Cybercriminal tactics against ICS include direct threats against individuals for MFA credentials, sometimes escalating to violence if they won’t share. Jim Coyle, US Public Sector CTO for Lookout, warns about the increasing use of hacking Android-based Industrial Control Systems (ICS), such as HVAC systems, and how stealing MFA tokens from mobile devices could affect critical services like healthcare, finance, and water supply, depending on the goals of the attackers.