Often when we hear buzzwords like botnet, malware and spear phishing (among many, many others), we tend to associate them with certain industries — retail, health care, banking. However, in a world driven by the constant effects of newer and better technology, all industries are being affected. Specifically, the oil and gas industry has seen an increase in cyberattacks.

The question is: How can organizations in the oil and gas industry protect themselves and prepare for the realities of their digital future? The most important thing they can do is learn the importance of being secure and the negative impact an attack can have on their companies.

According to a recent study, ABI Research predicted that oil and gas companies will spend $1.87 billion on cybersecurity by 2018. Thus, it is important that petroleum companies educate themselves on advanced threats and act now to prevent cyberattacks.

The Threat of Cyberattacks

One of the greatest dangers petroleum companies face is a breach of their sensitive information, which could result in a company shutting down, depending on how the exfiltrated information is used and/or distributed. Or what if a cybercriminal gained access to the control panel that operates the wells? Essentially, any cyberattack on a petroleum company will have a ripple effect throughout the industry, from the large companies down to your small, mom-and-pop water-hauling services.

The Ponemon Institute recently conducted a report sponsored by Siemens to “understand how companies in the oil and gas industry are addressing cybersecurity risks in the operational technology (OT) environment.” The study found that an average of 46 percent of all cyberattacks in the OT environment go undetected. Given that number, it’s only a matter of time before a devastating attack creates major turmoil in the industry.

Cybersecurity’s Future Lies in Cognitive

Imagine being able to get real-time information about SCADA data with the push of a button. With projects like Havyn powered by Watson in the works, the world of security is changing for all industries. Havyn is a voice-enabled virtual assistant who can gather information on security threats in seconds with a simple voice command. With its cognitive abilities and the rapid changes happening every day, the energy industry could use Havyn to monitor their security with ease. To find out more about Project Havyn, watch this video:


What’s the takeaway here? A wait-and-see approach to cybersecurity is not an appropriate course of action. You cannot just hope for the best and remediate attacks after the fact. Instead, the oil and gas industry needs to learn and implement strong security measures. Cyberattacks are happening more and more every day, so it is essential that the oil and gas industry works to maintain the security of their systems.

Read the complete report: Security attacks on industrial control systems

More from Energy & Utility

Water facilities warned to improve cybersecurity

3 min read - United States water facilities, which include 150,000 public water systems, have become an increasingly high-risk target for cyber criminals in recent years. This rising threat has demanded more attention and policies focused on improving cybersecurity.Water and wastewater systems are one of the 16 critical infrastructures in the U.S. The definition for inclusion in this category is that the industry must be so crucial to the United States that “the incapacity or destruction of such systems and assets would have a…

The UK energy sector faces an expanding OT threat landscape

3 min read - Critical infrastructure is under attack in almost every country, but especially in the United Kingdom. The UK was the most attacked country in Europe, which is already the region most impacted by cyber incidents. The energy industry is taking the brunt of those cyberattacks, according to IBM’s X-Force Threat Intelligence Index 2024.The energy sector is a favorite target for threat actors. The complexity of systems and the reliance on legacy OT systems make them easy prey. Because of the critical…

Third-party breaches hit 90% of top global energy companies

3 min read - A new report from SecurityScorecard reveals a startling trend among the world’s top energy companies, with 90% suffering from data breaches through third parties over the last year. This statistic is particularly concerning given the crucial function these companies serve in everyday life.Their increased dependence on digital systems facilitates the increase in attacks on infrastructure networks. This sheds light on the need for these energy companies to adopt a proactive approach to securing their networks and customer information.2023 industry recap:…

Topic updates

Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today