NIST has released a new guide to help organizations mitigate cybersecurity risks from removable media devices in operational technology environments. The publication emphasizes procedural, physical, technical, and sanitization controls to protect industrial control systems from malware infections via USB drives. #NIST #USBThreats
Keypoints
- NIST SP 1334 provides comprehensive guidance on managing removable media in OT environments.
- The use of USB drives in industrial settings poses significant security risks despite industry warnings.
- Key controls include device procurement policies, physical storage, and malware scanning.
- Technical measures recommend disabling unnecessary ports, encrypting data, and enabling write-protection.
- The guide emphasizes proper transportation and sanitization procedures to prevent malware spread.
Read More: https://www.securityweek.com/nist-publishes-guide-for-protecting-ics-against-usb-borne-threats/