VIEW: Government cyber bill not up to scratch

The Product Security and Telecommunications Infrastructure Bill is a first step in protecting the consumer market. We’ve seen widespread security breaches within the market, such as the hacking of Amazon’s Ring doorbells, so any measures to drive improvements should be welcomed.

However, the bill does not go far enough to protect the commercial market and those that are driving the adoption of the Internet of Things and Industrial IoT. As the availability of 5G increases, the number of connected devices and use cases for IoT and IIoT will grow, posing risks to businesses and human safety.

Any breach, whether targeted at utility or water management or even controlling the brewing process in breweries, could result in a major business or social impact, so we need to see greater consideration of how the local, global and cloud architectures can integrate security by design.

Traditional considerations applied to operational technology have some merit, but models such as the Purdue Model are not sufficient to meet the needs of thousands of distributed, potentially publicly available devices.

    Share Story:


Cyber risk in the transportation industry
The connected nature of the transport and logistics industries makes them an attractive target for hackers, with potentially disruptive and costly consequences. Between June 2020 and June 2021, the transportation industry saw an 186% increase in weekly ransomware attacks. At the same time, regulations and cyber security standards are lacking – creating weak postures across the board. This podcast explores the key risks. Published April 2022.

Political risk: A fresh perspective
CIR’s editor, Deborah Ritchie speaks with head of PCS at Verisk, Tom Johansmeyer about the confluence of political, nat cat and pandemic risks in a world that is becoming an increasingly risky place in which to do business. Published February 2022.