Cyber Attacks Take a Byte Out of Ag
Tuesday, November 19, 2024
How To Halt The Hacking
By Geoff Geddes
Remember when “hacking” was simply a way of cutting through the brush on your woodlot?
Today, it is a cutting-edge method of infiltrating computer systems without permission.
Though it is not always done with malice, the incidence of hacking as part of cyber-attacks in many industries, including agriculture, is on the rise. These attacks aim to “steal, expose, alter, disable, or destroy data, applications, or other assets through unauthorized access to a network, computer system or digital device.”
For the ag sector, the impact on farmers, retailers, and consumers is a growing concern.
“The biggest challenge most businesses face is from ransomware,” says Ryan Westman, director of threat intelligence with eSentire, a managed detection and response (MDR) service based in Waterloo, Ont. “Ransomware is a type of malware (malicious software) that finds a way into your computer system, often when a staff member opens an attachment. From there, the hackers lock you out of your files and demand a ransom in exchange for the key.”
The intrusions can even come with a twisted sense of humour, often including a message that “your system is slowing down while your pulse is speeding up.”
“Hackers like to put a lit cigarette in your eye,” says Westman.
Minding your Ps
More importantly, they often threaten one or more of the “3 Ps” for ag operations: Production, profit and profile.
While individual farms are unlikely to report an issue, a cybersecurity attack on Canadian farmers can impact production, revenue and animal health. If an attacker compromises an industrial control system that powers fans for drying grain, there could be a significant decrease in grain quality and revenue.
“Disruptions to irrigation systems during critical drought conditions could severely affect crop yields, impacting overall productivity and financial outcomes for the farming operation,” says Steve Croucher, vice president of sales with Malleum, a cyber security company based in Ottawa.
Compromising a farming operation’s Wi-Fi network could also expose sensitive information, such as financial data, personal records, and crop/livestock details. This type of breach may result in operational disruption, economic loss and long-term reputational harm to the business.
Mary Loggan photo
Potential issues with livestock range from the dangerous – such as messing with milking machines and preventing farmers from assessing milk quality on dairy farms – to the daft.
“On an Ontario pork farm recently, an animal activist hacked their system and froze all the technology,” says Cathy Lennon, general manager of the Ontario Federation of Agriculture (OFA) in Guelph. “They told the farmer they would only unlock his operation if he made a public statement that he was responsible for animal abuse.”
Though leaps in technology have brought rewards for farmers, it is the classic case of a double-edged sword.
Friend and foe
“Farmers are increasingly leveraging automation and devices to run their farms,” says Croucher. “Most operations today have some form of industrial control/operational technology systems, and they are using advanced equipment such as drones and autonomous machines to reduce labour and increase efficiency. However, this also means that farmers are managing increasingly large amounts of data and technologies that potentially expose them to cyberattacks.”
Adding to the problem, many farmers may not be adequately equipped to deal with the accompanying cybersecurity threats that these technologies introduce.
“The farming industry in Canada is made up of a significant number of independent business owners who manage their own IT and OT systems,” says Croucher. “A 2022 survey of 167 farmers found that they had invested, on average, only $541 in cyber security since 2020.”
Not surprisingly, the damage to agriculture goes far beyond the farm gate. For example, in 2021, a ransomware attack on JBS, the world’s largest meat processing company, earned the hackers US$11 million in ransom.
“In the process, production was disrupted for several days, including at the JBS Canada beef processing plant in Brooks, Alta.,” says Westman. “The incident threatened to disrupt food supply chains and further inflate already high food prices.”
Another prominent target was Saskatoon-based Federated Co-operatives Ltd. (FCL), a wholesaling, manufacturing, marketing and administrative co-operative owned by more than 160 independent retail co-operative associations from B.C. to Manitoba. These co-ops own and operate “agrocentres,” food stores, gas bars/convenience stores and home centres.
“FCL stated it was hit by a cyberattack in June of 2024,” says Westman. “Though it did not publicly state that it was a ransomware attack, there were many signs indicating as much.”
The attack affected internal and customer-facing systems, stock in some grocery stores, and cardlock fuel locations, which supply fuel to various corporate clients.
“There is a potential for consumers to face higher prices for certain products if farming operations are disrupted by these intrusions,” says Croucher. “A reduction in the quality or quantity of crop yields could drive up costs. Additionally, pressure on commodity prices may arise from irrigation issues, reduced product availability in grain elevators, and impacts on transportation systems, such as the rail network, due to lower volumes.”
As a result, consumers may receive lower-quality products at inflated prices. Furthermore, if farming operations are compromised and struggle to recover, consumer confidence could be lost.
Learn not to burn
The private and public sectors are being encouraged to educate farmers, businesses, organizations and citizens about current and emerging cyber threats.
“The Government of Canada has started an educational program where you can take short, online courses for free to enhance your awareness of the issue,” says Lennon. “What does a scam or phishing expedition look like? How do you know if a message or email you receive is safe?
“We regularly send out test messages to our staff to see if they recognize the threat, just to remind them of what to look for.”
One of the easiest and most effective protective measures, whether for a family farm or large retailer, is to have strong, unique passwords.
“We are all guilty of reusing the same password over and over, and that can be your weakest link,” says Lennon. “Once a hacker gets your password for one of your sites, they can use it for all of them.”
As an additional safeguard, Lennon advises changing your passwords regularly and keeping them private, even from friends and co-workers.
While some larger companies hire a managed detection and response agency to monitor their systems 24/7, that comes at a cost.
“I have been advocating for the Canadian government to offer a non-refundable tax credit for small and medium-sized businesses when they hire an MDR,” says Westman. “This would allow those companies to pair with a service that will identify risks and help manage them.”
The Canadian government has taken steps to address the threat of cyberattacks against critical infrastructure.
“In 2020, the Canadian Centre for Cyber Security released the National Cyber Threat Assessment, identifying the agricultural sector as part of Canada’s critical infrastructure vulnerable to cyber threats,” says Croucher.
“Additionally, the CCCS has published the ‘Baseline Cyber Security Controls for Small and Medium Organizations’ to assist small independent businesses in managing their security. However, Bill C-26 – An Act respecting cyber security, which aims to strengthen critical infrastructure on cyberattacks, does not include food and agriculture specifically.”
Fortunately, whether it’s crops or computers, ag sees the need to “act, not react” – something Croucher cites as vital to winning the cyber war.
“By providing targeted guidance, education, and actionable steps, stakeholders can help reduce risks across the entire farming supply chain, including farm operations, transportation, and shipping.” BF