Critical Infrastructure Cybersecurity Faces Setback as Lab Contract Lapses, Threat Data Unanalyzed
A vital programme designed to detect novel threats within the nation’s critical infrastructure has been hobbled by a lapsed contract, leaving potentially crucial sensor data from the CyberSentry program unanalyzed. The program, which aims to bridge the gap between cybersecurity research and real-world network activity, is now facing a important loss of visibility into operational technology (OT) networks, according to a cybersecurity expert.
The CyberSentry program’s strength lies in it’s ability to apply cutting-edge research to identify previously unseen threats currently present in critical infrastructure. Though, the lab responsible for analyzing the data collected by CyberSentry sensors cannot legally process this details without ongoing funding from government agencies. Funding agreements, which were reportedly still navigating Department of Homeland Security (DHS) processes, expired over the weekend, halting the analysis.This lapse in contract is notably concerning given the existing deficit in visibility into OT networks, which are crucial for the functioning of essential services. The inability to analyze CyberSentry data represents a “significant loss” in this area. While details regarding the contract’s size and duration were not promptly available from spokespeople for the lab or the Cybersecurity and Infrastructure Security Agency (CISA), the impact of this interruption is clear. This situation echoes previous contract expirations for threat-hunting initiatives under the current administration.
The broader challenge of securing OT networks was highlighted by Tatyana Bolton, executive director of the Operational Technology Cyber Coalition. She informed a subcommittee that federal resources for OT cybersecurity are generally insufficient. Bolton emphasized the need for increased investment in OT security, citing issues such as accumulating “tech debt,” a shortage of cybersecurity experts, and the procurement of outdated systems. She noted that OT owners and operators often allocate a disproportionately small amount of their budget to cybersecurity, with 99 cents of every dollar spent on physical security and only one cent on cybersecurity. Reauthorizing the state and Local Cybersecurity Grant Program, set to expire in September, could provide much-needed financial support to address these deficiencies.
The current administration has implemented considerable budget reductions for CISA since January.