For decades, security experts have warned that America's critical infrastructure is at risk for cyberattacks. Yet, despite seemingly endless conversations, ongoing debate and escalating concerns, modernization is slow and protections continue to lag.
(image by niroworld, via Adobe Stock)
When the Colonial Pipeline breach took place, it was as predictable as it was frightening. The ransomware attack shut down the pipeline for six days starting on May 7, and it led to a spike in oil prices along with shortages in some areas. But the next attack could be even more devastating: large swaths of the nation could be left without electricity or Internet access, water filtration systems could go offline, or natural gas deliveries could be disrupted during winter. Any of these could put lives at risk.
At the heart of the problem is aging operational infrastructure and industrial controls that lack security required for the digital age. As organizations have overlaid connected IT systems and Internet of Things (IoT) devices, the situation has become nothing short of a nightmare. In many cases, these pipelines and facilities have hundreds or even thousands of potential entry points for attackers.
Heaping on additional pain: approximately 85 percent of US infrastructure is operated by private companies, with virtually no cybersecurity regulations in place. "Many of the systems in use weren't designed for an era where operational and IT technology would be linked," states Joe Nocera, Leader of PwC's ..
Support the originator by clicking the read the rest link below.
