The State of Cyber Threats: A Global Perspective

The summit, themed Ensure cybersecurity and strengthen confidence in the digital age, served as a crucial platform for discussing the evolving cybersecurity landscape. Critical infrastructure sectors, including government, health care, finance, energy, telecommunications, and transportation, face unprecedented cyber threats.

Recent years have witnessed a surge in high-profile cyberattacks, underscoring the vulnerability of essential services:

• 2021: The Colonial Pipeline attack in the United States disrupted the fuel supply chain.
• 2022: Cyberattacks on Ukraine’s power grid caused widespread outages.
• 2023: The royal Mail in the united kingdom suffered a critically important data breach, with 44 GB of data compromised, costing an estimated $80 million.

5G: A Double-Edged Sword

The advent of 5G technology promises ultra-fast data transmission (eMBB),real-time communication (URLLC),and massive IoT connectivity (mMTC). Though,the complex and distributed architecture of 5G networks presents significant cybersecurity challenges.

Louis Lou, vice president of the Huawei privacy and privacy protection department, addressed these concerns at the summit, stating that the complex nature of 5G creates three major cybersecurity challenges:

• Blurred Boundaries: Network features deployed at the edge and network slicing for diverse needs obscure traditional security layers.
• Increased Access Points: More devices, systems, and users accessing the network elevate the risk of unreliable entities gaining entry.
• Expanded Attack Surface: New technologies like virtualization and cloud computing broaden the potential attack surface.

Cyber Resilience: A Proactive Approach

Recognizing these escalating threats, many countries are prioritizing cyber resilience-the ability to maintain continuous system operation even during an attack. This proactive approach is reflected in national cybersecurity strategies worldwide.

The United States’ national cybersecurity strategy for 2023 and the European cyber Resilience Act (CRA) of 2024 emphasize the importance of strengthening cyber resilience from both technical and legal standpoints.

industry Standards: MCKB and NESAS

To combat evolving threats, network operators can leverage key industry tools to bolster their security posture. According to Lou, the GSMA, the world’s largest telecommunications association, has established MCKB and NESAS as primary cybersecurity certification and guidance programs.

• NESAS (network Equipment Security Assurance Scheme): Developed by GSMA and 3GPP, NESAS is widely recognized as a benchmark for assessing supplier products, with over 20 countries adopting it as a standard.
• MCKB (Mobile IoT Security Knowledge Base): GSMA MCKB serves as a global cybersecurity guide, empowering telecommunications operators to enhance their security capabilities and improve network safety and resilience.

Huawei’s Commitment to 5G Security

Huawei is committed to collaborating with telecommunications operators and the Vietnamese government to establish a secure 5G network. This collaboration aims to protect against threats by adhering to international standards and developing tailored network resilience strategies for each industry.

Beyond security products and solutions, Huawei is dedicated to fostering innovation, education, and industry support.

FAQ: 5G Cybersecurity

what are the main cybersecurity risks associated with 5G?

Increased attack surface, blurred security boundaries, and more access points for unreliable entities.

What is cyber resilience?

The ability to maintain continuous system operation even during a cyberattack.

What are MCKB and NESAS?

MCKB is a cybersecurity guide, and NESAS is a standard for assessing supplier products, both developed by GSMA.

How can businesses strengthen their 5G security?

By implementing zero-trust models, adhering to international standards, and developing network resilience strategies.