against the energy sector hit Danish energy supply companies. The first wave targeted around 15 companies, while the second wave targeted about 25. The majority of organizations targeted in the second wave suffered at least one control system intrusion, which amounted to about 90% of the companies. While the control systems hit were mostly in the periphery of the ICS network, there were a few cases where control systems responsible for the supervision and control of physical processes were affected.”
US government outlines threats posed by Chinese-manufactured drones.
AAR Consultant, a strategic analysis and market forecast consultancy, revealed that the US government issued an official warning regarding the potential national security threat posed by Chinese-manufactured drones. The report underlines the potential risks associated with drones made in China, as the Chinese government may share sensitive information gathered by drones with state entities against the US. According to the report, the threat is aimed not only at the public sector but also at the private sector, which uses drones for various operations that can comprise national security, critical infrastructure, and enterprise operations.
This survey is essential to analyze and understand the severity and impact of every cyber attack and serve as a foundation to develop robust and effective cybersecurity plans for the industrial sector, including water infrastructure, energy, and maritime security. Understanding the tactics, techniques, and procedures of threat actors is essential in order to mitigate the impact of cyberattacks and protect critical infrastructure. Information about cyberattacks, ransomware incidents, and the development of new and dangerous malware helps in developing better defensive strategies and in designing improved security controls and protections for critical infrastructure worldwide.
This article highlights the emergence of threat actors such as Volt Typhoon, their tactics, and the motivations they may have. The US government’s response to cyberattacks against critical infrastructure, specifically those believed to be initiated by the Chinese government, indicates that these threats are taken very seriously and are a matter of national security. The need for enhanced collaboration between government agencies such as the Environmental Protection Agency and the Cybersecurity and Infrastructure Security Agency is also evident. Furthermore, the research on the impact of ransomware attacks in the OT sector, including the cost to companies such as Johnson Controls and Schneider Electric, underscores the urgency for advancements in industrial cybersecurity. Ultimately, understanding these various types of cyber threats, their potential impact, and the recommended responses is crucial for advancing cybersecurity in the industrial and critical infrastructure sectors within the United States and internationally.