Phil Beecher, President and CEO of Wi-SUN Alliance writes about the importance of securing networks for utilities, which includes using mesh topologies
When it comes to cybersecurity, there is an old adage that still applies today – you are only as strong as your weakest link. Many companies, especially those dealing in critical infrastructure, are aware of the threats they face on a daily basis. Some may have even taken action through expensive security software or the hiring of skilled professionals. Yet, hacking attempts are growing in volume and sophistication, and it only takes one weak endpoint to gain access to a network.
As time goes by, we continue to see high-profile examples of attacks against critical infrastructure. In 2021, a cyberattack levelled against Luma Energy – a grid operator in charge of power infrastructure in Puerto Rico – led to customers being unable to access their online portal accounts during outages. In 2022, Colorado Springs Utilities suffered significant data theft when over 200,000 customers’ personal information was stolen by hackers.
That same year, the Amsterdam-Rotterdam-Antwerp (ARA) refining hub was the victim of an attack that affected the loading and unloading of oil in six oil storage terminals. Then in 2023, Denmark’s critical infrastructure was hit with one of the most extensive cyberattacks Europe has seen to this point, with 22 energy companies exploited in a coordinated attack. These attacks are remorseless, happening on a global scale, and will only continue to increase.
A key strategic target
Research published by Check Point Research in September 2024 provides further evidence of this. Cyberattacks on United States’ utilities alone rose by a near 70% increase from those seen in 2023. The previous year saw the number of attacks against UK-based utility companies rise by a staggering 586%. This is a clear indication of the sheer size of the current thread landscape.
Utilities are considered high-priority targets for a number of reasons. Many of the businesses operating within the sector are in charge of resources vital to a country’s economy and national security. These companies also hold a significant amount of sensitive information too –phone numbers, addresses, financial records – which can be used or sold on by hackers to third-parties for further exploitation.
Yet if an attacker can gain access to a network, it’s not just sensitive data at risk; they can carry out large-scale attacks that can compromise a nation’s infrastructure and cause significant damage to a number of entities within the supply chain. Take smart grids for an example – the ongoing digitalisation of the sector, alongside the increased use of IoT technologies within these systems, makes them a prime target for hackers. If an attack can cause lengthy power outages or structural damage to the infrastructure, it can have lasting, detrimental effects on society.
Protecting the network
If businesses are to better protect themselves from these threats, then they first need to choose network components that have in-built security measures. This may lead operators to forgo ‘traditional’ star topologies – where devices are connected to a central hub or router – in favour of a mesh topology such as the Wi-SUN Field Area Network (Wi-SUN FAN).
While star topologies are perceived as being simpler and cheaper, their reliance on a single router or switch can quickly put networks at risk. If a hacker is able to cause an outage or failure to the central hub, the entire network can go down. That’s why mesh topologies are more suitable for today’s threat landscape: even in the event of an attack and router failure, the network will simply find another available connection to enable the continuous flow of traffic.
Any solution that use cryptographic measures should also be considered essential to any modern utilities network. Elements such as certificate-based authentication ensure greater cyber resiliency, ensuring any device looking to engage with the network must first present an attestable digital certificate.
An all-encompassing approach
Of course, the FAN is just one level of an entire network that needs protecting. Whether we’re talking about a customer’s grid edge, or physical infrastructure like a substation or a data centre facility, all elements must have the means to prevent, detect and correct potential attacks if they become a target. This is where a multi-layered approach is pivotal.
Any endpoint is a potential target, so strong access controls and encryption are needed across the network to reduce the likelihood of unauthorised access. Intrusion detection systems can also help in this regard, identifying suspicious behaviour or variations to normal network behaviour. However, the fact remains that no system is impregnable, and despite all best efforts, an attack may prove successful.
In these instances, having incident response plans in place can at least reduce any potential damage an attacker may cause. If these fundamental cornerstones of security are present, then utilities companies stand at least a good chance of remaining resilient against hackers.
In the future, AI tools – once more commonplace – will be used to enhance multi-layered approaches. Through these tools, we will be able to gather an extraordinary amount of data which – looking at it from a cybersecurity perspective – can be used to identify common signs of unauthorised access, tampering, or direct attacks. Manual intervention will become rarer as AI can automate existing processes and reduce any potential vulnerabilities hackers were considering.
The importance of standards
Yet the effectiveness of any cybersecurity measure is limited if they cannot be applied to all devices within a network. Thankfully, many of those involved in smart utility network (SUN) communications have looked past proprietary solutions and recognised the importance of standardisation. Standards like IEEE 2857-2021 are establishing a common baseline for smart grid technologies, ushering in interoperability and greater security for networks.
The beauty of standards is that they evolve with the current technology landscape. So long as operators continue to apply the latest standards, specifications and technologies available, devices will be able to talk to one another effectively in a network, and hackers will have a harder time unearthing vulnerabilities.

Phil Beecher is President and CEO of Wi-SUN Alliance, an industry organisation that seeks to accelerate the implementation of smart cities, smart utilities, smart grids and other large-scale outdoor Internet of Things (IoT) applications by enabling the global adoption of interoperable solutions based on open standards. Since 1997, Phil has played a key role in the development of communications standards including Bluetooth, WiFi, and IEEE and the specification of test plans.
Author: Phil Beecher, President and CEO of Wi-SUN Alliance
There’s plenty of other editorial on our sister site, Electronic Specifier! Or you can always join in the conversation by commenting below or visiting our LinkedIn page.