Building management systems (BMS) are responsible for controlling and monitoring various building services such as HVAC, energy, elevators, escalators, surveillance and access control.
They're crucial for service delivery across industries, including critical infrastructure such as energy, utilities, and healthcare. But they're also a significant of an organization's cyber risk due to their integration with IT networks and the internet.
As cyberattacks continue to evolve in complexity and frequency, understanding the significance of BMS cybersecurity issues is vital to safeguarding the integrity, safety, and privacy of both occupants and overall infrastructure. We talked to Mohammad Waqas, CTO of healthcare at Armis, to learn more about critical BMS cybersecurity issues and find out how teams can address them.
BN: Why has building management system cybersecurity become increasingly important?
MW: Building management system cybersecurity has become increasingly crucial for several reasons. Nowadays, buildings are highly interconnected and 'smart,' integrating with IT networks and actively connecting with internet resources. While this connectivity brings numerous benefits, it also exposes the systems to cyber threats. Without proper cybersecurity measures in place, attackers can exploit vulnerabilities to gain unauthorized access or disrupt critical building operations. From here, they can also potentially move laterally throughout the network to gain access to other connected assets.
Buildings and their associated systems play a vital role in critical infrastructure industries, such as healthcare, transportation, and utilities. Consider the Mirai malware botnet that continues to exploit vulnerabilities in office WiFi routers or vulnerabilities that allow hackers to take control of building security systems. A BMS cyberattack could have far-reaching consequences–from operations disruptions to individual safety risks.
BN: What are the challenges of BMS cybersecurity?
..Support the originator by clicking the read the rest link below.
