In late 2020, the American cyber-security community discovered a widespread breach of private-sector and government networks. A primary vector for the breach appeared to be the hacking of software provided by the US information-technology company SolarWinds.
GCHQ Director Jeremy Fleming emphasises the importance of the Integrated Review and its recommendations in the Vincent Briscoe Annual Security Lecture.
Stuxnet was about geopolitics. Colonial was about money (and perhaps geopolitics too). What links the two attacks – which occurred more than a decade apart – is that Industrial Control Systems (ICS) were affected by the attacks. One directly, the other indirectly.