities of the building but were actually targeted to steal the data. Basically, hackers wanted access to financial credentials, competitor data, credit card numbers, net banking details, and other such critical information. They were actually least interested in causing any mischievous hurt to the building or its systems.
Well, that’s the situation now there is no saying that in future these cybercriminals would not try to cripple buildings operation completely. Also, one more thing to be noted here is that not all cyber-attacks actually originated from the internet, almost 10% of them were conducted using removable media like flash drives. Therefore facility managers should also ensure that proper policies are in place and good antivirus programs are there to keep the threat to the bare minimum. We would just say that this is just the tip of the Iceberg. The actual damage that a cyberattack can do to a building is massive, especially in the Healthcare sector. It is important that we take proactive measures to secure our smart buildings