穆迪將電信、航空和發電公用事業部門評為「非常高」網路風險

日益增長的數位化和低於標準的安全實踐促使穆迪評級給予電信公司「非常高」的網路風險評級

Several critical infrastructure sectors have been assigned the "very high" cyber risk designation by Moody's Rating due to mounting digitization and subpar security practices, collectively amassing $7.1 trillion in debt, CyberScoop reports.

根據 Cyber​​Scoop 報道，由於數位化程度不斷提高和安全實踐不達標，多個關鍵基礎設施部門已被穆迪評級評為「非常高」的網路風險，總共累積了 7.1 兆美元的債務。

The telecommunications industry, in particular, has exhibited weaker cybersecurity defenses compared to other critical infrastructure sectors, according to Moody's analysts. This vulnerability was highlighted by the compromise of AT&T, Lumen Technologies, and Verizon by the Chinese state-backed threat operation Salt Typhoon. Another separate hack of AT&T impacted nearly all its customers' records. Additionally, data breaches against T-Mobile resulted in a $31.5 million settlement.

穆迪分析師表示，與其他關鍵基礎設施產業相比，電信業的網路安全防禦尤其薄弱。中國國家支持的威脅行動 Salt Typhoon 對 AT&T、Lumen Technologies 和 Verizon 的攻擊凸顯了該漏洞。 AT&T 的另一次單獨駭客攻擊幾乎影響了其所有客戶的記錄。此外，針對 T-Mobile 的資料外洩事件也導致了 3,150 萬美元的和解。

On the other hand, the CrowdStrike outage, which was caused by a faulty software update, led to an increased risk profile for the airline sector, underscoring the threat posed by extensive software dependence.

另一方面，由錯誤的軟體更新引起的 CrowdStrike 中斷導致航空業的風險增加，凸顯了廣泛的軟體依賴所帶來的威脅。

Moreover, automotive manufacturers, education organizations, manufacturing entities, energy providers, and ports also experienced an elevation in their risk profiles, which were now classified as "high."

此外，汽車製造商、教育組織、製造實體、能源提供者和港口的風險狀況也有所上升，目前被列為「高」。