US Infrastructure Under Cyber Attack

If you manage infrastructure, it should not be on the public internet. If you manage infrastructure that can poison thousands of people, you should probably put it on a separate, air-gapped system, and not even on your corporate intranet. (Do people use that term anymore, or am I dating my knowledge?) US govt shares cyberattack defense tips for water utilities

Critical water infrastructure worldwide under attack

Water facilities have been repeatedly targeted by cyberattacks in recent years, compromising the security of critical infrastructure and raising concerns about public safety.

Since the start of the year, several water treatment companies have been breached in ransomware attacks that forced them to shut down systems to contain the breaches, including Veolia North America and the U.K.'s Southern Water.

Links are provided in the article, though there is not much info at the links.

On the proactive side, they do provide some guidance.

CISA, the FBI, and the Environmental Protection Agency (EPA) shared a list of defense measures U.S. water utilities should implement to better defend their systems against cyberattacks

It isn't just water, of course. FBI Director Says China Cyberattacks on U.S. Infrastructure Now at Unprecedented Scale.

As intelligence chiefs and policymakers gathered for this city’s annual security conference focused on the wars in Ukraine and the Middle East, the director of the Federal Bureau of Investigation urged them not to lose sight of another threat: China.

Christopher Wray on Sunday said Beijing’s efforts to covertly plant offensive malware inside U.S. critical infrastructure networks is now at “a scale greater than we’d seen before,” an issue he has deemed a defining national security threat.

China is also sending 10s of thousands people over here. But the border crisis is another story.

In some ways, the future is stupid.