paralyzing the tire societies. computers than elsewhere you and governments that go crazy for your data. we explain how these technologies work, how they can go in for, and that's how they can also go terribly. watch it now on youtube. phone calls, shopping traffic. nothing works without digital networks. unfortunately, our systems are poorly equipped against hackers. how can you protect critical infrastructure against cyber attacks? that's our topic on shift today. ah heck us stealing data, installing more way, even shutting down entire cities? hardly a day goes by without the cyber attack being reported somewhere in the world. experts, one critical infrastructure must be protected. what does that mean exactly? traditionally, such critical infrastructure is built to run autonomy. lee hospitals, for example, have emergency generators to maintain life support systems during a power outage. but in the last 2 decades, how much of this infrastructure has been connected to the internet to function? they need access to servers, and these are located all over the world. it's an invisible network of digital systems that is developed over the years. elements of critical infrastructure unconnected even across borders. this means individual components increasingly depend on one another. a wind farm and germany is connected to u. s. satellites, for example, if the satellites fail, the wind turbines come to a standstill. ah, what's particularly alarming critical infrastructure is not only threatened by individual cyber criminals, state institutions can also be behind the attacks. there were also cyber attacks during the 1st days of the war and ukraine. literally, as russian tanks rolling over the border into ukraine. we also saw did stroke of buttons to the attack, including an attack on a satellite network. one that's even used by weight turbines, in germany. any disruption to be invisible digital connections can result in a domino effect. this can put the critical infrastructure of an entire society at risk. cyber attacks usually don't make a grand entrance. them a, quite an inconspicuous a callous click in an email on a website can open the door to heck us companies and even government institutions can be affect it in the background into, to gain access to further service in the network. only once these hackers take over a large part of the digital structure, they strike openly. this is possible because the digital networks a so large and old methods of cyber security, i'm no longer effective. classic model would be almost like a chastity with a mo, everything inside would be precious and everything outside would be malicious. this is a model that doesn't work in the post covered age where we are or connecting from everywhere . the question is no more willing to take her get in because every one knows in a take a will good. you have to protect yourself finding out when someone gets in and the best cases finding it out very on a very early stage. but why do a tech has seen to easily succeed in hacking networks? almost every company now has cyber security experts. and they are constantly installing new anti virus software all firewalls. but even the best security measures fil, again and again, bixler at the same problem. people i t experts, i've been a cleavage, tougher story of the day when hackers shut down the systems in the administration. she supervisors. sabina creeps is the chief digital officer and the county of am had bits of felt, an area between berlin and light safe home to around a 160000 people. in the summer of 2021, the county's administration fell victim to a cyber attack. this message will be with early in the morning at 6 30 am the 1st call reached the i t department, but someone turned on the computer and said nothing's working here right now. yeah, files are encrypting it about in home. i was working from home and got a call at taking the time when i went in, we still assume that we have an attack now that will be solved in a very short time in i had forgotten that i everything will be resolved within the next few days to be dozens compatible, but mall cool started coming in employees from all over the district complained that their computers had stopped working. the i t expert team such the system and came across a ransom notes. and cuz i'm happy to set you up as well as that. that's like i said, we're addressing us personally. and cuz someone had clearly spent time in preparing this attack, naps, when they knew this wasn't just another cyber attack. this time it was really serious because since at cisco, when the computer, if the i t administrator with all the rights encrypted itself, that's when we knew we had a problem. the hackers were part of a group called pay all grief. they demanded 500000 euros as a ransom paid in the crypto currency manero the i t manager at the time oliver humph. explains why the district decided not to pay obamacare. but when i was going over time, we had to ask ourselves, it was okay if we pay the ransom now because we really get the key them. oh, we knew they had been in our system. oh, but who's to really didn't put some back doors to attack again and encrypt again. but how did the heck us get into the system in the bit of an example? it is no longer possible to fully find out because whether it's the road traffic authority on the registry office, people everywhere looked with network computing systems to can access without anyone noticing their various tricks and methods. at the beginning of a cyber attack, intruders try to gain access to the computer network. they use various methods. currently so called fishing a most of the most successful trick to access systems. one click on a supposedly secure attachment or link will install malware on a computer. intruders can then still passwords and access codes. often they disguise themselves as trusted contacts, and nor people into revealing their login data. this type of credential theft relies on other people's good faith poorly secured servers that