{"id":47942,"date":"2022-08-11T22:54:13","date_gmt":"2022-08-11T22:54:13","guid":{"rendered":"https:\/\/www.darkreading.com\/risk\/colonial-pipeline-critical-infrastructure-operators-blind-cyber-risks"},"modified":"2022-08-11T22:54:13","modified_gmt":"2022-08-11T22:54:13","slug":"after-colonial-pipeline-critical-infrastructure-operators-remain-blind-to-cyber-risks","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/after-colonial-pipeline-critical-infrastructure-operators-remain-blind-to-cyber-risks\/","title":{"rendered":"After Colonial Pipeline, Critical Infrastructure Operators Remain Blind to Cyber-Risks"},"content":{"rendered":"
<\/div>\n

BLACK HAT USA — Las Vegas — The unprecedented ransomware attack against Colonial Pipeline<\/a> last year shows that critical infrastructure operators have made little progress in protecting their networks 12 years after the discovery of Stuxnet. Author and journalist Kim Zetter<\/a> gave a scathing rebuke of Colonial Pipeline during the keynote session opening the second day of Black Hat USA, its leaders had plenty of warnings that could have prevented the crippling attack.<\/p>\n

Zetter, who has covered many major cyber-incidents over more than two decades, is author of the book<\/a> Countdown to Zero Day: Stuxnet and the Launch of the World\u2019s First Digital Weapon (Crown: 2015). Stuxnet, the malicious worm that security experts discovered at an Iranian uranium enrichment facility in 2010, was explicitly targeted at the Siemens S7-400 system. The discovery heralded a new generation of targeted attacks<\/a>, according to Zetter.<\/p>\n

\u201cWhen Stuxnet was discovered in 2010, it shed a light on vulnerabilities and critical infrastructure that few had noticed before,\u201d Zetter said. \u201cThe security community largely focused on IT networks. They had previously ignored what are known as operational networks, OT networks, industrial control systems, all of those systems that manage pipelines and railways and the electric grid and water treatment plants and manufacturing, and so many other pivotal industries.\u201d<\/p>\n

Stuxnet was more significant for what it portended than any damage resulting from it at the time. Introduced to a network via a USB drive<\/a>, Stuxnet consists of worming malware, a Windows LNK file designed to propagate it, and a rootkit that hides the malicious files. <\/p>\n

Also in 2010, the discovery of an advanced persistent threat (APT) called Aurora exposed the growing capabilities of nation-state hackers, Zetter noted.<\/p>\n

The discovery of Stuxnet shouldn\u2019t have come as a surprise back then, but it opened some eyes for the first time, according to Zetter. <\/p>\n

\u201cStuxnet provided stark evidence that physical destruction of critical infrastructure using nothing more than code was possible,\u201d she said. \u201cBut no one should have been surprised. There have been warnings about the use of digital weapons to disrupt or destroy critical infrastructure a decade prior to Stuxnet.\u201d<\/p>\n

Zetter said the impact of Stuxnet was significant, pointing to four major changes it brought to security. Stuxnet created a trickle-down effect in the form of techniques and tools, kicked off today\u2019s cyber-arms race, established the politicization of security research and cyber-defense, and it shed light on the vulnerability of critical infrastructure.<\/p>\n

Coinciding with Stuxnet was the discovery of Aurora, Zetter underscored. \u201cMany of you probably remember this was a widespread espionage campaign by China that hit 34 companies and targeted source code repositories of Google, Adobe and Juniper,\u201d she said. \u201cAnd [it] included one of the first significant supply-chain operations targeting the RSA C repository, the engine for its multifactor authentication systems,\u201d she said.<\/p>\n

Risks Remain High for Industrial Control Systems<\/strong><\/p>\n

The high-profile attack that locked up Colonial Pipeline, which distributes 45% of fuel across the US East Coast, forced it to shut down its 5,500 miles of pipeline until it paid over $4.4 million in ransom. Zetter suggested there is no reason last year\u2019s ransomware attack should have blindsided the company\u2019s top leaders. <\/p>\n

\u201cWhat happened with Colonial Pipeline last year was foreseeable, as was the growing threat of ransomware,\u201d Zetter said. \u201cAs the company CEO told lawmakers on Capitol Hill months later, although it did have an emergency response plan, that response plan didn\u2019t include a ransomware attack, even though ransomware attackers had been targeting critical infrastructure since 2015, so the signs were there if Colonial Pipeline had looked.”<\/p>\n

