Table of Contents
Key Takeaway
- 🚨 Cyberwar Is Already Here: Former US National Cyber Director Chris Inglis warns that cyberattacks are no longer confined to the digital realm — they threaten hospitals, utilities, and essential services that ordinary people depend on every day, making cyberwar an “invisible battlefield” that reshapes everyday life.
- 🎯 Critical Infrastructure at Risk: Hospitals, power grids, water systems, and financial networks are increasingly targeted by state-sponsored and criminal cyberattacks, with consequences that extend far beyond data loss to potential physical harm and economic disruption.
- 💡 OFW Financial Systems Vulnerable: The same infrastructure attacks that threaten US hospitals and utilities also target the financial systems that OFWs depend on for remittances, banking, and communication with families back home.
- 🛡️ No Front Lines: Unlike traditional warfare, cyberwar has no front lines, no visible enemy, and no clear distinction between civilian and military targets — making every connected person a potential victim.
For much of his career in national security, Chris Inglis knew where the battlefields were. They were tangible places — deserts, cities, mountains, and oceans you could see and touch. You could point to the terrain, define the front line, and distinguish between the fight abroad and life at home. Today, one of the most consequential battlefields of all is almost entirely invisible. It is cyberspace — ambient, persistent, and woven into nearly every part of modern life, from the hospitals where we receive care to the power grids that light our homes.
Inglis, who served as the first US National Cyber Director and former Deputy Director of the National Security Agency, has spent decades thinking about how nations compete, conflict, and coexist in the digital domain. His warning, published in a June 2026 Dark Reading opinion piece, is stark: cyberwar is no longer a future threat or a theoretical risk. It is happening now, and its effects are reshaping everyday life in ways that most people do not fully understand or appreciate.
The Invisible Battlefield of Cyberwar
“For much of my career, battlefields were tangible places — deserts, cities, mountains, and oceans you could see and touch,” Inglis wrote. “You could point to the terrain, define the front line, and distinguish between the fight abroad and life at home. Today, one of the most consequential battlefields of all is almost entirely invisible. It is cyberspace — ambient, persistent, and woven into nearly every part of modern life.”
This invisible battlefield is not a metaphor. State-sponsored hacking groups from nations including Russia, China, Iran, and North Korea have been conducting sustained cyber campaigns against critical infrastructure targets for years. The 2025 attack on a major US water utility, the 2024 breach of a hospital network that forced ambulances to be rerouted, and the ongoing campaigns against power grid operators all demonstrate that cyberwar has real-world consequences that extend far beyond stolen data.
The scale of the threat is difficult to overstate. According to the US Cybersecurity and Infrastructure Security Agency (CISA), the number of successful attacks on critical infrastructure increased by over 300% between 2020 and 2025. These attacks target the operational technology systems that control physical processes — the SCADA systems that manage power grids, the industrial control systems that operate water treatment plants, and the network systems that coordinate hospital operations.
What makes this invisible battlefield particularly dangerous is its asymmetry. A small team of skilled hackers, operating from anywhere in the world, can potentially disrupt essential services for millions of people. The cost of launching a cyberattack is a fraction of the cost of defending against one, and attribution — identifying who is responsible — remains one of the most challenging problems in cybersecurity and international relations.
Hospitals, Utilities, and Essential Services Under Siege
The healthcare sector has become one of the most frequently targeted industries for cyberattacks, with devastating consequences for patient care. In 2025, a ransomware attack on a major hospital network forced the cancellation of surgeries, the diversion of emergency patients to other facilities, and the shutdown of electronic health record systems that clinicians relied on for patient information. The attack disrupted operations for weeks and cost the hospital system tens of millions of dollars in recovery costs and lost revenue.
The attack was not an isolated incident. According to the Department of Health and Human Services, healthcare data breaches affected over 170 million patient records in 2025 alone, a 40% increase from the previous year. Many of these breaches involved ransomware attacks that not only stole data but also disrupted hospital operations, putting patient lives at risk. The average cost of a healthcare data breach reached $10.9 million in 2025, making it the most expensive sector for data breaches for the fifteenth consecutive year.
Power grids and utilities face similar threats. The US Department of Energy has documented thousands of attempted intrusions into the electric grid in 2025, with several successful breaches that gave attackers access to operational systems. While none of these breaches resulted in widespread blackouts, they demonstrated that foreign adversaries have the capability to disrupt the power supply if they choose to do so. The North American Electric Reliability Corporation (NERC) has warned that the grid’s increasing connectivity creates new vulnerabilities that are difficult to secure.
Water systems, transportation networks, and financial infrastructure are also under constant attack. The American Water Works Association has warned that water utilities, many of which operate with limited cybersecurity budgets and outdated technology, are particularly vulnerable to attacks that could contaminate water supplies or disrupt service to millions of customers. In the transportation sector, port authorities and rail operators have reported increasing numbers of attempted intrusions that could disrupt supply chains and commerce.
Related: FortiBleed: 73,000 Fortinet VPN Credentials Exposed in Massive Data Leak
What Cyberwar Means for OFWs and the Philippines
The invisible battlefield of cyberwar has direct implications for overseas Filipino workers and the Philippines. The country’s critical infrastructure — including power grids, telecommunications networks, banking systems, and government services — faces the same threats that Inglis describes in the United States, often with fewer resources to defend against them.
The Philippines has experienced several significant cyberattacks on government systems in recent years, including breaches of the Commission on Elections database in 2016 that exposed the personal data of 55 million registered voters, and the Philippine Health Insurance Corporation (PhilHealth) ransomware attack in 2023 that disrupted healthcare services for millions of Filipinos. These incidents demonstrate that the country’s digital infrastructure is already a target for both criminal and state-sponsored actors.
