The gas compression factory was attacked via “spearphishing” emails. Unfortunately, the organization did not have adequate segmentation between IT and OT networks. The Department of Homeland Security (DHS) reported that a ransomware attack forced it to shut down for two days. The most dangerous is that infrastructure providers have still not evolved in transforming threat models to defend themselves against modern attack techniques.

https://cyware.com/news/attackers-target-us-critical-infrastructure-cisa-issues-warning-a58d273b