Friend
Professional
- Messages
- 2,653
- Reaction score
- 850
- Points
- 113
The U.S. water supply has become a tidbit for hackers.
U.S. water systems have been targeted by cyberattacks by hackers from China and Iran, raising growing concerns among authorities.
As noted by Anna Neuberger, head of cybersecurity at the White House, Iran most often acts through hacktivists, not through state structures. For example, the Sandworm group, according to some reports, was involved in attacks on water bodies in the United States and Europe, one of which even led to the overflow of a tank. At the same time, China has been accused of cyberattacks on critical infrastructure, including water systems, through the Volt Typhoon group.
So far, no serious consequences from the attacks have been recorded, but the former head of cybersecurity of the NSA, Rob Joyce, warns that sooner or later someone will be able to penetrate critical facilities, which will lead to real threats.
Cyberattacks on water bodies are made possible by vulnerabilities in operational technologies (OTs) that control many infrastructure functions. Such systems are rarely updated due to the need to work around the clock, and are often distributed across different sites, making it difficult to protect against threats. The main vulnerability is the use of outdated systems that are not designed for modern threats.
Iranian hacktivists have managed to infiltrate the U.S. water supply using simple tactics, such as standard PLC passwords. PLCs control the purification and distribution of water, and their internet connection makes them an easy target for attack. Attackers can exploit these vulnerabilities to manipulate water systems, potentially threatening water pollution.
Attempts to strengthen the cyber defenses of the water sector have not yet been successful. The first rules on minimum safety standards were repealed after state lawsuits. A new attempt to introduce standards is also expected to face resistance, especially amid a shortage of funds and specialists, especially in smaller utilities.
Industry experts note that the problems with water supply are worse than in the energy sector: there is no single national system, and each small company is forced to solve security issues on its own, which makes the water sector especially vulnerable to attacks. Cyberattacks on water systems can not only disrupt facilities, but also threaten human health and the environment. Access to clean drinking water and wastewater management can be seriously impaired.
According to experts, water bodies are becoming more and more attractive to intruders. Unlike energy, water supply receives less attention, making the industry an easy target for cyberattacks. Even small safety failures can have long-term consequences, as was the case with the Flint water pollution.
At first, the Environmental Protection Agency (EPA) tried to introduce minimum cybersecurity standards for water bodies in 2023, but faced state lawsuits. As a result, the rule was abolished, which deprived the authorities of a tool to strengthen security.
Despite the challenges, experts believe that greater support from federal agencies such as CISA can help address the problem. CISA develops guidelines for the water sector, including simple technical solutions such as changing passwords and setting up secure remote access.
However, experts argue that the use of financial support, rather than heavy regulation, can help especially small water companies improve their cyber defenses and avoid getting into vulnerability databases such as Shodan.
Source
U.S. water systems have been targeted by cyberattacks by hackers from China and Iran, raising growing concerns among authorities.
As noted by Anna Neuberger, head of cybersecurity at the White House, Iran most often acts through hacktivists, not through state structures. For example, the Sandworm group, according to some reports, was involved in attacks on water bodies in the United States and Europe, one of which even led to the overflow of a tank. At the same time, China has been accused of cyberattacks on critical infrastructure, including water systems, through the Volt Typhoon group.
So far, no serious consequences from the attacks have been recorded, but the former head of cybersecurity of the NSA, Rob Joyce, warns that sooner or later someone will be able to penetrate critical facilities, which will lead to real threats.
Cyberattacks on water bodies are made possible by vulnerabilities in operational technologies (OTs) that control many infrastructure functions. Such systems are rarely updated due to the need to work around the clock, and are often distributed across different sites, making it difficult to protect against threats. The main vulnerability is the use of outdated systems that are not designed for modern threats.
Iranian hacktivists have managed to infiltrate the U.S. water supply using simple tactics, such as standard PLC passwords. PLCs control the purification and distribution of water, and their internet connection makes them an easy target for attack. Attackers can exploit these vulnerabilities to manipulate water systems, potentially threatening water pollution.
Attempts to strengthen the cyber defenses of the water sector have not yet been successful. The first rules on minimum safety standards were repealed after state lawsuits. A new attempt to introduce standards is also expected to face resistance, especially amid a shortage of funds and specialists, especially in smaller utilities.
Industry experts note that the problems with water supply are worse than in the energy sector: there is no single national system, and each small company is forced to solve security issues on its own, which makes the water sector especially vulnerable to attacks. Cyberattacks on water systems can not only disrupt facilities, but also threaten human health and the environment. Access to clean drinking water and wastewater management can be seriously impaired.
According to experts, water bodies are becoming more and more attractive to intruders. Unlike energy, water supply receives less attention, making the industry an easy target for cyberattacks. Even small safety failures can have long-term consequences, as was the case with the Flint water pollution.
At first, the Environmental Protection Agency (EPA) tried to introduce minimum cybersecurity standards for water bodies in 2023, but faced state lawsuits. As a result, the rule was abolished, which deprived the authorities of a tool to strengthen security.
Despite the challenges, experts believe that greater support from federal agencies such as CISA can help address the problem. CISA develops guidelines for the water sector, including simple technical solutions such as changing passwords and setting up secure remote access.
However, experts argue that the use of financial support, rather than heavy regulation, can help especially small water companies improve their cyber defenses and avoid getting into vulnerability databases such as Shodan.
Source