Just two years earlier, Zetter pointed to Critical Infrastructure Ransomware Attacks (CIRA) statistics compiled by Temple University<\/a> in 2019, just two years before the Colonial Pipeline attack. The researchers counted some 400 ransomware attacks on critical infrastructure in 2020 and 1,246 attacks between November 2013 and July 31, 2022.<\/p>\n

\u201cThese weren\u2019t just attacks on hospitals, which of course had been a big target for ransomware actors in 2016,\u201d she said. \u201cBut these were also targeting oil and gas facilities. And the attackers weren\u2019t just targeting IT systems. They were already going after the OT networks that are controlling the critical processes.\u201d<\/p>\n

Further, Zetter noted that in 2020, the year before the Colonial Pipeline attack, Mandiant reported that seven ransomware families had struck organizations that operate industrial control systems since 2017. The attacks created major disruptions and production and delivery delays.<\/p>\n

Also in 2020, 10 months before the Colonial Pipeline attack, the Cybersecurity & Infrastructure Security Agency (CISA) issued a reminder<\/a> of the Department of Homeland Security\u2019s (DHS) Pipeline Cybersecurity Initiative. The effort, created by DHS in 2018, was a joint effort of CISA, the Transportation Security Administration (TSA) and various federal and private sector stakeholders.<\/p>\n

Zetter indicated that it is probably not ironic that DHS announced new cybersecurity requirements<\/a> for those who own and operate critical pipelines two months after the Colonial Pipeline attack. \u201cI don\u2019t mean to beat up on Colonial Pipeline, they\u2019re just a convenient example, because the attack was so significant,\u201d she said. \u201cBut other critical infrastructure is in the same position or worse.\u201d<\/p>\n

