How it came about

Expert on IT chaos: “Worldwide chain reaction”

Nachrichten
19.07.2024 21:27

Following the global blackout, Krone cyber expert Dr. Cornelius Granig criticizes the fact that too many decision-makers in companies are still relying on the principle of hope when it comes to security. State attackers are also working specifically to paralyze our society. 

"Krone": Mr. Granig, it feels like half the world is affected by computer failures. Were we not prepared for this? 
Dr. Cornelius Granig: The more we digitalize our economy and society, the more dependent we become on the continuous functioning of information and communication technologies. We therefore always need to think about how we can prevent IT from ceasing to function. And also how to operate in an emergency in the event of a partial or total failure. The dominance of American providers means that a failure of the basic Internet infrastructure in the USA or cyberattacks on large companies such as Microsoft, Google, Meta and Amazon, which are all based there, will affect us immediately and lead to a digital blackout.

An update from the cybersecurity company "Crowdstrike" went wrong and nothing worked at numerous airports around the world. (Bild: AFP)
An update from the cybersecurity company "Crowdstrike" went wrong and nothing worked at numerous airports around the world.

How credible is the argument that an update led to the blackout? 
That seems quite possible to me, as errors can always occur even with large suppliers of security systems. However, if these occur worldwide at the same time, there is also a worldwide chain reaction, at the end of which many systems in many countries no longer work. This is always possible. 

Zitat Icon

Decision-makers often point to the costliness of such failure scenarios and simply hope that nothing major will happen.

„Krone“-Cyberexperte Dr. Cornelius Granig

Airports, hospitals and TV stations are affected. How can critical infrastructure be effectively protected? 
Companies and organizations that are part of the "critical infrastructure", which we cannot possibly do without in our daily lives, must take precautions to ensure that replacement systems are up and running in the event of an incident like the one that happened today. For example, it is possible to have several providers for the security of end devices and to switch to another provider in the event of one of them failing. This again shows how important the legal basis is for such institutions to develop an end-to-end "information security management system" (ISMS) and a reliable resilience strategy. It is also necessary to be able to carry out very important processes without IT for a short time in the event of blackouts and major crises.

The system disruption also affected Vienna Airport in Schwechat. (Bild: zVg)
The system disruption also affected Vienna Airport in Schwechat.

But why is it that many companies have not yet done this? 
Unfortunately, this planning is lacking in many areas. Decision-makers often point to the costliness of such failure scenarios and simply hope that nothing major will happen. In our parliament, the NIS2 Act, which was intended to regulate these issues nationally in Austria on the basis of an EU directive, regrettably failed two weeks ago. This is despite the fact that today's incidents make it clear to any layperson that concepts for the operational security of critical systems are very important for the functioning of our society.

Many a state hacker group will be rubbing their hands in glee ...
Many dangerous state attackers from Russia, Iran, China and North Korea are working to paralyze our society in order to disrupt social peace. The Russian dictator Putin would like to return to the digital Stone Age and is shutting down more and more internet services for his citizens. In North Korea, these have always been unavailable, as the criminal regime does not want its citizens to see the positive reality of life in the West. Therefore, these problematic actors also have an interest in causing large-scale disruption or committing criminal acts in the shadow of these failures.

This article has been automatically translated,
read the original article here.

Loading...
00:00 / 00:00
Abspielen
Schließen
Aufklappen
Loading...
Vorige 10 Sekunden
Zum Vorigen Wechseln
Abspielen
Zum Nächsten Wechseln
Nächste 10 Sekunden
00:00
00:00
1.0x Geschwindigkeit
Loading
Kommentare
Eingeloggt als 
Nicht der richtige User? Logout

Willkommen in unserer Community! Eingehende Beiträge werden geprüft und anschließend veröffentlicht. Bitte achten Sie auf Einhaltung unserer Netiquette und AGB. Für ausführliche Diskussionen steht Ihnen ebenso das krone.at-Forum zur Verfügung. Hier können Sie das Community-Team via unserer Melde- und Abhilfestelle kontaktieren.

User-Beiträge geben nicht notwendigerweise die Meinung des Betreibers/der Redaktion bzw. von Krone Multimedia (KMM) wieder. In diesem Sinne distanziert sich die Redaktion/der Betreiber von den Inhalten in diesem Diskussionsforum. KMM behält sich insbesondere vor, gegen geltendes Recht verstoßende, den guten Sitten oder der Netiquette widersprechende bzw. dem Ansehen von KMM zuwiderlaufende Beiträge zu löschen, diesbezüglichen Schadenersatz gegenüber dem betreffenden User geltend zu machen, die Nutzer-Daten zu Zwecken der Rechtsverfolgung zu verwenden und strafrechtlich relevante Beiträge zur Anzeige zu bringen (siehe auch AGB). Hier können Sie das Community-Team via unserer Melde- und Abhilfestelle kontaktieren.

Kostenlose Spiele
Vorteilswelt