For OFWs, the cyberwar threat manifests in several practical ways that directly affect their ability to support families back home. The banking and remittance systems that OFWs depend on for sending money home are constant targets for cyberattacks. A successful attack on a major Philippine bank or remittance provider could disrupt the flow of billions of dollars in remittances that support millions of Filipino families. In 2025, Philippine banks reported a 60% increase in attempted cyberattacks, with several near-misses that could have caused significant financial disruption affecting the entire OFW remittance ecosystem.
The telecommunications infrastructure that OFWs use to communicate with families is also vulnerable to the same types of attacks. A major cyberattack on a Philippine telecom provider could disrupt voice, text, and internet services for millions of users, including OFWs trying to reach loved ones during emergencies. The Philippine government has acknowledged the need to strengthen cybersecurity for critical telecommunications infrastructure but faces significant resource constraints that make comprehensive protection difficult to achieve.
Related: Silent Ransom Group 2026: Dangerous Hybrid Attacks Hit 38 US Law Firms
Defending the Invisible Battlefield
Defending against cyberwar requires a fundamentally different approach than traditional military defense. There are no walls to build, no borders to patrol, and no treaties that can reliably prevent attacks in a domain where attribution is difficult and the cost of entry for attackers is low. The traditional model of deterrence — threatening retaliation to prevent attack — is less effective when attackers can hide behind layers of anonymity and operate from jurisdictions beyond the reach of law enforcement.
Inglis has advocated for a defense strategy based on resilience rather than prevention. Rather than trying to prevent every attack — an impossible goal — organizations and governments should focus on their ability to detect attacks quickly, respond effectively, and recover rapidly. This approach accepts that breaches will occur and invests in minimizing their impact rather than pursuing the illusion of perfect security.
Key elements of this resilience-based approach include: implementing zero-trust security architectures that verify every user and device before granting access, conducting regular incident response exercises that test an organization’s ability to detect and contain attacks, investing in backup and recovery systems that can restore operations quickly after a breach, and sharing threat intelligence across organizations and sectors to improve collective defense against common adversaries.
The US government has taken several steps to strengthen critical infrastructure cybersecurity, including CISA’s Secure by Design initiative, which encourages technology manufacturers to build security into their products from the start, and the National Cybersecurity Strategy, which calls for increased regulation of critical infrastructure operators and greater investment in cybersecurity workforce development. These initiatives represent a recognition that cybersecurity is a shared responsibility that requires collaboration between government and the private sector.
At the individual level, the best defense against the invisible battlefield is awareness and basic cyber hygiene. Using strong, unique passwords for every account, enabling multi-factor authentication, keeping software updated, and being cautious about clicking on links or downloading attachments can prevent the majority of successful cyberattacks. For OFWs, this also means being vigilant about the security of the remittance and banking platforms they use to send money home, and verifying the authenticity of any communications that request personal or financial information.
Related: Agentjacking Attack 2026: Dangerous New AI Coding Agent Exploit Every Developer Must Know | CryptoBandits Malware: Dangerous New Cryptocurrency Stealer Using Tor for Stealth
Frequently Asked Questions (FAQ)
Q: What is the “invisible battlefield” that Chris Inglis describes?
A: The “invisible battlefield” refers to cyberspace, which former US National Cyber Director Chris Inglis describes as ambient, persistent, and woven into nearly every part of modern life. Unlike traditional battlefields, cyberwar has no visible front lines, no clear distinction between civilian and military targets, and can be waged by small teams from anywhere in the world. Cyberattacks on hospitals, power grids, water systems, and financial networks are already happening and have real-world consequences that extend far beyond stolen data.
Q: How does cyberwar affect critical infrastructure?
A: Cyberattacks on critical infrastructure target the operational technology systems that control physical processes — power grids, water treatment plants, hospital networks, and transportation systems. According to CISA, successful attacks on critical infrastructure increased by over 300% between 2020 and 2025. These attacks can disrupt essential services, endanger public safety, and cause economic damage far exceeding the cost of the attack itself. Healthcare data breaches alone affected over 170 million patient records in 2025.
Q: What are the implications for OFWs and the Philippines?
A: The Philippines’ critical infrastructure faces the same cyberwar threats as the United States, often with fewer defensive resources. OFWs are particularly vulnerable through the banking and remittance systems they depend on — Philippine banks reported a 60% increase in attempted cyberattacks in 2025. A successful attack on a major remittance provider could disrupt billions of dollars in flows to Filipino families. The telecommunications infrastructure OFWs use to communicate with families is also vulnerable.
Q: How can organizations defend against cyberwar?
A: Former National Cyber Director Chris Inglis advocates a resilience-based approach focusing on detecting attacks quickly, responding effectively, and recovering rapidly. Key elements include zero-trust security architectures, regular incident response exercises, robust backup and recovery systems, and cross-sector threat intelligence sharing. The US government’s Secure by Design initiative and National Cybersecurity Strategy support this approach through regulation and workforce development.
Q: What can individuals do to protect themselves?
A: Individual cyber hygiene is the first line of defense: use strong unique passwords for every account, enable multi-factor authentication, keep software updated, be cautious about clicking links or downloading attachments, and stay informed about the latest threats. For OFWs, this also means verifying the security of remittance and banking platforms and being vigilant about phishing attacks disguised as financial or government communications.
Q: Why is cyberwar considered asymmetric?
A: Cyberwar is asymmetric because the cost of launching an attack is a fraction of the cost of defending against one. A small team of skilled hackers can potentially disrupt essential services for millions of people, and attribution remains extremely difficult. This asymmetry makes traditional military deterrence strategies less effective in cyberspace and requires new approaches to defense, including international cooperation, resilience-based security, and public-private partnerships.
