Discover how rising ransomware attacks are targeting agriculture. Are your farm’s cybersecurity measures robust enough to protect against these evolving threats?
The rising cyber threats against the agriculture industry are glaring issues that can no longer be pushed into the background. In a distressing snapshot of the current scenario, Lactanet and Ontario Pork have recently fallen prey to ransomware attacks. This disturbing trend is not isolated, as it sees these entities join the ranks of other agri-food businesses, such as JBS, Sollio Agriculture, and Maple Leaf Foods, which have faced similar digital incursions.
Attempting to shed light on the increasingly prevalent wave of attacks on agriculture, Ali Dehghantanha, Canada Research Chair in Cybersecurity and Threat Intelligence, suggests a multifaceted cause. According to him, the escalation can be attributed to the industry’s heightened reliance on data, the evolution of the Internet of Things, and opportunistic cybercriminals always on the lookout for easy, profitable exploits.
“If it takes attackers 10 minutes to compromise your infrastructure, get into your network, initiate ransomware, and then demand a ransom — they won’t hesitate.”
The magnitude or nature of your operation does not provide immunity against these threats. Be it a small producer or a multimillion-dollar venture operating in health care, finance, or agriculture, if your system demonstrates vulnerability, you risk being the next target on the horizon.
The Anatomy of a Cybercrime: A Tale from an Ontario Dairy Farm
In a sobering revelation at the Future of Cybersecurity in Agriculture event held at the University of Guelph, cybersecurity expert Ali Dehghantanha shared a case study of a ransomware attack on an unsuspecting Ontario dairy farmer.
Unable to bring his paralyzed IT system back to life, the farmer turned to Dehghantanha for help. On assessing the system, 80 encrypted servers were discovered, pointing to prior instances of cyber intrusion. The ransom demand now stood at a hefty $25,000, a sum too significant for the farmer to bear.
Dehghantanha’s investigation led him to the chilling discovery of the attack’s depth. The initial signs of cyber assault dated back three years, with the attack intensity amplified over the past year. Multiple backdoors, known to be incorporated in the final stages of a sophisticated attack, had been covertly installed in the system.
In an effort to turn the tide, Dehghantanha proposed a free, temporary monitoring of the farmer’s system with a cybersecurity program designed to test its efficacy. However, the farmer turned down this offer, a decision he would soon regret. His entire system, including the crucial RFID reader, the farm’s robots, and backup infrastructure, were encrypted in less than three weeks. The consequent ransom demand was a staggering US$9.999 million.
Faced with such a destructive and tenacious threat, the farmer reluctantly accepted Dehghantanha’s offer to partake in the cybersecurity program. The risks, as Dehghantanha explains, are not limited to ransomware. Invisible state-sponsored hacker groups, especially from Russia and China, are lurking, ready to strike at weak points and disrupt systems. In a striking example, they could jeopardize the Canadian dairy system by accessing and tampering with software to present false milk quality reports, wreaking potential havoc on an industry scale.
Learning from Lactanet’s Experience
Lactanet’s narrow escape from a ransomware attack in mid-April was, fortunately, thanks to their strategic cybersecurity preparedness. A state-sponsored attack was not ruled out, but due to foresighted measures, the damage was minimal. As Lactanet’s COO and Centre of Expertise Director, Daniel Lefebvre, puts it, their situation was a mix of luck and well-crafted defense mechanisms.
Understanding the burgeoning threats of cybercrime in the agri-business sector, Lactanet enlisted the services of KPMG approximately two years ago. Their mission was to conduct extensive cyber-risk assessments and sequentially implement the necessary protective measures. Resultantly, a Managed Detection and Response (MDR) team was brought on board. Functioning round the clock, this team was to work in sync with Lactanet’s internal cybersecurity experts.
Part of Lactanet’s proactive defense strategy included running simulated phishing campaigns. These campaigns served a dual purpose: firstly, they were tests to check the preparedness levels of the employees. Secondly, it was an effective educational tool. When employees erringly clicked on a potentially harmful link, they were redirected to training modules that strengthened their cybersecurity knowledge. This strategic combination of practicality with education heightened Lactanet’s defensive shield against cyber threats.
Forging Ahead: Cybersecurity Plans for the Agriculture Industry
As the agriculture industry grasps the extent of its vulnerabilities, plans are being drawn up to tackle the surging waves of cybercrime. Taking a cue from the preventive and responsive strategies employed by Lactanet and Ontario Pork, many industry leaders are now acknowledging the need for upgraded cybersecurity measures.
High on the agenda is the regular conduct of risk assessments and the establishment of multi-layered defense strategies. Notorious cyber-attacks like those on Lactanet, Ontario Pork, and an Ontario dairy farmer have illuminated the grim fact that no one is immune to these threats. It is clear that businesses, ranging from small farms to large operations, need to be equipped with robust systems to defend against such onslaughts.
The key responsibility for protection doesn’t lie solely with IT departments. Every employee plays a crucial role in acting as the first line of defense. Hence, continuous training programs to raise awareness about emerging cyber threats have been identified as a cornerstone in any cybersecurity plan.
What’s more, the industry is exploring the idea of a centralized aggregated data system like that in Denmark. This could potentially offer enhanced cybersecurity but would involve significant investment and adjustment.
The call for action comes not only from the dire need for cyber protection but also from a visionary standpoint. Veteran industry leaders like Ontario Pork’s chair, Tara Terpstra, advocate for a proactive approach. She conveys an optimistic yet realistic sentiment, emphasizing the ongoing need for threat evaluation and strategic planning amidst this ever-evolving cyber threat landscape.
Terpstra explained, “Now, it’s not only about safeguarding against manifold threats but also about keeping pace with rapidly advancing hacker technology. Careful assessment and planning are crucial to navigating the world we live in.”
After all, the stakes are high, and the cost of complacency in today’s cyber age can be ruinous. The agriculture industry, a vital pillar of our economy and food supply chains, must strive to stay one step ahead in the face of relentless cyber threats.
The Bottom Line
In an industry as vital as agriculture, ensuring robust cybersecurity measures is no longer optional but essential. The ever-growing reliance on digital infrastructure exposes agri-food businesses to significant risks. Lessons from recent attacks remind us that being prepared, investing in advanced protection strategies, and fostering a collective response are crucial steps to safeguarding our food supply chain. By prioritizing cybersecurity and preparing for potential threats, we can protect not just data but the very foundation of our daily sustenance.
Key Takeaway: Investing in robust cybersecurity measures is vital for the agriculture industry to protect digital infrastructure, ensure a secure food supply chain, and prepare for potential threats. Collective action and advanced protection strategies are essential to safeguard this crucial sector.
