1、 Threat landscape for industrial automation systems Statistics for H1 2023 Kaspersky ICS CERT 13.09.2023 Version 1.0 THREAT LANDSCAPE FOR INDUSTRIAL AUTOMATION SYSTEMS.STATISTICS FOR H1 2023 1 2023 AO KASPERSKY LAB.Mid-year highlights.2 Figures.2 All threats.2 Categories of malicious objects.2 Main

2、threat sources.2 Good news.2 Rankings where regions that do best were doing worst.3 Global threat statistics.8 Regions.9 Countries.11 Individual industries.12 The variety of malware detected.13 Categories of malicious objects.14 Malicious scripts and phishing pages(JS and HTML).15 Denylisted interne

3、t resources.16 Spyware.17 Malicious documents(MSOffice+PDF).18 Malicious cryptocurrency miners.19 Viruses and worms.21 Ransomware.23 Malware for AutoCAD.24 Main threat sources.25 World.25 Regions and countries.26 Internet.26 Email clients.27 Removable devices.28 Network folders.29 Methodology used t

4、o prepare statistics.31 THREAT LANDSCAPE FOR INDUSTRIAL AUTOMATION SYSTEMS.STATISTICS FOR H1 2023 2 2023 AO KASPERSKY LAB.Mid-year highlights Figures All threats In the first half of 2023,malicious objects(all types of threats)were blocked on 34%of ICS computers.This was 0.3 pp less than in the seco

5、nd half of 2022.In the second quarter of 2023,this percentage reached the highest quarterly level globally since 2022,26.8%.The figure varied between 40.3%in Africa and 14.7%in Northern Europe by region,and between 53.3%in Ethiopia and 7.4%in Luxembourg by country.Categories of malicious objects Mal

6、icious scripts and phishing pages were blocked on 12.7%of ICS computers Denylisted internet resources,on 11.3%Spyware,on 6%Malicious documents,on 4%Ransomware,on 0.32%.This is the lowest percentage since the beginning of 2020.Main threat sources The internet was the source of threats blocked on 19.3