Survey: Critical infrastructure risks cyber attack
Half of the critical infrastructure providers that the UK, Europe and North America rely on are vulnerable to cyber attack, according to a new survey.


Te critical infrastructure we all rely on from day-to-day is open to and potentially already under cyber attack, research published today has revealed.
IDC surveyed 199 security experts from utilities, oil and gas, financial services, government, telecommunications, transportation providers in Europe, Canada and the US.
More than half of these experts believed that most critical infrastructure continues to be vulnerable to cyber attack and the majority said that major attacks have already begun or are likely to occur in the next 12 months.
Only the financial services industry was considered prepared, although nearly 40 per cent also believed that even this sector was not ready to defend itself. And for some - such as postal, shipping and transportation sectors - as many as three out of four experts indicated that the infrastructure was under-prepared.
Out of all the industries covered by the survey, respondents said energy was not only the biggest target for cyber attack, but also the sector that could cause the most disruption if attacked - as well as the most vulnerable to attack.
And, when asked to name the biggest bottleneck to improving cyber security, the largest number of experts (29 per cent) said the cost of security measures was holding them back. Apathy was second most likely to be a barrier, with government bureaucracy and internal issues tying for third.
Rick Nicholson, research vice president for IDC's Energy Insights and author of the Secure Computing-sponsored research, said: "Most utility CIOs [chief information officers] believe that their companies will be compliant with relevant standards, but still have a long way to go before being adequately prepared for all cyber attacks."
Get the ITPro daily newsletter
Sign up today and you will receive a free copy of our Future Focus 2025 report - the leading guidance on AI, cybersecurity and other IT challenges as per 700+ senior executives
The research concluded that, at the same time that attacks are becoming more likely, many networks are becoming less secure. Almost all (98 per cent) of respondents believed direct connectivity of their control systems to internet protocol (IP) based network or the internet had made them more vulnerable.
It also warned that, as companies deploy new technologies such as smart meters, sensors and advanced communications networks, they run the risk of increasing their vulnerability unless they include security as an integral part of the projects.
And it said the increased quest for standardisation of IT platforms in response to cost pressures during turbulent economic times would also not help those critical infrastructure systems be any less vulnerable to attack.
A 25-year veteran enterprise technology expert, Miya Knights applies her deep understanding of technology gained through her journalism career to both her role as a consultant and as director at Retail Technology Magazine, which she helped shape over the past 17 years. Miya was educated at Oxford University, earning a master’s degree in English.
Her role as a journalist has seen her write for many of the leading technology publishers in the UK such as ITPro, TechWeekEurope, CIO UK, Computer Weekly, and also a number of national newspapers including The Times, Independent, and Financial Times.
-
M&S suspends online sales as 'cyber incident' continues
News Marks & Spencer (M&S) has informed customers that all online and app sales have been suspended as the high street retailer battles a ‘cyber incident’.
By Ross Kelly
-
Manners cost nothing, unless you’re using ChatGPT
Opinion Polite users are costing OpenAI millions of dollars each year – but Ps and Qs are a small dent in what ChatGPT could cost the planet
By Ross Kelly
-
Global security spending continues to rise
News The US and Europe show the strongest growth, but spending is rising globally
By Emma Woollacott
-
300 days under the radar: How Volt Typhoon eluded detection in the US electric grid for nearly a year
Analysis Lengthy OT lifespans give attackers time to penetrate networks underpinning critical infrastructure and plan future disruption
By Solomon Klappholz
-
The business value of Zscaler Data Protection
Whitepaper Understand how this tool minimizes the risks related to data loss and other security events
By ITPro
-
Why your business needs zero trust
Whitepaper How zero trust can right the wrongs of legacy security architecture
By ITPro
-
Definitive guide to ransomware 2023
Whitepaper A guide to help rethink your defence against ransomware threats
By ITPro
-
Why Fulham FC’s geography makes running IT so challenging
Case Study Fending off cyber criminals and keeping equipment updated on match days is more difficult than you might think
By Connor Jones
-
Hardware security and confidential computing in server platforms
whitepaper Computing security is central to IT infrastructure transformation
By ITPro
-
Capita cyber attack could cost firm up to $25 million in fees
News Capita’s costs in the wake of a cyber attack could exceed expectations, experts have warned
By Ross Kelly