Summary
Cyberattacks are accelerating, with attacks occurring every 2 seconds and ransomware projected to cost $74 billion in 2026. These threats increasingly target critical infrastructure and can disrupt power, water, healthcare, and communication systems without warning. Because they happen quickly and can trigger widespread failures, preparation means having food, water, backup power, and alternatives in place before systems go down.
How the Cyber Threat Against U.S. Infrastructure Is Accelerating
Over the last few months, the United States has experienced an unprecedented surge in cyberattacks targeting critical infrastructure and public sector institutions.
According to Trend Micro's Q1 2026 threat intelligence report, "U.S. government agencies and educational institutions are operating in the most hostile cyber threat environment ever recorded."[1]
The first quarter alone saw nation-state actors, ransomware gangs, and autonomous AI-powered attacks systematically targeting everything from congressional communications to water treatment plants to law enforcement agencies.
The scale of the problem is enormous.
SentinelOne reports that a business or consumer will be struck by a cyberattack every 2 seconds through 2031, and attacks are speeding up from this year onward.[2]
Globally, annual cyber losses will hit between USD 10.5 trillion to USD 10.8 trillion, with the U.S. accounting for an estimated USD 81.61 billion of that total.[2]
Ransomware alone is forecasted to cost USD 74 billion in 2026.[2]
But the numbers don't capture the real impact.
When cyberattacks hit critical infrastructure—water systems, power grids, law enforcement networks, hospitals, government agencies—they don't just disrupt business.
They disrupt essential services that millions of Americans depend on every single day.
What's changed is the sophistication and speed.
Attackers are now using autonomous AI agents to conduct reconnaissance, exploit vulnerabilities, and move laterally at machine speeds.
According to Trend Micro, "The defining evolution of Q1 2026 ransomware is the integration of agentic AI into attack chains," allowing full-scale compromises to be launched within minutes.[1]
The federal government has acknowledged the severity.
On March 6, 2026, President Trump signed Executive Order 14390, "Combating Cybercrime, Fraud, and Predatory Schemes Against American Citizens," to aggressively target foreign-based cybercriminals and ransomware networks. [3]
It mandates a 120-day action plan for disrupting scams, establishes a dedicated National Coordination Center (NCC) task force, prioritizes victim restitution via seized funds, and threatens sanctions against nations harboring criminals.
What These Attacks Look Like Right Now
The numbers matter.
But they don’t show you how this actually plays out.
These are real incidents from the past few months—across infrastructure, government systems, and public services.
Iran-Linked Hackers Target U.S. Power Grid
In April 2026, CISA warned that Iranian-affiliated cyber actors are actively targeting programmable logic controllers (PLCs) used in U.S. power grid operations, water systems, and government facilities. Between 600,000 and 2 million PLCs are deployed across critical infrastructure, many running on legacy systems not designed for modern cyberattacks. A coordinated attack on the power grid would mean no warning, no evacuation—just a blackout.[4]
Iranian Actors Targeting U.S. Water Systems
In April 2026, the EPA, FBI, CISA, and NSA issued a joint advisory warning that Iranian-affiliated cyber actors are actively exploiting programmable logic controllers (PLCs) in U.S. critical infrastructure – specifically targeting drinking water and wastewater systems. These systems control how water is treated and delivered. Disruption at this level can shut down operations, contaminate supply, or take entire systems offline.[5]
Ransomware Attack Hits U.S. Water Treatment Plant
In March 2026, a water treatment facility in Minot, North Dakota, suffered a ransomware attack that disrupted its control systems and forced operators to rely on manual readings. The attack targeted the plant’s SCADA system—the interface used to monitor and manage water treatment processes.
While the water supply remained safe, the incident required staff to manually monitor systems for roughly 16 hours until a replacement server could be brought online.[6]
China-Linked Cyber Actors Breach U.S. Government Communications
In January 2026, China-aligned threat actors known as Salt Typhoon targeted U.S. House Committee staff emails. The breach specifically focused on congressional personnel working on national security-related committees with oversight over China's foreign policy and U.S. foreign affairs.
Salt Typhoon's access to both telecommunications infrastructure and direct congressional email means the threat actor may have achieved visibility into sensitive U.S. policy deliberations on China.[1]
Stryker Cyberattack Causes Healthcare Disruptions
A cyberattack on Stryker, a major medical technology supplier, disrupted the company's internal operations globally on March 11, 2026. The attack affected Stryker's order processing, manufacturing, and shipping systems, causing supply chain delays. Some hospitals that depend on Stryker products had to delay surgical procedures while waiting for the company to restore its delivery capabilities.[7]
Cyberattacks Hit Police Departments and Law Enforcement Agencies
In March 2026, the DeKalb County Sheriff's Department and Jail in Georgia was hit with ransomware that knocked its email and booking systems offline. Correctional officers discovered the attack early Friday morning when the inmate booking program suddenly stopped. The department had to rely on manual processes while working with the FBI and third-party security experts to recover data.[8]
The same month, the Los Angeles Police Department experienced a massive data breach when 7.7 terabytes of sensitive officer records were exposed online. A ransomware group called WorldLeaks exploited vulnerabilities in a file-sharing system used by the city attorney's office, leaking disciplinary files, personnel records, and use-of-force documentation. The breach exposed confidential information on hundreds of current and former officers.[9]
Cyberattack Preparedness Starts with Awareness
Cyberattacks don’t come with warnings: There’s no forecast, no timeline, no moment where you’re told to get ready.
One minute systems are working. The next, they’re not.
And with the way attacks are evolving, that shift can happen fast.
Autonomous tools can now move through systems in minutes—not hours or days.
By the time something is visible, it’s already in motion.
The incidents above aren’t hypothetical.
