About Us

About Cabling Installation & Maintenance

Our mission: Bringing practical business and technical intelligence to today's structured cabling professionals

For more than 30 years, Cabling Installation & Maintenance has provided useful, practical information to professionals responsible for the specification, design, installation and management of structured cabling systems serving enterprise, data center and other environments. These professionals are challenged to stay informed of constantly evolving standards, system-design and installation approaches, product and system capabilities, technologies, as well as applications that rely on high-performance structured cabling systems. Our editors synthesize these complex issues into multiple information products. This portfolio of information products provides concrete detail that improves the efficiency of day-to-day operations, and equips cabling professionals with the perspective that enables strategic planning for networks’ optimum long-term performance.

Throughout our annual magazine, weekly email newsletters and 24/7/365 website, Cabling Installation & Maintenance digs into the essential topics our audience focuses on.

  • Design, Installation and Testing: We explain the bottom-up design of cabling systems, from case histories of actual projects to solutions for specific problems or aspects of the design process. We also look at specific installations using a case-history approach to highlight challenging problems, solutions and unique features. Additionally, we examine evolving test-and-measurement technologies and techniques designed to address the standards-governed and practical-use performance requirements of cabling systems.
  • Technology: We evaluate product innovations and technology trends as they impact a particular product class through interviews with manufacturers, installers and users, as well as contributed articles from subject-matter experts.
  • Data Center: Cabling Installation & Maintenance takes an in-depth look at design and installation workmanship issues as well as the unique technology being deployed specifically for data centers.
  • Physical Security: Focusing on the areas in which security and IT—and the infrastructure for both—interlock and overlap, we pay specific attention to Internet Protocol’s influence over the development of security applications.
  • Standards: Tracking the activities of North American and international standards-making organizations, we provide updates on specifications that are in-progress, looking forward to how they will affect cabling-system design and installation. We also produce articles explaining the practical aspects of designing and installing cabling systems in accordance with the specifications of established standards.

Cabling Installation & Maintenance is published by Endeavor Business Media, a division of EndeavorB2B.

Contact Cabling Installation & Maintenance

Editorial

Patrick McLaughlin

Serena Aburahma

Advertising and Sponsorship Sales

Peter Fretty - Vice President, Market Leader

Tim Carli - Business Development Manager

Brayden Hudspeth - Sales Development Representative

Subscriptions and Memberships

Subscribe to our newsletters and manage your subscriptions

Feedback/Problems

Send a message to our general in-box

 

My Watchlist
Indicators
Cabling Market Index
Markets
Stocks
ETFs
Tools
Markets:
Overview
News
Currencies
International
Treasuries

67% of Energy Sector Breaches Linked to Software and IT Vendors, SecurityScorecard Reports

By: via Business Wire

Energy sector faces surge in supply chain risks amid growing dependence on vendors

SecurityScorecard and KPMG LLP today released a co-authored new cybersecurity research report on the 250 largest U.S. energy companies. In “A Quantitative Analysis of Cyber Risks in the U.S. Energy Supply Chain,” security researchers and industry subject professionals provide a detailed analysis of cybersecurity vulnerabilities across the energy sector and its supply chains.

This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20241023313100/en/

(Graphic: Business Wire)

(Graphic: Business Wire)

Novel insights into energy sector cybersecurity

This report arrives at a pivotal moment as regulatory bodies worldwide intensify cybersecurity requirements and initiatives for the U.S. energy sector. It aligns with global efforts to bolster cybersecurity across the energy supply chain, reflecting commitments made during the June 2024 G7 summit to enhance defenses against escalating cyber threats. The White House just convened the fourth round of International Counter Ransomware Initiative (CRI) meetings. CRI’s 68 members issued a joint statement following the meeting, which continued “the joint commitment to develop a collective resilience to ransomware.” In parallel, the U.S. Department of Energy is actively convening energy sector leaders to advance the Supply Chain Cybersecurity Principles.

SecurityScorecard’s latest research highlights frequent threats, such as ransomware attacks on conventional IT systems, which are often enough to cause widespread disruption across the energy sector. Much attention has been paid to potential attacks on industrial control systems (ICS) and operational technology (OT), which will continue to be a focus for risk mitigation. As the shift to cleaner energy accelerates, however, the sector’s vulnerabilities may grow, as a greener, more interconnected grid becomes increasingly reliant on software, making it more susceptible to cyberattacks.

Ryan Sherstobitoff, Senior Vice President of Threat Research and Intelligence at SecurityScorecard, said:

“The energy sector's growing dependence on third-party vendors highlights a critical vulnerability — its security is only as strong as its weakest link. Our research shows that this rising reliance poses significant risks. It’s time for the industry to take decisive action and strengthen cybersecurity measures before a breach turns into a national emergency.”

