US officials have issued a warning to state governors about a rising tide of cyberattacks targeting water and sewage systems across the nation. National Security Advisor Jake Sullivan and Environmental Protection Agency Administrator Michael Regan jointly issued a letter highlighting specific instances of disabling cyber assaults on vital water and wastewater infrastructure. The letter singled out alleged perpetrators, including Iranian and Chinese cyber operatives. The attacks translated to 26,000 DDoS attacks per second. The letter emphasized the risk posed to the provision of clean and safe drinking water and the economic burden placed on affected communities. The susceptibility of water and sewage plants to digital threats has long been a concern among cybersecurity experts.
Deputy national security adviser Anne Neuberger warns that recent cyber attacks by the Iranian hacker group 'Cyber Av3ngers' on American organizations highlight the persistent and capable cyber threats faced by the US. While the attacks were unsophisticated and had minimal impact, they serve as a reminder that American companies and critical infrastructure operators are vulnerable to cyber attacks from hostile countries and criminals. The Iranian hackers specifically targeted organizations using programmable logic controllers made by Israeli company Unitronics, commonly used by water and water treatment utilities. The recent hack on a small municipal water authority in Pennsylvania led to a temporary pumping halt and manual operation. Neuberger emphasizes the need to strengthen cybersecurity efforts and mentions the scrapped rule that would have required cybersecurity testing for US public water systems. She also highlights the devastating ransomware attacks on healthcare systems and urges the government and industry to take steps to tighten cybersecurity. Neuberger states that the Biden administration is prioritizing cybersecurity and providing actionable information and advice to state and local governments and critical service companies. [1b62eb28]
The Biden administration is warning states to be on guard for cyberattacks against water systems, citing ongoing threats from hackers linked to the governments of Iran and China. Hackers affiliated with the Iranian Government Islamic Revolutionary Guard Corps have attacked drinking water systems, while a People’s Republic of China state-sponsored group, Volt Typhoon, has compromised information technology of drinking water and other critical infrastructure systems. The water system is an especially vulnerable part of US infrastructure, fraught with weak controls, insufficient funding and staffing shortages. The EPA is the lead federal agency for ensuring the nation’s water sector is resilient to all threats and hazards. [0a919c68]
A cyber defense group, Mandiant, has released a report linking the Russian hacking group 'Sandworm' to a cyberattack that caused a Texas water tank to overflow. The incident occurred in Muleshoe on January 18, and the alleged hack was discovered in a system malfunction of the facility. The City of Muleshoe water facility went offline and reported the incident to the off-site software vendor, who said other cities were experiencing similar issues. The cyberattack on the Texas water tank highlights the vulnerability of critical infrastructure to cyber threats and the potential risks to public safety and the environment. The incident underscores the need for increased cybersecurity measures to protect water and sewage systems from malicious actors. [ec9037a9]
Small-town water systems in the United States have become targets for cyber attacks by adversarial national governments. Cyber threat groups, such as Cyber Army of Russia Reborn and CyberAv3ngers, have successfully hacked into water infrastructure in small towns, manipulating controls and causing water tanks to overflow. These attacks, although unsophisticated, highlight the vulnerability of critical infrastructure. The increasing number and intensity of cyber attacks on water facilities are a top concern for the public, industry, and policymakers. The lack of cybersecurity measures in many water facilities, particularly small public systems, poses a significant risk. The water sector is in the early stages of its cybersecurity journey and lacks the financial and workforce capacity to address cybersecurity risks effectively. Close coordination between government and industry is necessary to protect critical infrastructure, including water systems. Funding, access to cybersecurity tools and resources, and information sharing are crucial in defending against cyber threats. The goal is to ensure safe and available water for communities while balancing reliability and security. [40370455]