Security News > 2020 > June > Can Governments Defeat Nation-State Attacks on Critical Infrastructures?

It turns out that industrial enterprises are much better positioned to defeat most nation-state attacks on power plants, pipelines, and other critical infrastructures than governments are.
Government intrusion detection is a little better at detecting attacks than our own systems and presents serious risks to corporate confidentiality.
The world's most secure industrial sites have long concluded that they must defend themselves against even sophisticated cyber attacks.
How do they do it? Secure sites observe that all cyber attacks are information - and so they carry out thorough inventories of offline and online information/attack flows that come into their critical networks.
When critical industrial sites deploy SEC-OT protections, they defeat the sophisticated attacks that governments cannot help with, and they call on the government for help with residual personnel risks.
News URL
Related news
- Critical PostgreSQL bug tied to zero-day attack on US Treasury (source)
- US charges Chinese hackers linked to critical infrastructure breaches (source)
- CISA tags critical Ivanti EPM flaws as actively exploited in attacks (source)
- Critical PHP RCE vulnerability mass exploited in new attacks (source)
- CISA: Medusa ransomware hit over 300 critical infrastructure orgs (source)
- Critical RCE flaw in Apache Tomcat actively exploited in attacks (source)
- Critical GitHub Attack (source)
- Critical Cisco Smart Licensing Utility flaws now exploited in attacks (source)
- Ongoing Cyber Attacks Exploit Critical Vulnerabilities in Cisco Smart Licensing Utility (source)
- UAT-5918 Targets Taiwan's Critical Infrastructure Using Web Shells and Open-Source Tools (source)