top of page
by Trevor Loveday

Two fifths of the world's critical infrastructure providers have been hacked

More than two fifths of critical infrastructure providers worldwide, including water companies, have suffered a cyber breach, according to a report from defence and security firm Thales. The report identifies a strong correlation between breached organisations and compliance.


Thales, in its 2024 Data Threat Report, found that 42% of critical infrastructure organisations (CIOs) had experienced data breaches in the past year, with 93% reporting an increase in numbers of attacks. Nearly one in four had been victims of ransomware attacks, with nearly half of those paying the ransom.


Thales reported that just over a third of cloud-based breaches arose from “human error” with “exploiting a known vulnerability” accounting for 31%.


The report said 84% of CIOs that had failed a compliance audit in the preceding 12 months had “experienced a breach in their history”, while only 17% of those that had not failed a compliance audit had any breach history. 


It went on to say the shift to cloud environments has “proved problematic for CIOs”. It calculated that 51%  thought that managing security in the cloud was “more complex than managing security within on-premise environments”.


Managing director of cyber security and trust at Thales UK, Tony Burton, said: “Critical National Infrastructure – from the utilities that households and businesses rely upon, to the telecommunications and transport systems that keep society running... face very tangible consequences should a breach be successful.”


Comments


bottom of page