While the news has jumped all over the issue about the hack of the company’s technology and the ransom being demanded by a Russian crime organization, the “experts” have all said the same thing — this is not a one-off event.
I think if you had interviewed Colonial Pipeline about their cybersecurity before the attack, they would have given everyone a thumbs up about all the precautions that they were taking to secure their IT systems. I have found that any and all infrastructure owners and operators will say the same type of things about all the processes and procedures that they have in place.
The weakest point in the cybersecurity walls we try to erect are the organization’s people. One errant click on an email, a link or an attachment, and the criminals or nation states are inside the network of the company/organization. Even cybersecurity companies have been hacked!
On the training side of things, I recently did a Disaster Zone podcast on “A New Approach to Cybersecurity Training” for employees. Check it out.