Since the 1980s, we have observed a range of cyberattacks targeting Industrial Control Systems (ICS), some of which have impacted elements of critical national infrastructure (CNI). While there are access limitations on information surrounding ICS focused cyberattacks, particularly within a CNI context, this paper provides an extensive summary of those publicly reported. By identifying and analysing previous ICS focused cyberattacks, we document their evolution, affording cyber-security practitioners with a greater understanding of attack vectors, threat actors, impact, and targeted sectors and locations, critical to the continued development of holistic risk management strategies.

自 1980 年代以来，我们观察到了一系列针对工业控制系统 (ICS) 的网络攻击，其中一些已经影响到关键国家基础设施 (CNI) 的元素。虽然围绕 ICS 集中网络攻击的信息存在访问限制，特别是在 CNI 背景下，但本文提供了公开报告的广泛摘要。通过识别和分析以前以 ICS 为重点的网络攻击，我们记录了它们的演变，使网络安全从业者能够更好地了解攻击媒介、威胁参与者、影响以及目标部门和位置，这对整体风险管理策略的持续发展至关重要。