The US FDA is supposed to assure the US food supply is safe from adulteration. However, the FDA Food Safety Management Act (FSMA) requirements ignore cyber threats. There have been more than 20 control system cyber incidents in food and beverage facilities including some where people were harmed and others that shut down facilities. Similar to other industries, food facilities have been experiencing cyber incidents since the late 1990s. Isn’t it time the US food, beverage, and agriculture production require cyber protection as do other critical infrastructures?
