Last week, Achilles Information, in partnership with Schjødt and FSI, hosted an exclusive seminar ahead of the FSI Exhibition in Akershus Fortress. Top experts, including Inge Kampenes, former Head of the Norwegian Cyber Defence Force, and Morten Lillesand, cybersecurity advisor, shared insights on how cyber developments are reshaping defence and critical infrastructure.
The key takeaway? Cyber threats are real, evolving rapidly, and no sector is immune.
Everyone is a target, and vulnerabilities are everywhere
Cyber attacks now span financial, ideological, and industrial espionage threats. “Even the most trusted IT systems can fail,” noted Morten Lillesand. Small devices or overlooked entry points like a USB cable that can act as a keyboard can compromise an entire system. AI-driven attacks are making phishing and hacking campaigns increasingly sophisticated, while nanometer-scale chips and other advanced hardware can silently harvest sensitive data.
Defence and infrastructure face unique risks
Most organizations, including defence and critical infrastructure, rely on centralized cloud servers, creating single points of failure. A breach can disrupt military operations, commercial activities, or essential services. Human error adds to the risk: even the most secure organizations can make mistakes, and less than 5% share lessons learned from cyber incidents.
Quantum computing is another looming threat. Within a few years, quantum machines could break current encryption, putting decades of sensitive information at risk. Both defense and infrastructure operators must prepare today for tomorrow’s technology.
Supply chain and operational risks
Cyber threats aren’t limited to IT systems. Supply chains and operational systems are increasingly targeted. Hackers can manipulate suppliers, gain access to industrial networks, or disrupt operational continuity. Policies, risk management, and information sharing across organizations are critical—but often underdeveloped. Initiatives like the MUST Programme highlight the challenges: hundreds of millions spent without meaningful results due to understaffing, a “do-it-yourself” attitude, and lack of strategic coordination.
Building resilient organizations
Inge Kampenes emphasized three pillars for strengthening resilience in defence and infrastructure:
- Organizational Development – Align structures and processes to respond effectively to cyber incidents.
- Competence – Ensure teams have the knowledge and skills to counter evolving threats.
- Capacity & Strategic Cooperation – Invest in resources and partnerships to strengthen resilience across sectors.
Turning Insights into Action
At Achilles Information, we help organizations move from insight to implementation. Our Cybersecurity & Supply Chain Program is designed to:
- Protect critical IT and operational systems across defence and infrastructure.
- Identify and mitigate vulnerabilities throughout the supply chain.
- Build resilience with tailored policies, practical examples, training, and strategic partnerships.
The threats discussed last week are not theoretical – they are happening now. For defence and critical infrastructure alike, proactive measures are no longer optional.
