Authors:
Josefin Andersson
and
Elias Seid
Affiliation:
Department of Computer and Systems Sciences, Stockholm University, Sweden
Keyword(s):
Cybersecurity, IT-Incidents, Societal Safety, Critical Infrastructure, Essential Services, NIS-Directive, Impact Assessment, Cyberattack.
Abstract:
Over the past few decades, technological solutions have become increasingly crucial for providers of societal services. Though increased productivity is advantageous, it also exposes people to the vulnerability of cyber-attacks that aim to disrupt their systems and networks. While security agents issue new indicators and patches to address breaches, the ever-changing nature of these indicators renders security solutions to cyber-attacks potentially obsolete. Therefore, defending cyber-attacks requires a continuous and ongoing process. A thorough analysis of the impact of cyber security on the cyberinfrastructure and functionality of critical service providers is lacking. Conducting an analysis of cyberattacks and their impact on both digital and non-digital domains is crucial for obtaining a thorough awareness. The Swedish Civil Contingencies Agency (MSB) receives reports of IT incidents from Service Providers and Government Agencies that are within the jurisdiction of the European U
nion. This study analyses IT incidents reported to MSB to enhance knowledge of cyber-attacks and their impact on vital service providers. It evaluates the impact of cyberattacks on infrastructure, organisations, and society. The objective is to analyse the impact of cyberattacks on the cyberinfrastructure of vital service providers and their implications for organisations and society. Moreover, this paper categorised the internal and external impact of cyber attacks, demonstrating the broad cyber threat landscape and vulnerability of crucial service providers in Sweden.
(More)