We utilize artificial intelligence for site translations, and while we strive for accuracy, they may not always be 100% precise. Your understanding is appreciated.
Home/
Blog
/
Preventing Cross-Domain Threats for a Vietnamese…
Manufacturing | Customer Stories
Preventing Cross-Domain Threats for a Vietnamese Manufacturer
Securing IT-OT Data Transfers to Safeguard Production and Operations with OPSWAT's MetaDefender Optical Diode
Share this Post
About Company: A leading fertilizer producer and trader in Vietnam, this company, part of a large energy group, focuses on developing comprehensive nutritional solutions for crops to support farmers and the agricultural sector. With significant achievements, they’ve had a major impact on the Vietnamese fertilizer market.
What's the story? Like many established manufacturing plants, the company was built on a flat-network design where all devices and systems were interconnected without separation between IT and OT zones. This lack of segmentation left them vulnerable to malware, ransomware, and security exploits. To address these vulnerabilities, they deployed OPSWAT’s MetaDefender Optical Diode, part of the MetaDefender NetWall Suite of Solutions, securing data transfers between their isolated networks.
Due to the nature of the business, the name of the organization featured in this story has been kept anonymous in order to protect the integrity of their work.
Manufacturers face growing challenges in cybersecurity as attackers increasingly target their networks for illicit gains. According to Industry Week, manufacturing has been the most-attacked industry for the third consecutive year, primarily due to:
1. Legacy Network Design and Outdated Systems
Many manufacturing plants lack network segmentation, exposing systems to cyber threats. ICS often run on outdated software like Windows XP, which no longer receives security patches.
2. Sensitivity to Downtime and Revenue Loss
The industry's aversion to downtime makes it an attractive target for ransomware. Production shutdowns can lead to substantial financial losses, pushing manufacturers to pay ransoms quickly.
3. Increased Connectivity and Cyber Risks
As more devices are integrated into manufacturing systems, cyberattack potential rises, increasing risks to operations, safety, and finances.
Proactive Measures to Secure Production
One of the leading fertilizer manufacturers in Vietnam, is typical of companies that have taken proactive measures to avoid such cybersecurity breaches. With escalating malware attacks targeting manufacturers, they identified critical vulnerabilities within their networks.
The Vietnamese fertilizer company operated with a flat-network design, lacking clear separation between IT and OT zones. With all devices interconnected, the absence of segmentation left them vulnerable to threats like malware and ransomware, which could spread across the network, affecting both production and business operations.
Facing Internal and External Threats
The company faced several challenges, internally and externally:
Internal Risks: Unintentional or deliberate actions from employees, contractors, or suppliers could compromise security and lead to data loss or production halts.
External Threats: Cybercriminals actively targeted the company with tactics such as malware and ransomware, endangering operations and confidential data.
Given that ICS systems often operate on outdated technology with long life cycles, updating these systems to meet modern security standards is complex and can disrupt production. This balancing act was crucial for the company, as any production downtime could lead to significant financial losses.
Internally, they recognized that threats often arise from employees, contractors, or suppliers—whether inadvertently or intentionally—potentially compromising security and leading to data loss or disruptions in production.
Finding a Solution
Recognizing the security gaps, the company sought a robust solution to physically separate IT and OT systems to mitigate the risk of cyberattacks.
OPSWAT data diode solution, MetaDefender Optical Diode, part of the MetaDefender NetWall Suite of Solutions, was chosen for its capability to securely transfer data one-way through a hardware-enforced communication link, isolating the networks and preventing malware spread.
We needed a solution that would physically separate our IT and OT systems to minimize the risk of cyberattacks.
Mr. Nguyen Quoc Phong
Cybersecurity Solution Specialist
Benefits and Value Delivered: Enhanced Security, Compliance, and Efficiency
MetaDefender Optical Diode protects critical assets and equips manufacturing plants with tools to enhance cybersecurity strategies, ensuring a safe, stable, and efficient environment that meets regulatory and security standards.
The MetaDefender Optical Diode is designed to meet the most stringent security requirements and ensure stable operation in harsh environments, particularly in industrial settings and critical infrastructure.
Mr. Nguyen Quoc Phong
Cybersecurity Solution Specialist
With MetaDefender Optical Diode, manufacturers have the means to:
Eliminate Potential Gaps
MetaDefender Optical Diode provides a one-way data transfer, closing potential gaps in IT/OT communication that could arise from misconfigured firewalls.
Enhance Security
With its one-way data transmission mechanism, MetaDefender Optical Diode eliminates the possibility of external attacks, enhancing the security of critical systems and reducing cybersecurity risks.
Simplify Security Management
This solution does not require the complex configurations of two-way firewalls, simplifying the security-management process and minimizing risks from configuration errors.
Maintain Compliance
MetaDefender Optical Diode supports regulatory compliance with industrial cybersecurity standards such as NERC CIP, NIST CSF, and IEC 62443, helping businesses effectively meet legal and security requirements.
In additon, MetaDefender Optical Diode boasts Common Criteria EAL4+ certification, a prestigious international security standard. This certification validates its advanced security capabilities, proving its effectiveness in securing data transfers between networks with different security classifications and safeguarding Operational Technology (OT) infrastructures from evolving cyber threats.
OPSWAT's solutions not only protect the critical assets of businesses but also provide the necessary tools and information to improve cybersecurity strategies.
Mr. Nguyen Quoc Phong
Cybersecurity Solution Specialist
A Secure Path Forward: Ensuring Long-Term Cyber Resilience
As Mr.Phong looks to the future, “OPSWAT technology will play a crucial role in protecting and optimizing the operations of manufacturing plants,” he said.
“OPSWAT's solutions will help factories maintain a safe, stable, and efficient working environment; protecting critical assets while enabling sustainable growth for businesses in the face of increasingly complex cybersecurity threats.”
MetaDefender Optical Diode is designed to meet the most stringent security requirements and ensure stable operation in harsh environments, particularly in industrial settings and critical infrastructure where it can:
Help protect critical infrastructure
Ensure compliance with industry regulations
Prevent cybersecurity threats and maintain continuous production to protect the supply chain
Help sustain continuous and safe operations while enhancing the business's reputation and reliability
When asked what advice he would give to other organizations considering a similar solution for cross-domain security, Mr. Phong emphasized the need for developing a strong game plan.
“Implementing a cross-domain security solution like OPSWAT's MetaDefender Optical Diode requires thorough preparation and a clear strategy.
“By assessing the specific security needs of the business, selecting a solution that fits those needs, ensuring the solution's flexible integration with existing systems, and adhering to standards while fostering continuous development, organizations can successfully deploy such a solution.”
To see how OPSWAT’s solutions can help protect your operation from costly cyberattacks
