This penetration shouldn't be a surprise to anyone, according to Cisco Fellow and Chief Security Researcher Patrick Peterson, because we all know there are a number of state and non-state actors pursuing U.S. intelligence and disruption of activities.

"The public espionage cases involving Robert Hanssen and Aldrich Ames are two of many examples. Today's world is wired, and of course these groups have added electronic infiltration to their attack portfolio," Peterson said. "The report Securing Cyberspace for the 44th Presidency states clearly, 'Cybersecurity is now a major national security problem for the United States'."

Avenue for Cyber Attack

New capabilities from nuclear power to the automobile all come with risks, he said, and the use of off-the-shelf technology and networked systems provides an avenue of attack. Peterson thinks this story and others like it are invaluable in providing the visibility and attention to catalyze necessary security improvements.

"The truth is slowly coming out. I for one am hopeful that the truth will set us free. Recent federal activities are promising. President Obama's comprehensive 60-day review of federal cybersecurity initiatives is due any day now," Peterson said.

"Senate legislation would create a White House national cybersecurity adviser in charge of coordinating cyber efforts within the intelligence community and within civilian agencies," he said, "as well as coordinating the public sector's cooperation with the private sector."

McAfee Recommends Multi-Function Task Force

Reports of the electrical-grid hacking prompted security experts from McAfee to issue a warning and advice to organizations tasked with protecting the nation's critical infrastructures. This is a serious wake-up call about a clear threat to our nation's essential public services, according to Phyllis Schneck, vice president of threat intelligence for McAfee.

"The electric grid is crucial to the health and welfare of the global public, economy and communications , and protecting the security of the cyber systems that run the grid is of the utmost importance," Schneck said. "Unfortunately, this is not the first time these types of breaches have occurred. Systems such as the electric grid are especially vulnerable because they were built for reliability and availability and now we are retrofitting security into massively connected, intricate systems."

According to McAfee, critical networks traditionally have had little to no cyber protection, and have relied on physical protection from guards, gates and guns. Today these networks are being expanded to provide remote monitoring and management and are linked up to corporate networks, opening doors for attackers. McAfee said organizations, particularly energy companies, need to establish multi-function task forces that include IT staff and security experts.

McAfee recommends that critical infrastructure asset owners and operators take five steps toward greater cybersecurity: Perform ongoing vulnerability assessments; do vigilant monitoring of network automation and control systems; share information about threats and attacks through the industry Information Sharing and Analysis Centers such as the electricity sector ISAC and up the chain of command within organizations; take a proactive approach utilizing global threat intelligence and implement reputation-based technology; and think beyond regulatory compliance.