Securing Critical Energy Infrastructure: Cyber Risks, Challenges, and Defense Strategies in the Digital Era

Hirak Modi; Veera Gnaneswar Gude

Previous Article in event

Deep Learning-Driven Real-Time Optimization for Improved Exergy Efficiency in Hybrid Renewable Energy Conversion Systems

Next Article in event

Machine Learning-Based Predictive Maintenance Framework for Performance Degradation Detection in Energy Conversion Systems

Securing Critical Energy Infrastructure: Cyber Risks, Challenges, and Defense Strategies in the Digital Era

Hirak Modi

^{1, 2},

Veera Gnaneswar Gude

^{*

1, 3, 4}

¹ Purdue University Northwest Water Institute, Purdue University Northwest, Hammond, IN 46323, USA
² Department of Computer Science, Purdue University Northwest, Hammond, IN 46323, USA
³ Department of Mechanical and Civil Engineering, Purdue University Northwest, Hammond, IN 46323, USA
⁴ School of Sustainability Engineering and Environmental Engineering, Purdue University, West Lafayette, IN 47907, USA

Academic Editor: Enrico Sciubba

Published: 07 May 2026 by MDPI in The 3rd International Online Conference on Energies session AI Applications to Energy Conversion Systems

Abstract:

The rapid digitalization of the energy sector has improved operational efficiency but significantly increased exposure to cyber threats against critical infrastructure. Recent analyses indicate that reported cyberattacks on energy assets more than doubled between 2019 and 2023, with ransomware accounting for nearly 40% of incidents. Individual attacks, such as the Colonial Pipeline breach, caused multi-day fuel disruptions and ransom payments totaling more than USD 4 million. Automation is rapidly expanding in energy sectors, including bioenergy and renewable energy power plants, where digital control systems improve efficiency and reliability. However, cybersecurity risks in these critical infrastructures remain less understood, with limited awareness among operators and engineers. To address this knowledge gap, this research examines potential cyber threats targeting power control systems and evaluates their impacts on process safety and energy security. Understanding these challenges is essential to ensure resilient and secure operations as facilities become more interconnected. This study provides valuable insights into emerging vulnerabilities, helping guide future risk mitigation strategies and strengthen the overall security of energy systems.

This study synthesizes cybersecurity risks, challenges, and mitigation strategies across oil and gas, electricity, nuclear, and renewable energy systems. Key challenges include securing legacy industrial control systems and virtual power plants, managing complex cloud-based and highly interconnected architectures, and addressing systemic gaps in workforce skills, governance, and security culture. The analysis highlights advanced detection and response strategies leveraging artificial intelligence and machine learning, multi-criteria decision-making methods for cyber-risk prioritization, and edge-based security architectures for distributed generation as promising technical approaches. In parallel, the study underscores the need for harmonized international standards, sector-specific regulation, continuous cyber exercises, and robust public–private partnerships to enhance resilience. Overall, the findings argue for a proactive, adaptive cybersecurity posture that integrates technical, organizational, and policy measures to safeguard critical energy assets and ensure a reliable, sustainable energy supply.

Keywords: cybersecurity; energy infrastructure; risk

0 Reads
0 Recommendations

Hirak Modi

Veera Gnaneswar Gude