In recent months, a wave of cyberattacks has shaken the foundations of global critical infrastructure. From power outages in Europe to the temporary shutdown of pipelines in North America, incidents have become more frequent, more damaging, and harder to attribute. The question echoing in national security offices and corporate boardrooms is the same: how do you defend yourself when the enemy can be anywhere?
According to the World Economic Forum, cyberattacks on critical infrastructure rose by 40% in 2025, with an estimated global cost of over $500 billion.
The favorite target: energy and water
The energy and water sectors have become prime targets for attackers. Not only because shutting them down has an immediate impact on the population, but also because many of their industrial control systems were designed decades ago, when internet connectivity was not a priority. Today, those same systems are exposed to vulnerabilities that hackers exploit with surgical precision.

What is critical infrastructure?
It refers to assets, systems, and networks, whether physical or virtual, whose destruction or disruption would have a devastating impact on national security, the economy, public health, or a nation's safety. It includes power plants, water supply systems, hospitals, transportation networks, and telecommunications.
State response: from prevention to active deterrence
Governments worldwide are redefining their strategies. Building stronger firewalls is no longer enough; now the talk is of 'active defense,' which includes the ability to track and neutralize attackers before they strike, even across borders. The European Union, for example, has tightened its regulations with the NIS2 Directive, requiring critical sector companies to report incidents within hours and conduct periodic audits. The United States, for its part, has created joint teams with the private sector to share threat intelligence in real time.
However, international coordination remains the Achilles' heel. Attributing an attack βthat is, determining who is behind itβ requires political consensus and forensic evidence that often takes months to gather. Meanwhile, the attacks continue.
The role of companies: insurance, contingency plans, and security culture
In the corporate world, cybersecurity is no longer just an IT department issue; it has become a top management priority. Companies are taking out cyber insurance, conducting attack drills, and training employees to detect phishing attempts, which remain the most common entry point. But the cost is high: insurance premiums have skyrocketed, and investments in protection compete with other capital expenditures.

What does this mean for the average citizen?
Beyond statistics and strategies, the daily impact is tangible: temporary blackouts, difficulties accessing banking services, hospital delays, and, in extreme cases, contamination of drinking water systems. A society's resilience to a cyberattack depends as much on technology as on the preparedness of its citizens. Knowing what to do when the payment system fails or when the power goes out can make the difference between a controlled incident and chaos.
Looking ahead: artificial intelligence and automation in defense
Although not a magic solution, artificial intelligence is beginning to play a key role in early anomaly detection. Machine learning systems can analyze millions of network events per second to identify suspicious patterns that a human might miss. However, attackers are also using AI to create malware that is more adaptable and harder to detect. The digital arms race has no finish line in sight.
Cooperation between countries and companies is the only real barrier against a threat that knows no borders. But building that trust takes time, and time is precisely what is in short supply.