Security News > 2021 > May > Colonial Pipeline attack reminds us of our critical infrastructure's vulnerabilities
Cybersecurity expert discusses the many ways attackers could have gotten access to the Colonial Pipeline company and reminds us why the threat always looms.
TechRepublic's Karen Roby spoke with Vyas Sekar, a professor in electrical and computer engineering at Carnegie Mellon University, about the Colonial Pipeline ransomware attack by the hacker group Darkside.
Karen Roby: We're learning more about the Colonial Pipeline ransomware attack.
As you mentioned, this is a cyber-physical attack on a critical infrastructure component, which in this case was pipelines.
Which means that we know that such critical infrastructure attacks are possible.
The research, or the education focus, of CyLab is both on the education front, how do we train the workforce? How do we create the next generation of cybersecurity workers? And also on the research front, how do we give that workforce better tools from the research to proactively find new attack vectors? How to defend them inside the network? How to do recovery strategies? And so on.
News URL
Related news
- CISA: Network switch RCE flaw impacts critical infrastructure (source)
- Critical Ivanti RCE flaw with public exploit now used in attacks (source)
- CUPS vulnerabilities could be abused for DDoS attacks (source)
- Microsoft and DOJ disrupt Russian FSB hackers' attack infrastructure (source)
- Zero-Day Alert: Three Critical Ivanti CSA Vulnerabilities Actively Exploited (source)
- CISA says critical Fortinet RCE flaw now exploited in attacks (source)
- Healthcare attacks spread beyond US – just ask India's Star Health (source)
- US and UK govts warn: Russia scanning for your unpatched vulnerabilities (source)
- China again claims Volt Typhoon cyber-attack crew was invented by the US to discredit it (source)
- Iranian hackers act as brokers selling critical infrastructure access (source)