Cyberattacks on critical infrastructure can lead to complete supply chain disruptions. Reports indicate that cyberattacks against US utilities increased by 70% in 2024 compared to the previous year. This high rate of increase underscores the urgent need for organizations with critical infrastructure, particularly those handling hybrid IT and OT systems, to strengthen their security measures.
A recent example of this threat is the 2019 ransomware attack on Colonial Pipeline, which disrupted the entire fuel supply to the largest refined oil pipeline system in the US. In 2013, two power plants were infected with malware that entered their systems via infected USB drives, causing one plant to be idle for three weeks.
OPSWAT’s client, a market-leading energy supplier, is considered a primary target for cyberattacks targeting mobile and peripheral multimedia. Deploying endpoint scanning software on workstations has proven insufficient to detect all incoming file-based threats. Three incidents resulting in system isolation and multiple system outages were recorded in the same year.
The energy producer’s primary need for cybersecurity solutions is the ability to detect malware on portable multimedia devices before it can be implanted into critical infrastructure systems. The upcoming compliance audit further underscores the urgency of finding a solution to fill this cybersecurity policy gap.
The company urgently needed to inspect and secure portable multimedia devices before transferring data to critical OT systems; therefore, MetaDefender Kiosk was the ideal solution, meeting all its security and operational requirements. Two technologies stand out among MetaDefender Kiosk’s features and integration: MetaScan Multiscanning, equipped with over 30 engines, detects over 99% of malware; and Deep CDR file de-virus technology, which extracts embedded threats and securely regenerates over 180 file types.
MetaDefender Kiosk’s rule-based user access management enables seamless and secure setup. Upon deployment, it integrates seamlessly with My OPSWAT Central Management immediately. This integration facilitates comprehensive monitoring of each kiosk’s usage, USB scan monitoring, and compliance audit reports.
Once deployed, it will be seamlessly integrated with My OPSWAT Central Management immediately.
Within the first six months of deployment, the company witnessed a significant reduction of over three-quarters in multimedia and file-based malware threat incidents. Integration with My OPSWAT Central Management increased uptime through automated file interception and centralized reporting, and system isolation caused by unverified multimedia was virtually eliminated.
Based on these improvements, incident response costs were reduced by almost half. Furthermore, shortly after the deployment of MetaDefender Kiosk, it helped the company pass the NERC CIP compliance audit.
In addition to compliance and operational efficiency, internal satisfaction ratings were also higher than usual, as observed in internal audit votes regarding the new technology. Field operators gave the information station’s interface and its rapid scanning speed of over 13,000 files per minute a 94% satisfaction rating, demonstrating that comprehensive security can also be user-friendly.
Due to its significant deployment success and high internal satisfaction, the company decided to adopt Kiosk as its primary solution for defending against portable multimedia threats and plans to further expand its deployment. In addition, the company is also considering solutions such as Endpoint and Media Firewall to enhance security, ensure a long-term security posture, support regulatory compliance, and provide continuous protection against emerging threats. OPSWAT’s integrated solution protects sensitive IT and OT assets from cyberattacks and ensures operational continuity and regulatory compliance.
