Trend Micro researchers found human machine interface (HMI) systems in thousands of critical water and energy organizations exposed to the internet and just waiting to be exploited. Critical functions such as starting or stopping a system can be accessed by anyone, be it nation-state attackers or script kiddies. The report includes defense and security strategies to better protect ICSs, supply chains and HMI systems against the risk of attack. All exposed oil and gas HMIs covered in the report were in the U.S. except a drilling rig in the Middle East.”]