Cybersecurity Leaders Address Critical Infrastructure Concerns In The Middle East

A recent survey conducted by Allianz Risk Barometer has revealed that cyber-attacks on critical infrastructure have emerged as the-highest concern among global respondents. This comes as no surprise given the current geopolitical events and our increasing reliance on digital devices. Experts predict that the potential shutdown of critical infrastructure will become the number-one priority for businesses in the future.

Critical infrastructure refers to systems and assets that are essential to a nation's security, economic stability, public health, and safety. It plays a vital role in upholding societal functions. To address the importance of safeguarding critical infrastructure and the vulnerabilities apparent in these systems, GISEC Global 2024, the Middle East's largest cybersecurity event, will be held from 23-25 April at the Dubai World Trade Centre.The event will bring together industry experts to discuss ways organizations can equip themselves for a cybersecure future.

Among the most targeted critical infrastructure sectors are utilities, such as energy and telecommunications, as well as healthcare, finance, transportation, and government services. Dimitri van Zantvliet, Cybersecurity Director and CISO of Dutch Railways, emphasizes that these sectors, which provide essential services and heavily rely on digital technologies, should be particularly concerned about vulnerabilities. Legacy systems and increasing interconnectivity between different systems can create weaknesses that cybercriminals exploit. Transportation and energy sectors, in particular, have become popular targets due to their criticality and the potential for widespread repercussions.

Working in the transportation sector presents a unique set of challenges. Mihir Joshi, Group Chief Cyber Security and Information Officer at Tata Power, India's largest integrated power company, highlights the importance of addressing the blind spots in the supply chain. He emphasizes the need to develop more cyber talent in the energy sector to keep up with escalating threats. The integration of IT and operational technology (OT) systems, which control physical transport mechanisms, poses additional challenges as they may have different security systems and vulnerabilities.

Two significant threats affecting critical infrastructure are ransomware and social engineering. Pedro Cameirão, Vice President and head of Nokia's Cyber Defense Center, points out that ransomware attacks can cause widespread disruption and financial damage. The rise of AI-enabled phishing campaigns and tactics like vishing and QRLjacking further compound the threats. Malicious botnets and Distributed Denial of Service (DDoS) attacks are also gaining momentum. These attacks can be extremely disruptive, endangering human lives and causing interruptions to critical industries such as hospitals.

Mitigating the evolution of attacks from cybercriminals requires government intervention. Governments play a critical role in bolstering cybersecurity for critical infrastructure sectors. They can set regulatory standards, facilitate information sharing, and provide financial incentives or support for implementing robust cybersecurity measures. International cooperation is also essential in addressing cyberattacks that often cross borders and fall outside the jurisdiction of a single state.

The survey results highlight the growing concern around cyber-attacks on critical infrastructure. As our reliance on digital systems increases, it is crucial to address vulnerabilities and strengthen cybersecurity measures to protect essential services. Events like GISEC Global 2024 provide a platform for industry experts to share insights and strategies for a cybersecure future. Government intervention and international cooperation are paramount in mitigating cyber threats and ensuring the safety and stability of critical infrastructure.