• Pennsylvania water facility hit by Iran-linked hackers

    Home » Forums » Cyber Security Information and Advisories » Code Red – Security/Privacy advisories » Pennsylvania water facility hit by Iran-linked hackers

    Author
    Topic
    #2607679

    “U.S. officials are investigating an incident at a Pennsylvania water utility after hackers linked to Iran’s Islamic Revolutionary Guard Corps — who have a history of making exaggerated and false claims about their hacking exploits — breached a device at a remote water station.

    “The hackers, who call themselves the “Cyber Av3ngers,” were able to gain control of at least one device at the Municipal Water Authority of Aliquippa, Pa. The hackers breached a remote water station that regulates pressure for two townships with a population of just over 7,000 people.”

    “The incident comes on the heels of the Environmental Protection Agency’s shelving of an effort to require cybersecurity audits for water utilities using sanitary surveys. While the proposed regulations were panned by some experts, the initiative represented a rare example of the government trying to force water utilities to devote greater resources to security after decades of under-investment in defending digital systems.”

    “The FBI declined to comment on the matter. The water authority and Pennsylvania’s chief information security officer did not respond to requests for comment.”

    https://cyberscoop.com/pennsylvania-water-facility-hack-iran/

    ================================

    Interesting how old this story is (Nov 25), and how it finally made it’s way to the MSM (CBS, NPR) surface. A small-town newspaper broke it, and after that I guess somebody had to say something reassuring.

    https://beavercountian.com/content/special-coverage/iranian-linked-cyber-army-had-partial-control-of-aliquippa-water-system

    =======================

    <old song snatch: …”…have lots of fun, but while you are there, don’t drink the water and don’t breathe the air!”>

    This is the perfect storm: Corporate cheapness, together with bureaucratic ineptitude and Security cubicle-dozing.

    ====================

    (Well, where I live, no one drinks the tap stuff anyway, most of it being from wells near a underground toxic water plume courtesy of a DOD contractor of long ago. It tastes awful.)

    Win7 Pro SP1 64-bit, Dell Latitude E6330, Intel CORE i5 "Ivy Bridge", 12GB RAM, Group "0Patch", Multiple Air-Gapped backup drives in different locations. Linux Mint Greenhorn
    --
    "The more kinks you put in the plumbing, the easier it is to stop up the pipes." -Scotty

    3 users thanked author for this post.
    Reply To: Pennsylvania water facility hit by Iran-linked hackers

    You can use BBCodes to format your content.
    Your account can't use all available BBCodes, they will be stripped before saving.

    Your information: