EEVblog Electronics Community Forum

Computing => Security => Topic started by: AlbertL on May 12, 2021, 08:50:41 pm

Title: Colonial Pipeline ransomware attack
Post by: AlbertL on May 12, 2021, 08:50:41 pm
Looks like this will be the one that really focuses public attention on cybersecurity, due to the highly visible and widespread disruptions it's causing.
Title: Re: Colonial Pipeline ransomware attack
Post by: Gyro on May 12, 2021, 09:19:57 pm
Apparently they didn't mean to shut the pipeline down though.... So there's that.  ;)

https://www.bbc.co.uk/news/business-57050690 (https://www.bbc.co.uk/news/business-57050690)
Title: Re: Colonial Pipeline ransomware attack
Post by: TimFox on May 12, 2021, 10:32:39 pm
This looks to me as another example of the basic incentive problem for critical utilities:
If the only penalty to the company for insufficient investment in safety or reliability is a loss of income during the disruption, there is no incentive to invest heavily against a rare or unlikely situation.  A similar problem:  Blizzards hit Texas only every  10 years or so, so why spend large sums on winterization of facilities?