New Cybersecurity Requirements for Pipeline Operators

The US Transportation Security Administration issued a regulation on Tuesday requiring oil pipeline owners to implement security measures for business and operational technology (OT) networks against ransomware and further cyber threats, according to Dark Reading.  The TSA directive ranks second in the last two months for oil pipeline operators, signaling growing concern about serious cyber vulnerabilities in U.S. oil and gas infrastructure following the crushing ransomware attack on Colonial Pipeline in May. It also appears to be related to growing concerns about threats to critical U.S. infrastructure from Chinese government cyber threat groups. Just last week, China's Ministry of State Security (MSS) was openly