Read More HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

In her keynote address at Black Hat USA 2022, Kim Zetter gives scathing rebuke of Colonial Pipeline attack.Read More HERE<\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[151],"tags":[],"class_list":["post-47942","post","type-post","status-publish","format-standard","hentry","category-darkreading-ti"],"yoast_head":"\nAfter Colonial Pipeline, Critical Infrastructure Operators Remain Blind to Cyber-Risks 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/after-colonial-pipeline-critical-infrastructure-operators-remain-blind-to-cyber-risks\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"After Colonial Pipeline, Critical Infrastructure Operators Remain Blind to Cyber-Risks 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/after-colonial-pipeline-critical-infrastructure-operators-remain-blind-to-cyber-risks\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2022-08-11T22:54:13+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/blt4b09535a8db65b89\/62f588e14449ef0f244f6cf1\/Kim_Zetter_2.jpg\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/after-colonial-pipeline-critical-infrastructure-operators-remain-blind-to-cyber-risks\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/after-colonial-pipeline-critical-infrastructure-operators-remain-blind-to-cyber-risks\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"After Colonial Pipeline, Critical Infrastructure Operators Remain Blind to Cyber-Risks\",\"datePublished\":\"2022-08-11T22:54:13+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/after-colonial-pipeline-critical-infrastructure-operators-remain-blind-to-cyber-risks\\\/\"},\"wordCount\":851,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/after-colonial-pipeline-critical-infrastructure-operators-remain-blind-to-cyber-risks\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/eu-images.contentstack.com\\\/v3\\\/assets\\\/blt66983808af36a8ef\\\/blt4b09535a8db65b89\\\/62f588e14449ef0f244f6cf1\\\/Kim_Zetter_2.jpg\",\"articleSection\":[\"DarkReading |TI\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/after-colonial-pipeline-critical-infrastructure-operators-remain-blind-to-cyber-risks\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/after-colonial-pipeline-critical-infrastructure-operators-remain-blind-to-cyber-risks\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/after-colonial-pipeline-critical-infrastructure-operators-remain-blind-to-cyber-risks\\\/\",\"name\":\"After Colonial Pipeline, Critical Infrastructure Operators Remain Blind to Cyber-Risks 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/after-colonial-pipeline-critical-infrastructure-operators-remain-blind-to-cyber-risks\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/after-colonial-pipeline-critical-infrastructure-operators-remain-blind-to-cyber-risks\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/eu-images.contentstack.com\\\/v3\\\/assets\\\/blt66983808af36a8ef\\\/blt4b09535a8db65b89\\\/62f588e14449ef0f244f6cf1\\\/Kim_Zetter_2.jpg\",\"datePublished\":\"2022-08-11T22:54:13+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/after-colonial-pipeline-critical-infrastructure-operators-remain-blind-to-cyber-risks\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/after-colonial-pipeline-critical-infrastructure-operators-remain-blind-to-cyber-risks\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/after-colonial-pipeline-critical-infrastructure-operators-remain-blind-to-cyber-risks\\\/#primaryimage\",\"url\":\"https:\\\/\\\/eu-images.contentstack.com\\\/v3\\\/assets\\\/blt66983808af36a8ef\\\/blt4b09535a8db65b89\\\/62f588e14449ef0f244f6cf1\\\/Kim_Zetter_2.jpg\",\"contentUrl\":\"https:\\\/\\\/eu-images.contentstack.com\\\/v3\\\/assets\\\/blt66983808af36a8ef\\\/blt4b09535a8db65b89\\\/62f588e14449ef0f244f6cf1\\\/Kim_Zetter_2.jpg\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/after-colonial-pipeline-critical-infrastructure-operators-remain-blind-to-cyber-risks\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"After Colonial Pipeline, Critical Infrastructure Operators Remain Blind to Cyber-Risks\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"After Colonial Pipeline, Critical Infrastructure Operators Remain Blind to Cyber-Risks 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/after-colonial-pipeline-critical-infrastructure-operators-remain-blind-to-cyber-risks\/","og_locale":"en_US","og_type":"article","og_title":"After Colonial Pipeline, Critical Infrastructure Operators Remain Blind to Cyber-Risks 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/after-colonial-pipeline-critical-infrastructure-operators-remain-blind-to-cyber-risks\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2022-08-11T22:54:13+00:00","og_image":[{"url":"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/blt4b09535a8db65b89\/62f588e14449ef0f244f6cf1\/Kim_Zetter_2.jpg","type":"","width":"","height":""}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/after-colonial-pipeline-critical-infrastructure-operators-remain-blind-to-cyber-risks\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/after-colonial-pipeline-critical-infrastructure-operators-remain-blind-to-cyber-risks\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"After Colonial Pipeline, Critical Infrastructure Operators Remain Blind to Cyber-Risks","datePublished":"2022-08-11T22:54:13+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/after-colonial-pipeline-critical-infrastructure-operators-remain-blind-to-cyber-risks\/"},"wordCount":851,"commentCount":0,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/after-colonial-pipeline-critical-infrastructure-operators-remain-blind-to-cyber-risks\/#primaryimage"},"thumbnailUrl":"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/blt4b09535a8db65b89\/62f588e14449ef0f244f6cf1\/Kim_Zetter_2.jpg","articleSection":["DarkReading |TI"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.threatshub.org\/blog\/after-colonial-pipeline-critical-infrastructure-operators-remain-blind-to-cyber-risks\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/after-colonial-pipeline-critical-infrastructure-operators-remain-blind-to-cyber-risks\/","url":"https:\/\/www.threatshub.org\/blog\/after-colonial-pipeline-critical-infrastructure-operators-remain-blind-to-cyber-risks\/","name":"After Colonial Pipeline, Critical Infrastructure Operators Remain Blind to Cyber-Risks 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/after-colonial-pipeline-critical-infrastructure-operators-remain-blind-to-cyber-risks\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/after-colonial-pipeline-critical-infrastructure-operators-remain-blind-to-cyber-risks\/#primaryimage"},"thumbnailUrl":"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/blt4b09535a8db65b89\/62f588e14449ef0f244f6cf1\/Kim_Zetter_2.jpg","datePublished":"2022-08-11T22:54:13+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/after-colonial-pipeline-critical-infrastructure-operators-remain-blind-to-cyber-risks\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/after-colonial-pipeline-critical-infrastructure-operators-remain-blind-to-cyber-risks\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/after-colonial-pipeline-critical-infrastructure-operators-remain-blind-to-cyber-risks\/#primaryimage","url":"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/blt4b09535a8db65b89\/62f588e14449ef0f244f6cf1\/Kim_Zetter_2.jpg","contentUrl":"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/blt4b09535a8db65b89\/62f588e14449ef0f244f6cf1\/Kim_Zetter_2.jpg"},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/after-colonial-pipeline-critical-infrastructure-operators-remain-blind-to-cyber-risks\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"After Colonial Pipeline, Critical Infrastructure Operators Remain Blind to Cyber-Risks"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/47942","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=47942"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/47942\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=47942"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=47942"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=47942"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}