In an alarming warning to nations around the world, a new report by cybersecurity expert KnowBe4 reveals that cyberattacks targeting critical infrastructure have increased dramatically, posing serious risks to national security and stability. global economy. The report, published this week, highlights the urgent need for a comprehensive approach to cyber security as digital threats continue to evolve at an alarming rate.
Between January 2023 and January 2024, critical infrastructure around the world received more than 420 million cyberattacks. This number is equivalent to 13 attacks per second and represents a 30% increase compared to 2022. This growth highlights a worrying trend: the growing vulnerability of essential services such as energy, transport and telecommunications, which are increasingly attractive to cybercriminals.
The report details the growing threats to the security of critical infrastructure in Europe, where cyber attacks have reached alarming proportions, particularly since Russia’s invasion of Ukraine. These attacks have tested the resilience of national infrastructures and raised concerns about the preparedness of governments and private sector actors to respond to such threats.
The example of Europe is particularly worrying, since these attacks are often accompanied by geopolitical tensions. According to the report, Europe’s power grid has been hit by thousands of cyber attacks since the beginning of the conflict in Ukraine, aimed at disrupting the energy infrastructure. Leonard Birnbaum, chief executive of E.ON, one of Europe’s largest utilities, said recently that the attackers are “getting better every day,” adding that “I’m worried now and I’ll be even more worried in the future.”
In Denmark, the energy network suffered a coordinated attack last year in May, in which the attackers were able to access some of the companies’ industrial control systems. This attack demonstrates the vulnerability of even the most advanced systems to attacks coordinated by the government or other groups aimed at destabilizing essential services.
The consequences of these attacks can be devastating. The report states that cyber attacks are no longer limited to collecting data or creating temporary disruptions. Instead, these attacks are increasingly aimed at gaining control of systems, with the aim of causing large-scale disruptions or engaging in espionage. For example, an attack on an energy grid could plunge entire regions into darkness, disrupt hospital operations, and even hamper military capabilities in times of crisis.
The situation is more complicated by the nature of the attacks. The report highlights that most attacks against infrastructure in Europe do not seek information, but seek access to control systems with the aim of disrupting their operation. This includes attacks on power plants, water distribution systems and telecommunications infrastructures, which shows the seriousness of the threat to the lives of citizens and the stability of countries.
Stu Sjouwerman, CEO of KnowBe4, emphasized the importance of a coordinated response to these threats, noting that the increasing number of attacks is a call to action across the board. “While the increase in cyberattacks on critical infrastructure is very worrying, it is important to remember that we are not powerless in this fight. By encouraging a strong security culture that combines technology, processes and people, we can significantly mitigate these risks,” he said Sjouwerman.
The report highlights that the nature of cyber warfare has changed. Instead of direct military confrontations, state-sponsored groups and cybercriminals are increasingly turning to the digital infrastructure that supports modern society. This shift is part of a broader trend where the line between traditional warfare and cyber warfare is blurring, increasing the drive for global security.
Beyond technological defenses, the report suggests a strong cultural shift toward cybersecurity awareness. Many of these attacks take advantage of human error, such as clicking on phishing links or using weak passwords. A strong security culture that educates and empowers individuals to recognize and respond to potential threats can dramatically reduce the risk of successful cyber attacks.
The report calls for immediate action by the public and private sectors to strengthen their defences, improve incident response capabilities and work together to protect the critical infrastructure that supports everyday life.