Critical infrastructure sectors are at risk due to the exposure of industrial control systems (ICS) devices to the internet, which can be exploited by threat actors to disrupt operations, access sensitive data, and potentially sabotage essential services. The use of insecure protocols such as Modbus further exacerbates the vulnerability of these systems. Malware like Stuxnet, Industroyer, and Triton have already demonstrated their capability to cause significant harm to ICS, including outages and physical damage. A notable increase in ICS vulnerability disclosures, nearly doubling between 2024 and 2025, underscores the growing interest of threat actors in targeting these systems1. This surge in vulnerabilities, combined with the ease of access to internet-exposed ICS devices, creates a perfect storm of risk for critical sectors. So what matters most to practitioners is the urgent need to implement robust security measures to protect these systems from potential attacks.
Internet-Exposed ICS Devices Raise Alarm for Critical Sectors
⚠️ Critical Alert
Why This Matters
Recent research shows that ICS vulnerability disclosures nearly doubled between 2024 and 2025, driven in part by increased interest from threat acto
References
- SecurityAffairs. (2026, April 9). Internet-Exposed ICS Devices Raise Alarm for Critical Sectors. *SecurityAffairs*. https://securityaffairs.com/190525/ics-scada/internet-exposed-ics-devices-raise-alarm-for-critical-sectors.html
Original Source
SecurityAffairs
Read original →