Threat Intelligence, Critical Infrastructure Security

Cyber threats escalate against energy sector

High voltage substation under sunset. The Department of Energy is putting $12 million behind six university-led cybersecurity research projects that look for innovative ways to securely build or design the nation’s energy systems. (Photo Credit: bjdlzx via Getty Images)

Industrial Cyber reports that cyberattacks against energy infrastructure are rapidly intensifying worldwide, with critical installations like nuclear facilities increasingly in the crosshairs of both cybercriminals and nation-state actors, according to new research from Resecurity.

The report reveals that entities linked to China, Russia, Iran, and North Korea are driving espionage-focused campaigns, while ransomware groups like HellCat and hacktivists exploit IT-OT convergence and IIoT vulnerabilities to disrupt operations and demand ransom. The nuclear sector, in particular, faces heightened risks as AI integration deepens and threat actors pursue espionage using tactics like fake recruitment and modular malware. The HUNTER unit uncovered dark web evidence of access listings and data leaks involving top nuclear firms, while recent incidents tied to Cl0P and Lazarus Group underscore growing geopolitical cyber risk. The US FBI and DOE have responded with new warnings and updated security frameworks. As AI and cloud adoption expand attack surfaces, the energy sector remains a high-value target in the emerging era of cyber warfare.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy.

You can skip this ad in 5 seconds