Control systems are systems of systems. Consequently, when one device or system is compromised, it can impact many others, potentially numbered in the tens to thousands. If I were to have counted all of the individual cases, my database would have almost 12 million control system cyber incidents. The insurance industry and credit rating agencies should be aware of the large number of control system cyber incidents. The cases show that malicious incidents are a significant percentage of control system cyber incidents in terms of numbers and impacts. Control system cyber incidents affect all industries, manufacturing, buildings, transportation, etc. What is needed is control system cyber security training based on actual cases. Addressing hypothetical cases misses those real cases that simply haven’t been considered. Yet, government and industry efforts to address the identification of control system cyber incidents have been inadequate and seems unlikely to change soon.
URL: Control system cyber incidents are much more plentiful than people realize