As geopolitical tensions escalate, nations race to safeguard critical infrastructure from the growing risk of cyberattacks and digital conflict.

As global tensions escalate, the risk of cyberattacks intensifies, prompting nations to bolster their digital defenses. A year ago, Russian-linked hackers launched a cyberattack on water plants in rural Texas, including a facility in Muleshoe, a small town of just 5,000 residents. The hackers’ objective wasn’t to contaminate the water but to exploit vulnerabilities in America’s public infrastructure—a stark reminder that in the 21st century, oceans and military power alone can’t protect the U.S. from digital threats.

The Texas attack, which forced officials to manually operate the water plant after the system was compromised, was seen as a warning shot. As the world enters a new era of cyber conflict, nations are preparing for the possibility of attacks that could damage economies, disrupt vital public services, and escalate geopolitical tensions.

National security experts are sounding alarms, highlighting a digital arms race as governments ramp up efforts to protect their critical infrastructures. At the same time, businesses are growing increasingly concerned about the potential financial and operational damage from cyberattacks.

Verona Johnstone-Hulse, a cybersecurity expert, co-authored a report from NCC Group, a British cybersecurity firm, emphasizing that the evolving geopolitical landscape has created uncertainty in digital security policies worldwide. “What the new normal looks like is still not yet set,” she said.

The growing number of connected devices has created new opportunities for hackers, who are increasingly targeting networks that manage everything from financial systems to critical infrastructure like water plants and ports. Cyber espionage is one key motivator, as demonstrated by the “Salt Typhoon” campaign, in which Chinese hackers sought to breach the phones of officials, including those close to the U.S. President, ahead of the 2024 election.

These cyber operations are designed to steal sensitive information that can offer advantages in trade negotiations, military strategy, and more. Some attacks, however, serve as blunt political messages, such as those seen with the Texas water plants or Iranian cyberattacks aimed at making a political statement.

The most alarming threats, according to experts, involve sophisticated intrusions into communication networks, where malware or backdoors are inserted, allowing attackers to gain access to critical systems. A recent example, the “Volt Typhoon” attack attributed to China, targeted U.S. phone networks in a potential attempt to compromise sensitive systems. Experts warn that these types of cyberattacks could be preemptive moves for disabling infrastructure in the event of military conflict, particularly concerning Taiwan.

Sonu Shankar, a former researcher at Los Alamos National Laboratory, now with Phosphorus Cybersecurity, explained, “They can position their implants to be activated at a date and time in the future.”

Amid the rising risk of cyberattacks, geopolitical tensions, particularly around the ongoing wars in Ukraine and the Middle East, are contributing to an environment ripe for digital confrontation. Countries such as Russia, China, Iran, and North Korea have increasingly demonstrated cyber cooperation, driven by shared political and economic interests.

Director of National Intelligence Tulsi Gabbard highlighted that Iran has exchanged drones for Russian intelligence and cyber capabilities, a collaboration fostered by Russia’s war effort in Ukraine. As global trade wars loom, particularly after the imposition of tariffs by former President Donald Trump, experts warn that retaliation in the form of cyberattacks could target global supply chains, putting both large corporations and smaller suppliers at risk.

Tom Kellermann, senior vice president of cyberstrategy at Contrast Security, warns that escalating cyberconflict between countries could have far-reaching consequences. “It would put them on the path to military conflict,” he said.

While experts call for stronger cybersecurity measures, the Trump administration made significant cuts to the agencies responsible for protecting U.S. digital infrastructure. Trump’s decision to fire Gen. Timothy Haugh, the four-star general overseeing the National Security Agency (NSA) and U.S. Cyber Command, raised concerns about the country’s cyber preparedness.

Virginia Senator Mark Warner, who chairs the Senate Intelligence Committee, called for an explanation of Haugh’s dismissal, asking, “How does firing him make Americans any safer?”

Under Trump’s leadership, the U.S. also saw reductions in staff at key cybersecurity agencies and a decrease in funding for election security programs. This approach raised questions about the U.S.’s commitment to safeguarding against cyber threats, especially in light of recent controversies involving the use of unsecured messaging apps by senior officials.

Despite these challenges, proponents of the administration’s cybersecurity policies argue that streamlining operations and focusing on artificial intelligence for cyber defense will make the U.S. more resilient in the long run.

On the international front, there are signs of growing collaboration on cybersecurity. More than 20 countries have signed on to an international framework aimed at regulating the use of commercial spyware, and the U.S. has expressed interest in joining the agreement.

Within the U.S., bipartisan support is growing for measures to bolster private sector cybersecurity. Experts estimate that the industry needs to hire an additional 500,000 professionals to meet the mounting threats. Dean Gefen, a former chief of cybertraining for Israel’s Defense Intelligence Technological Unit, emphasized the importance of providing businesses with clear guidance on how to protect themselves.

“Companies need effective guidance from the government — a playbook,” said Gefen, now CEO of NukuDo, a cybersecurity training company.

As the digital battlefield grows, nations worldwide are recognizing the urgency of defending against increasingly sophisticated cyber threats, setting the stage for greater global cooperation and a more robust cyber defense posture.