This past October was the country’s first National Cyber Security Awareness Month, and that makes it an appropriate time to touch on a very troubling first-party exposure. Every day brings news of massive cyber attacks on retailers, financial institutions, and hospitals and healthcare companies, with the aim of stealing digital assets such as Personally Identifiable Information (PII). What has received far, far less attention, however, is the prospect of a cyber attack designed to escape the virtual world in order to do physical damage to tangible property in the real one. The ultimate risk is enormous. Computerized industrial control systems run the world’s financial institutions, its manufacturing and chemical facilities, its transportation systems, and its energy infrastructure, including the electrical…