CISA is urging critical infrastructure operators to plan to deliver essential services for weeks to months under emergency isolation and is launching the CI Fortify initiative to assess and harden operational technology against attacks entering through IT or third-party vendors. The agency warns that state-sponsored groups Salt Typhoon and Volt Typhoon continue to threaten sectors like electricity, water, and internet, and CISA will pilot targeted assessments and isolation/recovery plans to maintain service delivery while disconnected. #SaltTyphoon #VoltTyphoon
Keypoints
- CISA asks owners and operators to plan to operate isolated for weeks to months during emergencies.
- CI Fortify will conduct targeted technical assessments of operational technology across critical sectors.
- Isolation of OT from IT and third-party connections is a central strategy to reduce exposure.
- Recovery practices like backups, system documentation, and manual operation procedures are required.
- CISA is piloting assessments with entities supporting national security, health, and economic continuity and will scale up hiring to expand the program.