us-oil-and-gas-banner

Analysis

2022 Oil and Gas Sectors Threat Landscape

Global threat assessment by Deloitte Cyber Threat Intelligence

The Russian-Ukraine conflict has economically affected the oil and gas sectors, disrupting energy supplies. Threat actors, primarily cybercriminals and ransomware groups, reacted to the political atmosphere by further attacking the sectors in 2022, making them yet more vulnerable to threats. Several ransomware gangs focused on the sectors in 2022 and hit major organizations across Europe, resulting in a widespread disruption on energy supply that even affected gas stations.

According to Standard and Poor’s (S&P) Global, 2022 saw the highest number of cyberattacks against the oil and gas sectors in the past six years.1

A recent Trend Micro survey examined the attack vectors that forced the shutdown of operational technology (OT) systems, causing significant financial damage.2 The most serious threat was malware infection from legitimate web browsers, which could be caused by a watering hole attack or an unpatched browser and operating system. The second most significant vector was the compromise of an accessible device—this occurs when threat actors discover a misconfiguration that exposes a device to the internet. Phishing ranked third among attack vectors.

This threat landscape report focuses on critical threats to the oil and gas industries, but it also includes some major general attacks and trends affecting the OT environment. In 2022, advanced persistent threat (APT) actors targeted eight times more oil and gas organizations for espionage than the previous year. One of their campaigns exploited vulnerabilities and weaknesses in specific components of relevant vendors in critical infrastructure organizations.

This report outlines the following:

  • The threat landscape and types of malwares affecting oil and gas sectors
  • The impact of COVID-19
  • Emerging cyberthreats due to cloud migration

This report also includes the following recommendations:

  • Assessment of vulnerabilities and prioritization of cybersecurity investments
  • Leading practices to help mitigate cyberthreats
  • MITRE ATT&CK® tactics, techniques, and procedures (TTPs) approach

Fill out the form below to gain access to the report

 
 
 
 
 
 
  Yes         No

Get in Touch


Adnan Amjad
US Cyber & Strategic Risk Offering Portfolio Leader
Principal
Deloitte & Touche LLP
aamjad@deloitte.com

Jon Korol
Deloitte US Cyber Offering & Detect & Respond Leader
Partner
Deloitte & Touche LLP
jkorol@deloitte.com

Mike Kosonog
Deloitte US Energy, Resources & Industrials Leader
Principal
Deloitte & Touche LLP
mkosonog@deloitte.com

Kevin J. Urbanowicz
Deloitte US Cyber Detect & Respond Advisory
Managing Director
Deloitte & Touche LLP
kurbanowicz@deloitte.com

Clare Mohr
Deloitte US Cyber Intelligence Lead
Associate VP for Solution Delivery
Deloitte & Touche LLP
clmohr@deloitte.com

William Burns
Deloitte US Cyber Detect & Respond
Managing Director
Deloitte & Touche LLP
wburns@deloitte.com

1 Eklavya Gupte, “ENERGY SECURITY SENTINEL: Cyberattacks surge in 2022 as hackers target commodities,” S&P Global Commodity Insights, October 10, 2022.
2 Mayumi Nishimura, “Oil and gas cybersecurity: Trends & response to survey,” Trend Micro, October 13, 2022.

Fullwidth SCC. Do not delete! This box/component contains JavaScript that is needed on this page. This message will not be visible when page is activated.

Did you find this useful?