This post was originally published on Data Center Knowledge
Just a week shy of the four-year anniversary of the Colonial Pipeline attack, cybersecurity across US critical infrastructure, particularly operational technology, is lagging woefully behind the country’s adversaries.
A bit of good news came out of the infamous incident, according to Michael Garcia, associate chief of policy with the US Cybersecurity and Infrastructure Security Agency. During a panel discussion yesterday on securing critical infrastructure at RSAC Conference 2025, he said the attack jolted the collective conscience of the country awake to the fact that ransomware was a true threat, and that a cyber-attack could have real-world operational technology consequences. But beyond awareness, little has improved across critical infrastructure networks.
“Have we done enough?” Garcia asked rhetorically during his opening remarks. “The answer is no.”
The consensus among Garcia and his fellow panelists was that intelligence and information sharing are key to effective defense and response. But sharing information with the federal government can be onerous. Who do you call when there’s an incident?
Keep reading this article in Dark Reading, a Data Center Knowledge partner site
— Read the rest of this post, which was originally published on Data Center Knowledge.