Key findings

  • Third-party risks are disproportionately high in the energy sector: Third-party risk drives almost half (45%) of breaches in the energy sector. This is significantly higher than the global rate of 29%. Additionally, 90% of companies that suffered multiple breaches were hit via third-party vendors.
  • U.S. energy scores a "B” on cybersecurity: The U.S. energy industry scores a "B" on average based on SecurityScorecard’s scoring methodology. 81% of companies have either an A or B rating, but the remaining 19% with weak scores pose a significant risk to the entire supply chain.
  • Software and IT vendors are the leading cause of third-party breaches: Software and IT vendors outside the energy sector are the main source of third-party breaches. Of the incidents studied, 67% of third-party breaches were due to software and IT vendors, with only four involving other energy companies.
  • Renewable energy companies fall behind: Oil & natural gas companies scored well above average with an “A−,” while renewable energy firms lagged behind with a “B−” score.
  • Vulnerabilities condensed in key risk factors: 92% of companies had their lowest scores in just 3 of 10 risk factors: application security (40%), network security (23%), and DNS (Domain Name System) health (29%).

Cybersecurity recommendations for the energy industry

Based on this analysis, the SecurityScorecard STRIKE team offers actionable insights for enhancing cybersecurity in the energy sector:

  • Prioritize software & IT vendors: Focus on mitigating risks from software and IT vendors, which pose the highest third-party risks.
  • Emphasize product security in new acquisitions: Help ensure that new technology acquisitions are secure, following initiatives like CISA's "Secure by Design" and integrating the U.S. Department of Energy Supply Chain Cybersecurity Principles.
  • Prioritize the improvement of security around renewable energy sources: Strengthen security programs to protect against potential supply chain risks and geopolitical threats, particularly from nation-states.
  • Prepare for disruptions and balance other risks: Prepare for disruption without neglecting the pervasive risk of data breaches and other common cyber threats.
  • Learn from attacks on foreign targets: Gain valuable insights by studying ransomware attacks on foreign counterparts to improve resilience and cybersecurity defenses.

Prasanna Govindankutty, Principal, Cyber Security US Sector Leader, at KPMG, said: “The energy industry is a complex system that is undergoing a generational transition with a heavy reliance on a steady supply chain. With geopolitical and technology-based threats on the rise, this complex system is facing an equally generational risk exposure that could harm citizens and businesses alike. Organizations that are able to quantify these risks and establish mitigation measures will increase their odds of success in the energy transition journey.”

Methodology

SecurityScorecard researchers compiled a sample of 250 top U.S. energy companies, based on market capitalization and the various sectors of the industry that they represent. These sectors cover: the successive stages of the traditional oil & gas supply chain; the existence of vertically integrated oil & gas companies covering that whole supply chain; the consumption of some energy via utilities; and the emergence of companies devoted to renewable energy sources.

Additional resources

About STRIKE

The STRIKE threat intelligence team combines unique threat intelligence, incident response experience, and supply chain cyber risk expertise. Backed by SecurityScorecard technology, STRIKE is a strategic advisor to CISOs worldwide, empowering the entire digital ecosystem to identify, measure, and resolve cyber risk.

About SecurityScorecard

Funded by world-class investors, including Evolution Equity Partners, Silver Lake Partners, Sequoia Capital, GV, Riverwood Capital, and others, SecurityScorecard is the global leader in cybersecurity ratings, response, and resilience, with more than 12 million companies continuously rated.

Founded in 2014 by security and risk experts Dr. Aleksandr Yampolskiy and Sam Kassoumeh, SecurityScorecard’s patented security ratings technology is used by over 25,000 organizations for enterprise risk management, third-party risk management, board reporting, due diligence, cyber insurance underwriting, and regulatory oversight.

SecurityScorecard makes the world safer by transforming how companies understand, improve, and communicate cybersecurity risks to their boards, employees, and vendors. SecurityScorecard achieved the Federal Risk and Authorization Management Program (FedRAMP) Ready designation, highlighting the company’s robust security standards to protect customer information, and is listed as a free cyber tool and service by the U.S. Cybersecurity & Infrastructure Security Agency (CISA). Every organization has the universal right to its trusted and transparent Instant SecurityScorecard rating. For more information, visit securityscorecard.com or connect with us on LinkedIn.

Contacts

More News

View More
Smart Money's Big Bet on AST SpaceMobile
Via MarketBeat
Tickers AMT ASTS BCE BLK RKUNY T
Goldman Sachs Earnings Tell: Markets Seem Okay
Via MarketBeat
Topics Economy
Tickers AAPL GS MSFT NVDA SPY XLY
An AI Play Hiding in Plain Sight: A Look at Johnson Controls
Via MarketBeat
Topics Artificial Intelligence
Tickers DHR JCI
AppLovin Drops 14%: Should Investors Worry About SEC Probe?
Via MarketBeat
Topics Regulatory Compliance
Tickers AAPL APP META SPOT
From Bulldozers to Big Data: Caterpillar’s Bull Case Gets a Lift
Via MarketBeat
Topics Artificial Intelligence Energy
Tickers ASX:RUL CAT
Stock Quote API & Stock News API supplied by www.cloudquote.io
Quotes delayed at least 20 minutes.
By accessing this page, you agree to the Privacy Policy and Terms Of Service.
© 2025 FinancialContent. All rights reserved.