The U.S. utilities sector has experienced a 70 percent increase in cyber attacks this year compared to 2023, according to data from Check Point Research. As the power grid expands to meet growing energy demand and adopts digital technologies, utilities have become increasingly vulnerable to cyber threats. Many rely on outdated software, making them prime targets for attackers. Although no U.S. utility has been incapacitated by these attacks yet, cybersecurity experts caution that a coordinated attempt could have catastrophic consequences, disrupting essential services and causing significant financial damage.
In 2021, the Colonial Pipeline attack highlighted the risks the energy sector faces. More recently, oilfield services giant Halliburton revealed it had suffered a data breach. Experts note that utilities’ dependence on IoT (Internet of Things) and ICS (Incident Command System) technologies, which have weaker cyber defenses, increases the risk. While regulations like the NERC Critical Infrastructure Protection provide a baseline level of security, they may not be enough to prevent future attacks, especially as the grid rapidly expands. With the upcoming U.S. election, experts anticipate a further increase in cyber attacks targeting critical infrastructure.