Skip to content
SPECIAL

THREATS TO CRITICAL INFRASTRUCTURE IN IRAN CONFLICT

READ MORE

42% of U.S. energy/critical infrastructure providers exposed to weaponized AI and email attacks

(CISA)

By Hydrocarbon Processing

New research from Red Sift reveals a widespread security gap across the U.S. energy, chemical, and water and waste sectors, with 42% of 840 essential services companies still lacking effective email authentication, leaving critical infrastructure vulnerable to spoofing, phishing and ransomware attacks.

Despite rising regulatory pressure and a surge in cyber threats targeting operational technology, Red Sift’s analysis shows that nearly half of these organizations have failed to implement DMARC, the foundational email authentication standard required to block domain impersonation. Companies in the report include Chevron, Dow and American Water.

The report also highlights mounting regulatory pressure, including mandates under CISA guidelines and sector-specific compliance requirements. Failure to secure email systems risks not only operational continuity but also public trust and safety.

Read more at Hydrocarbon Processing

Click to listen highlighted text!