穆迪将电信、航空和发电公用事业部门评为“非常高”网络风险

日益增长的数字化和低于标准的安全实践促使穆迪评级给予电信公司“非常高”的网络风险评级

Several critical infrastructure sectors have been assigned the "very high" cyber risk designation by Moody's Rating due to mounting digitization and subpar security practices, collectively amassing $7.1 trillion in debt, CyberScoop reports.

据 Cyber​​Scoop 报道，由于数字化程度不断提高和安全实践不达标，多个关键基础设施部门已被穆迪评级评为“非常高”的网络风险，总共累积了 7.1 万亿美元的债务。

The telecommunications industry, in particular, has exhibited weaker cybersecurity defenses compared to other critical infrastructure sectors, according to Moody's analysts. This vulnerability was highlighted by the compromise of AT&T, Lumen Technologies, and Verizon by the Chinese state-backed threat operation Salt Typhoon. Another separate hack of AT&T impacted nearly all its customers' records. Additionally, data breaches against T-Mobile resulted in a $31.5 million settlement.

穆迪分析师表示，与其他关键基础设施行业相比，电信行业的网络安全防御尤其薄弱。中国国家支持的威胁行动 Salt Typhoon 对 AT&T、Lumen Technologies 和 Verizon 的攻击凸显了该漏洞。 AT&T 的另一次单独黑客攻击几乎影响了其所有客户的记录。此外，针对 T-Mobile 的数据泄露事件还导致了 3150 万美元的和解。

On the other hand, the CrowdStrike outage, which was caused by a faulty software update, led to an increased risk profile for the airline sector, underscoring the threat posed by extensive software dependence.

另一方面，由错误的软件更新引起的 CrowdStrike 中断导致航空业的风险增加，凸显了广泛的软件依赖所带来的威胁。

Moreover, automotive manufacturers, education organizations, manufacturing entities, energy providers, and ports also experienced an elevation in their risk profiles, which were now classified as "high."

此外，汽车制造商、教育组织、制造实体、能源提供商和港口的风险状况也有所上升，目前被列为“高”。