haven't been updated with the latest security updates can be an easy way into the network for hackers. once inside, the intruders can spend weeks or even months looking for important information. they look for data so valuable that people would pay money to get it back when they find what they're looking for. they encrypt the data and send a message to their victims, offering a decryption key in return for a ransom. victims are left with 2 options to pay up and trust that they get their data back or to refuse and hope that they can recover some of the hijacked data. and that's not all the heck is often threatened with double extortion. they don't on encrypt the data of their victims, but also publish sensitive information on the dock web. if no random this page at the end of 2022 sensitive data from a major, austria and health insurance company ended up on the dock web. personal information was released about policyholders, who were treated for substance abuse stds or abortions. the heck us want to pressure the insurance company to pay, put a secured service of large companies can become a threat to individual customers. and this wasn't an isolated case for cybersecurity analyst, karen, ella's, ari. it's a booming industry and it's an industry that has managers, planners, developers, criminal groups, took advantage of the call with them make the changes to all of our lives, to attack health care institutions, public institutions, local authorities, critical infrastructure around the world is at the mercy of these cyber attacks and hackers look for the targets where they expect the greatest profit most in north america and western europe. but also other regions are hit by these well coordinated attacks. in 2019 attackers broke into the network of india's largest nuclear power station. in 2021, an attack on a pipeline provider led to panic, buying and gas shortages in the us. and in 2022 hackers paralyzed the computer systems of the government of costa rica. each of these incidents had impact locally in the country or the region where it happened. however, should an adversary a cyber attack group decide to launch several attacks at the same time simultaneously in many different countries around the low. the impact to that would be potentially devastating. can a cyber attack, excess shut down an anti a nation? as a result of digitization and recent years, some pots of infrastructure have undergone massive changes. and many things can no longer be done without digital systems. now back to our case from germany, how exactly did the attack impact the critical infrastructure? as mentioned elsewhere, you don't see from the outside is that the software if the offices is connected within our i t infrastructure purple to and nothing works anymore, no cash register software, no alarm system. and in the small county, in the middle of germany, the public infrastructure failed completely. all authorities responsible for around 160000 people had to close. the citizens were worried, elemental attract the florida. hipa wonder can the office to pay out welfare, alimony, or benefits for the elderly, and i think he follows the science. only very slowly did it become clear what impact a cyber attack had on both the population and the administration alameda. so let's look spots at yahoo folded elevate. we've lost all e mails and the last 20 years, they're all gone and we'll never get them back released. we're little. but how do i explain that to my colleagues and employees? sorry, everything's gone home because many use their e mail system as a filing system and an archive system to store all the emails there. other units, if by young to oh my, can forget click the situation with so messy that the district to create a state of emergency that normally only happens during natural disasters like huge floods, but not because of a cyber attack. ah, that way the armed forces could send their cyber experts to help the authorities regain control of the network. patterns fans that really helped us because at the time our i t team did not have enough manpower about be fine. it still took weeks until the authorities were slowly operating. again this had a massive impact on the people in the region. the full car dealership, for example, couldn't register any new vehicles for a period of 4 weeks as the authorities in question weren't able to work. and without license plates, cars couldn't be delivered to new owners. sales came to a halt, a bitter loss for the company. ah, once as in that quarter, we made a loss of approximately 750000 euros. follow it up. all in all, it took the county about a year to repair all the systems, not to mention to financial damage. the threat of cyber crime is growing. that's why we need to know more about everything that's interconnected in our society. have you ever been effective by cyber attack? let us know on youtube are d w dot com? that's it from me to day. see again, next time, bye. ah ah. ah, you can't draw the line between the species because i don't believe that species is a morally relevant criterion any more than i believe that rice or sex is on taren animals like us. 2 2 2 2 we humans are closer to a chimpanzee. vanna chimpanzee is even to a dog. our documentary series, the great leak debate. next on d. w. interesting commotion. i like it was just a willing, emergent, but glue sheer is usually at the one where the relationship which in a lot of pet dories deal sickness plus yes. plus you. this is the consequence for satellite folks. i'm to find out 10 voices, one european war conflict in ukraine. in 45 minutes on d. w. or what secrets lie behind these walls? discover new adventures in 360 degrees. and explore fascinating world heritage site. d w world heritage is 360. get the app now. ah ah, i imagine intelligent aliens, discover earth were in complete awe at the elegance of their language, their art, technology, and their wisdom. but shortly after they arrive, the aliens begin to put us in cramped stalls. they force females to breathe.