CSIRT Italia, the Italian Computer Security Incident Response Team, has identified an increase in Distributed Denial of Service (DDoS) against the information infrastructure of key Italian critical infrastructure. Attacks seem to be launched by a group of Russian hackers but have not breached the integrity and confidentiality of information so far.
Critical infrastructure
Switzerland proposes mandatory reporting of cyberattacks against critical infrastructure
The Swiss government has advanced a proposal for legislation that would impose mandatory notification of cyberattacks against critical infrastructures to the National Cybersecurity Center (NCSC). According to the government, ‘successful cyberattacks can have far-reaching consequences for the availability and security of the Swiss economy’; therefore a mandatory reporting scheme would provide a clearer picture of attacks and attackers and better inform cybersecurity measures.
NATO held annual cyber defence exercise
Between 28 November and 2 December 2022, NATO held its Cyber Coalition 2022 cyber defence exercise with the goal of boosting member countries’ cyber resilience.
The exercise involved 1000 cyber defenders from 26 NATO allies, Finland, Sweden, Georgia, Ireland, Japan, Switzerland, and the EU, as well as experts from business and academia.
Cyber Coalition 2022 was used to test and validate concepts, capture requirements, or explore disruptive technologies, in support of military operators and commanders. It included experiments on the use of artificial intelligence to help counter cyber threats, on the standardisation of cyber messages to foster information sharing, and on the exploitation of cyber threat intelligence to inform cyberspace situational awareness.
The European Parliament approves legislation to improve the security of critical digital infrastructure in Europe
The European Parliament has approved a set of rules, previously negotiated with the Council, to make the EU’s critical infrastructure more resilient. The legislation covers critical infrastructure sectors, including the digital infrastructure, creating stricter risk assessment rules and reporting for critical actors. In other words, ‘member states should adopt national resilience strategies, and cross-border communication should happen through designated single points of contact in each member state‘.
Karspersky publishes its advanced threat predictions for 2023
Kaspersky Security, a major security firm, has recently published its advanced threat predictions for 2023, identifying email servers and satellites as major cyberattack targets in the year 2023. The report states that 2023 will be characterised by destructive ‘cyberattacks of unprecedented gravity’ against governments, key industry providers, and high-profile civilian infrastructures. Another point of concern is the safety of underwater cables and fiber distribution hubs against physical attacks.
Support for Partnership for Global Infrastructure and Investment Projects reiterated at G20 Summit in Bali
During the 2022 G20 Summit hosted in Bali, Indonesia, the US President Biden, Indonesian President Widodo, and European Commission President Von der Leyen co-hosted a meeting of a group of G20 leaders to ‘demonstrate their shared commitment to deepen engagement under the Partnership for Global Infrastructure and Investment (PGII) to accelerate investment in quality infrastructure in low and middle income countries around the world and strengthen the global economy’. PGII – formally launched at the G7 in June 2022 – aims to support inclusive and sustainable development and benefit the partner countries’ economic security and global supply chains, among other goals.
During the meeting, President Biden announced a series of new projects, including a Trilateral Support for Digital Infrastructure in the Pacific (United States, Australia, and Japan). The project aims at supporting digital projects that will improve access to digital services and strengthen their security in the Pacific region.
EU proposed actions to boost its cyber capabilities
The European Union has recently proposed a set of measures to help its armies move faster in times of conflict. The proposal aims to holistically strengthen the European infrastructure, focusing on cyberattacks and the protection of critical infrastructure, as well. The Action Plan on Military Mobility will help European armed forces to better respond to crises erupting at the EU’s external borders and beyond.