Today’s podcast is timely for a number of reasons. First, the theme for the final week of National Cyber Security Awareness Week (NCSAM), which concludes today, is “Protecting Critical Infrastructure From Cyber Threats.”

Second, and even more importantly, no other industry is at greater risk of a truly debilitating cyberattack than the energy and utilities (E&U) sector. According to a recent advisory from US-CERT, “since at least May 2017, threat actors have targeted government entities and the energy, water, aviation, nuclear and critical manufacturing sectors.”

Listen now as Nick Bradley and Michelle Alavarez, both of the X-Force Threat Research team, examine what makes the E&U industry such an attractive target for attackers. Questions examined in their wide-ranging conversation include:

  • Does compliance with national and regional regulations equate to security?
  • What are the most notable areas of risk for the E&U sector?
  • Attacks on industrial control systems (ICS) increased by 110 percent in 2016 and are rising even more in 2017. What is behind this dramatic surge?
  • Insider threats are a risk across many sectors. Is this also true of the E&U industry?
  • What is the most prominent attack type targeting E&U systems?
  • Where should the E&U industry focus its investments and resources?


Listen to the podcast


Read the complete Report: Energy and Utility Companies — Targeted on all sides

More from Energy & Utility

Third-party breaches hit 90% of top global energy companies

3 min read - A new report from SecurityScorecard reveals a startling trend among the world’s top energy companies, with 90% suffering from data breaches through third parties over the last year. This statistic is particularly concerning given the crucial function these companies serve in everyday life.Their increased dependence on digital systems facilitates the increase in attacks on infrastructure networks. This sheds light on the need for these energy companies to adopt a proactive approach to securing their networks and customer information.2023 industry recap:…

Today’s biggest threats against the energy grid

2 min read - Without the U.S. energy grid, life as we know it simply grinds to a halt. Businesses can’t serve customers. Homes don’t have power. Traffic lights no longer work. We depend on the grid operating reliably each and every day for business and personal tasks. That makes it even more crucial to defend our energy grid from modern threats. Physical threats to the energy grid Since day one, the grid has been vulnerable from a physical perspective. Storms knocking the grid…

2022 industry threat recap: Energy

3 min read - In 2022, 10.7% of observed cyberattacks targeted the energy industry, according to the X-Force Threat Intelligence Index 2023. This puts energy in fourth place overall — the same as the year prior and behind manufacturing, finance and insurance and professional and business services. The report notes that this reduction in total cyberattacks may be partly tied to pushback from highly public breaches in 2021, such as the Colonial Pipeline attack. Despite the overall drop in threats, however, the industry remains…

Topic updates

Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today