Security experts are warning companies in the energy industry of possible cyber attacks and Western plants are more exposed to the cyber threats. Electric grids, oil refineries and power plants are the biggest targets for cyber-attack by hackers, warns the former chief of the National Security Agency, General Keith Alexander.
Alexander, who led the U.S. battle against cyber-threats for much of the last decade, was speaking at a private dinner held by IHS CERAWeek in Texas last week, reports the Daily Telegraph.
“The greatest risk is a catastrophic attack on the energy infrastructure. We are not prepared for that,” he declared.
General Keith Alexander is considered one if the greatest cyber experts due to more than a decades of experience in the fight against cyber-threats, according to the Daily Telegraph the official was speaking at a private dinner held by IHS CERAWeek in Texas a few days ago when he expressed the fear of crippling cyber-attack on Western energy infrastructure.
The fear appear legitimate due to the recent news regarding the different cyber attacks that hit the sector, the report recently issued by the DHS’s Industrial Control Systems Cyber Emergency Response Team (ICS-CERT) related to the period September 2014 – February 2015 highlighted that the majority of the attacks involved entities in the Energy Sector followed by Critical Manufacturing. About 30 percent of the incidents hit infrastructures in the energy sector, meanwhile Critical Manufacturing (i.e. manufacturing of vehicles and aviation and aerospace components) accounted for 27 percent.
The most disconcerting aspect is that more than half of the incidents reported by asset owners and industry partners involved sophisticated APT, this means that as explained by the General Keith Alexander the U.S. and its allies are at an ever growing risk of a systemic cyber-assault.
The modern economy depends on numerous factors, a major cyber attack against any entities in the energy sector (i.e. oil refinery, energy grid) could have a dramatic impact in a global scale.
“We need something like an integrated air-defence system for the whole energy sector,” added Gen. Alexander.
Alexander illustrated the possible repercussions for a cyber attack predicting that energy infrastructure would be a hacker prime target, the former NSA Chief also listed five countries that have significant cyber-warfare capabilities, the US, UK, Israel, Russia and Iran.
I agree with General Keith Alexander, and I also include in the list the China and the North Korea, two countries that are significantly investing in the definition of a new generation of cyber weapons.
We have a clear idea of the possible effects that a cyber weapon like Stuxnet could have on the critical infrastructure of a Western country.
The current NSA chief Michael Rogers recently testified that the Government of Beijing is capable of cyber-attacks that could cause ‘catastrophic failures’ of an electricity grid, the water systems or any other energy plant.
“The Iranians revealed their skill in August 2012 with a taunting virus attack on Saudi Aramco, Saudi Arabia’s state-owned oil giant. Hackers erased most of the company’s emails and documents, leaving an image of a burning American flag on the computer system as their calling card. There was a similar attack on Qatar’s state-energy group RasGas. The action was a form or retaliation for economic sanctions against Iran, but also a warning shot to Riyadh in an escalating battle for Mid-East dominance by the two regional superpowers. It is highly pertinent today given comments by leading figures in Tehran that the Saudis will be “punished” for their decision to drive down the price of oil.” reported The Telegraph
Speaking of cyber threats we cannot ignore the menace represented by terrorist organizations, including the ISIS, regarding the dreaded group Gen. Alexander admitted that Western Intelligence had failed to monitor the evolution of the threat across the Middle East.
(Security Affairs – energy industry, critical infrastructure)
Necessary cookies are absolutely essential for the website to function properly. This category only includes cookies that ensures basic functionalities and security features of the website. These cookies do not store any personal information.
Any cookies that may not be particularly necessary for the website to function and is used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-necessary cookies. It is mandatory to procure user consent prior to running these cookies on your website.