2023 - Cyber Threats To US Infrastructure 

Cyber attacks in the US have significantly increased over the past year, with the health care system and other critical sectors being attacked as the threat of malware like ransomware and foreign spyware continues to evolve. 

2022 saw US government officials and lawmakers renew their focus on cyber security and seek to secure the country’s critical sectors from rising cyber threats. This issue is expected to increase in 2023, as many of those threats are still escalating while the cyber sector is confronting an ongoing workforce shortage in its efforts to bolster the US’s digital defenses.

In addition to deploying ransomware, the threat actors have used “double extortion” techniques, whereby they exfiltrate data and demand a ransom payment to decrypt it, then threaten to expose the data if a ransom payment is not made.

Threats To Critical Sectors

The financial, energy and health care sectors are all facing a skyrocketing number of hacks. Cyber attacks have robbed companies in those industries of hundreds of millions of dollars, exposed data and even disrupted essential services, as when a ransomware attack forced the Colonial Pipeline to shut down in 2021, causing gas shortages in several states.

The health care sector in particular has seen a rise in cyber attacks in the last few years, particularly ransomware attacks targeting hospitals in order to gain access to sensitive information like patient data or medical research and technology. In Washington, Senator Mark Warne, chairman of the Senate Intelligence Committee, has warned that cyber attacks could lead to delays in treatment and even patients’ deaths.

US officials have already stepped up their efforts to protect critical sectors from those evolving threats, and have indicated that doing so will remain a top priority this year. Securing critical infrastructure like the energy and health care sectors plays a key part in mitigating cyber risks. 

Ransomware Attacks

Recent years have seen an especially dramatic spike in ransomware attacks, particularly targeting the health care and financial sectors. Last year, ransomware groups caused outages in multiple hospital systems, temporarily closed schools in parts of the US, carried out multimillion-dollar hacks on a number of companies and drove Costa Rica to declare a state of emergency in May as a barrage of attacks impacted its government services.

Tackling ransomware at home and abroad is also expected to take precedence this year as the US and its allies have come together to counter the heightened threat.

In 2021, the Biden administration, along with several other countries, launched its first annual initiative intended to counter ransomware globally. In November 2022, the White House held its 2nd International Counter Ransomware Initiative Summit, in which it invited more than 30 countries to discuss steps they can take to curb the rise of ransomware globally. “Ransomware is a pocketbook issue that impacts thousands of companies and individuals every year globally,” the White House said in a press release.

During the summit, the countries laid out several initiatives, including establishing an international counter-ransomware task force, actively sharing information between the public and private sectors and taking joint steps to stop ransomware actors using the crypto-currency system. The ransomware task force, which is led by Australia, is expected to become operational in January.

CISA:    The Hill:     CybeReason:   Cyberscoop:    FirerceHealthcare:      Silicon Republic:    Security Week:    

You Might Also Read: 

Critical Infrastructure: A Flashing Beacon For Cybercrime:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible






 

« Dissent Over British  Internet Safety Laws
The Application Of Artificial Intelligence In Cybersecurity »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

BackupVault

BackupVault

BackupVault is a leading provider of completely automatic, fully encrypted online, cloud backup.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

AhnLab

AhnLab

AhnLab provides a range of information security solutions including network security, endpoint security, antivirus and consulting services.

Ubisecure

Ubisecure

Ubisecure provide Identity & Access Management solutions.

Agari

Agari

Agari is the Trusted Email Identity Company™, protecting brands and people from devastating phishing and socially-engineered attacks.

HDI Global SE

HDI Global SE

HDI Global SE provides customised insurance solutions for industrial and commercial clients worldwide including Cyber Liability insurance.

Auth0

Auth0

Auth0 is a cloud service that provides a set of unified APIs and tools that instantly enables single sign-on and user management for any application, API or IoT device.

Berwick Partners

Berwick Partners

Berwick Partners’ Cyber Security Practice is a leading recruiter of senior management positions in this field; we have an exceptional understanding of the constantly changing Cyber landscape.

Balbix

Balbix

Balbix BreachControl™ is the industry’s first system to leverage specialized AI to provide comprehensive and continuous predictive assessment of breach risk.

Sanderson

Sanderson

Sanderson is a recruitment company providing expert recruitment services in areas including Cyber & Information Security.

Risk Based Security (RBS)

Risk Based Security (RBS)

Risk Based Security provide the most comprehensive and timely vulnerability intelligence, breach data and risk ratings.

White & Black

White & Black

White & Black are specialist corporate & technology lawyers based in London & Oxford.

AttackFlow

AttackFlow

AttackFlow is a static code analysis company which develops innovative solutions for secure app development.

Sertainty

Sertainty

Sertainty enables developers to mix intelligence into data files for active risk mitigation and data control. Discover the impact of Data: Empowered.

Earlybird Venture Capital

Earlybird Venture Capital

Earlybird is a venture capital investor focused on European technology innovators.

ClubCISO

ClubCISO

ClubCISO is a community of peers, working together to help shape the future of the information security profession by facilitating independent discussion on data security and cyber resilience.

Blok Cyber Security

Blok Cyber Security

Blok provide small businesses and sole traders, with affordable, managed Cyber Security Packages that offer immediate protection and peace of mind.

Pessimistic Security

Pessimistic Security

The team behind Pessimistic helps blockchain startups meet modern security challenges since 2017.