Public Sector

Critical infrastructure security will stay poor until everyone pulls together

Claroty CEO Yaniv Vardi tells us what's needed to defend vital networks

Interview Take a glance at the cybersecurity headlines of late, and you'll see a familiar phrase that keeps cropping up: Critical infrastructure. 

The power lines, internet cables, water control systems, and other critical technology that keeps a country running are being prodded and attacked physically and digitally lately – and Claroty CEO Yaniv Vardi thinks it's only likely to get worse.

"The trend is only going up," Vardi told The Register in an interview you can watch below. Nearly three-quarters of companies involved in critical infrastructure experienced a ransomware attack last year, Vardi said his researchers say they've found. 

"And yes, the physical attacks on cables, like the ones in the Red Sea, are only growing [as well]," Vardi added. 

Defending critical infrastructure requires public and private sector cooperation, Vardi stressed. He added that governments need to pass stricter regulations that will hold lax software and hardware suppliers accountable. 

"The race to connectivity far outpaces the ability to secure it," Vardi told us. ®

Send us news

Microsoft answered Congress' questions on security. Now the White House needs to act

Business as usual needs a real change

Let's kick off our summer with a pwn-me-by-Wi-Fi bug in Microsoft Windows

Redmond splats dozens of bugs as does Adobe while Arm drivers and PHP under active attack

Microsoft bigwig says the Feds catching Chinese spies in Exchange Online is the cloud working as intended

'It's not our job to find the culprits – That's what we're paying you for' lawmaker scolds Brad Smith

Arm security defense shattered by speculative execution 95% of the time

'TikTag' security folks find anti-exploit mechanism rather fragile

AWS is pushing ahead with MFA for privileged accounts. What that means for you ...

The clock is ticking – why not try a passkey?

Microsoft paid Tenable a bug bounty for an Azure flaw it says doesn't need a fix, just better documentation

Let customers interfere with other tenants? That's our cloud working by design, Redmond seems to say

FCC takes some action against notorious BGP

How's your RPKI-based security plan coming along? Feds want to know

Defiant Microsoft pushes ahead with controversial Recall – tho as an opt-in

Windows maker acknowledges 'clear signal' from everyone, then mostly ignores it

Can platform-wide AI ever fit into enterprise security?

You know what they say about headlines that end in a question mark

EU attempt to sneak through new encryption-eroding law slammed by Signal, politicians

If you call 'client-side scanning' something like 'upload moderation,' it still undermines privacy, security

Shoddy infosec costs PwC spinoff and NMA $11.3M in settlement with Uncle Sam

Pen-testing tools didn't work – and personal info of folks hit by pandemic started appearing in search engines

Meta accused of trying to discredit ad researchers

As more than 70 civil society groups sign open letter slamming 'intimidation'