Topics In Demand
Notification
New

No notification found.

Is the food sector prepared for cyber attacks?
Is the food sector prepared for cyber attacks?

292

0

February 17, 2023 - As production and distribution become more automated within the food sector, the vulnerability of food manufacturers increases along with the odds of a cyberattack. With profit, efficiency, and productivity at the top of most organizations’ priority lists, security has become more of an afterthought.

A recent poll conducted by BSI revealed that 78% of respondents do not think their food organization is prepared for a cyberattack, showing that huge steps still need to be taken to enhance trust and resilience. It’s now a priority to start thinking about how we can protect society, protect our food, and protect IT systems.

Threats that face our food

There are four significant threats facing the food industry:

  • Food fraud: the act of intentionally deceiving consumers about the true nature, ingredients, or origin of food.
  • Food defense: a weak defense of the production line means a higher risk of intentional contamination or tampering.
  • Food quality: poor-quality food can potentially cause illness or harm to the consumer.
  • Food safety: consuming contaminated or spoiled food can lead to illness or injury. Food can become contaminated by a variety of means, including exposure to harmful bacteria, viruses, toxins, or chemicals.

These threats are all interconnected with digital technology and internet connectivity, with security at the heart of all of it, whether that involves the Internet of Things (IoT), operational technology (OT), or an internet-connected device.

Security means monitoring the equipment that’s being used to test for food fraud, which helps us with food defense, food quality, and food safety. With all these new digital systems, we must ask ourselves: are we doing the right things for our food? Is that technology really necessary, or is it just a ‘nice to have’ that’s making the production line more susceptible to an attack? Are we keeping our friends and family safe?

Consequences of a cyberattack in food manufacturing

If there is a cyber breach in industrial control systems (ICS), a hacker can tamper with temperature controls or sensors or even leave cattle stranded in the water. For example, Hood Milk in New Hampshire, USA, was struck by a ransomware attack, resulting in schools in the county going without milk for several days.

There are several potential consequences that can follow an attack, including physical harm to workers, financial loss, and destroyed equipment. Other potential life-threatening consequences include:

1. Compromised food quality

It’s not unheard of for bad actors to attack a food manufacturer’s ICS to inject chemical agents into food. This has become a stark reality and is being actively investigated by the Department of Homeland Security. Attacks like this can lead to damaged brand reputation, financial harm, and employment loss.

2. Illness or loss of life

Taking cybersecurity seriously is not just about protecting data and the availability of data; it's about protecting human lives. The World Health Organization estimates that an estimated 600 million, almost one in ten people in the world, will fall ill after eating food contaminated by chemical agents, bacteria, or viruses. They also estimate that 420,000 people die each year as a result, leading to a loss of 33 million healthy lives. By prioritizing people, it puts a new spin on how you see the creation of security controls specifically and how you can interact with people in that environment to make it safer for them.

Blog by BSI’s expert Mark Brown, Global Managing Director, Digital Trust Consulting Services, BSI.


That the contents of third-party articles/blogs published here on the website, and the interpretation of all information in the article/blogs such as data, maps, numbers, opinions etc. displayed in the article/blogs and views or the opinions expressed within the content are solely of the author's; and do not reflect the opinions and beliefs of NASSCOM or its affiliates in any manner. NASSCOM does not take any liability w.r.t. content in any manner and will not be liable in any manner whatsoever for any kind of liability arising out of any act, error or omission. The contents of third-party article/blogs published, are provided solely as convenience; and the presence of these articles/blogs should not, under any circumstances, be considered as an endorsement of the contents by NASSCOM in any manner; and if you chose to access these articles/blogs , you do so at your own risk.


BSI enables people and organizations to perform better. We share knowledge, innovation and best practice to make excellence a habit – all over the world, every day.

© Copyright nasscom. All Rights Reserved.