Ransomware is a type of malicious software (malware) designed to block access to a computer system or data, typically by encrypting files, until a sum of money (ransom) is paid. This form of attack is increasingly targeting industrial automation and control system (IACS) environments due to the critical nature of these systems. Unlike phishing (which tricks users into revealing sensitive information) or DDoS attacks (which disrupt availability), ransomware specifically encrypts data and extorts the victim.
[Reference: ISA/IEC 62443-3-2:2020, Annex B; ISA/IEC 62443-1-1:2007, Section 3.2.2; ISA/IEC 62443-2-1:2009, Section 4.2.3., , ]
Submit