They happened in the past few months—water systems targeted, infrastructure disrupted, public services taken offline.
This is already playing out across the systems people depend on.
Awareness means taking that seriously without overcomplicating it.
You’re not trying to predict the exact event.
You’re recognizing the pattern—and adjusting how much you rely on it.
Because the real risk isn’t just the attack.
It’s how much of daily life depends on systems you don’t control.
When those systems fail, the impact doesn’t stay contained.
Power, water, communication, supply chains…they’re all connected.
So the first step is simple: Pay attention to what’s happening. And don’t assume the systems you rely on will always be there when you need them.
How to Prepare for a Cyberattack on Critical Infrastructure
Be power independent. The power is going to go out. You need more than flashlights and candles. You need a solar generator with enough power to keep your appliances running, your food cold, your devices charged, and your lights on.
Stock your pantry. When the grid goes down, grocery shelves will empty out quickly–-and they won’t be restocked until power is restored. Enough emergency food ensures your family can eat nutritious meals even without power.
Secure your water. Water treatment plants are one of the critical infrastructures cybercriminals aim to attack. Rather than risk drinking contaminated water, invest in the Alexapure Pro filtration system.
Have a backup communication plan. Invest in another form of communication other than cell phones. Cell phone towers can suffer from cyberattacks and internet outages. Would you be able to contact family members without cell phone access or get information from the outside world? Look into ham radios and weather radios.
Stock prescription medications and medical supplies. If you or your family members take prescription medications, work with your doctor to maintain a 30-90 day supply at home. For medications requiring refrigeration, have a backup plan like coolers or a solar generator. Stock over-the-counter medications like pain relievers, cold medicine, and allergy medication.
Practice first aid preparedness. Hospitals cannot function without power. 911 services may be down. Everyone should have a complete first aid kit and know how to perform first aid in case of emergency.
Keep cash on hand. Banking systems, ATMs, and credit card networks all depend on digital infrastructure. During a cyberattack, you won't be able to access your money electronically. Keep several hundred dollars in small bills at home for emergencies.
Prepare for sanitation without running water. Stock toilet paper, hand sanitizer, wet wipes, and feminine hygiene products. Have a plan for human waste disposal if sewage systems are offline—portable toilets or buckets with liners.
Keep your vehicle fueled. Gas pumps require electricity to operate. During a power outage, you may not be able to refuel. Keep your vehicle's gas tank at least half full at all times. Have a plan for transportation if you need to leave your area.
Keep physical copies of important documents. Store copies of property deeds, insurance policies, medical records, birth certificates, and identification in a waterproof, fireproof safe at home. Government systems may be offline during a cyberattack, and you may need to prove ownership or identity. Digital records won't help if the systems that store them are compromised.
Back up important digital assets. Store copies of important documents, photos, and financial records on an external hard drive kept offline.
Protect your accounts. Use strong, unique passwords for critical accounts like banking, email, and healthcare. Consider a password manager to keep track of them. Use two-factor authentication on important accounts.
Know your neighbors and have a community plan. During large-scale infrastructure failures, communities that work together fare better than isolated individuals. Identify people in your neighborhood with medical training, mechanical skills, or other expertise. Establish a communication plan for your neighborhood in case cell service is down. Communities with mutual aid networks recover faster and handle crises better.
Don't forget your pets and livestock. Stock pet food, water, and medications. Have carriers or containment for evacuation. Livestock owners should have feed, water systems that don't require electricity, and veterinary supplies. Your pets depend on you. Include them in your preparedness plan.
Remember, friends. Preparedness isn’t about predicting the exact event.
It’s about making sure your household can keep functioning if those systems stop working.
If critical systems went down for a week, what would your household lose access to first? Let us know in the comments below.
In liberty,
Elizabeth Anderson
Preparedness Advisor, My Patriot Supply
Sources
[1] Trend Micro.U.S. Public Sector Under Siege: Threat Landscape Report.
2026. https://www.trendmicro.com/en_us/research/26/d/us-public-sector-under-siege.html
[2] SentinelOne.Cybersecurity Statistics 2026: Trends, Data, and Analysis.
2026. https://www.sentinelone.com/cybersecurity-101/cybersecurity/cyber-security-statistics/
[3] The White House.Combating Cybercrime, Fraud, and Predatory Schemes Against American Citizens (Executive Order 14390).
March 6, 2026. https://www.whitehouse.gov/presidential-actions/2026/03/combating-cybercrime-fraud-and-predatory-schemes-against-american-citizens/
[4] Utility Dive.NERC and CISA Warn of Iranian Cyber Threats to U.S. Infrastructure.
2026. https://www.utilitydive.com/news/nerc-cisa-iran-war-cyber-hacking/816914/
[5] WIRED.Iran-Linked Hackers Are Sabotaging U.S. Energy and Water Infrastructure.
2026. https://www.wired.com/story/iran-linked-hackers-are-sabotaging-us-energy-and-water-infrastructure/
[6] StateScoop.Ransomware Attack Disrupts Minot, North Dakota Water Treatment Plant.
2026. https://statescoop.com/minot-north-dakota-water-treatment-ransomware/
[7] Cybersecurity Dive.Stryker Confirms Cyberattack Is Contained and Restoration Underway.
2026. https://www.cybersecuritydive.com/news/stryker-confirms-cyberattack-is-contained-and-restoration-underway/815427/
[8] WJLE Radio.Sheriff’s Department and Jail Computers Hacked in Ransomware Attack.
2026. https://www.wjle.com/sheriffs-department-and-jails-main-computers-hacked/
[9] Government Technology.How Thousands of Sensitive LAPD Files Got Leaked Online.
2026. https://www.govtech.com/security/how-thousands-of-sensitive-lapd-files-got-leaked-online
