Archive: Cybersecurity

TRITON/TRISIS Cyberattacker Has a New Target: Power Sector

XENOTIME, a cyberthreat activity group thought responsible for TRISIS/TRITON malware attacks on safety instrumented systems (SIS) at an oil and gas Middle Eastern facility in 2017, has been probing power company networks in the U.S. and elsewhere, new intelligence from industrial control systems (ICS) security firm Dragos shows.  “In February 2019, Dragos identified a change in […]

Strengthening the Energy Sector’s Cyber Preparedness

The Department of Energy (DOE) in March 2018 released a 52-page report outlining its multi-year strategy to improve cybersecurity. In the report’s introduction, Assistant Secretary Bruce J. Walker noted that

EMP Threat Real but Limited, EPRI Says in Much-Anticipated Report

Depending on the hazard field, electromagnetic pulses (EMPs) resulting from detonation of a nuclear weapon at high altitude or in space could cause significant damage to electronics on the bulk power system and even prompt a regional voltage collapse, the Electric Power Research Institute (EPRI) says in much-anticipated findings from its three-year study on high-altitude […]

Modifying Behavior to Protect Systems in a Malicious Threat Landscape

The malicious threat landscape for industrial control systems (ICSs) is constantly evolving and getting more sophisticated, thereby raising the need to have visibility, implement protective controls, and perform continuous monitoring. As a result, it is important to take a look at the attack vectors of some malware/malicious events—such as Triton—that have occurred over the last […]

The Dark Side of the Smart Grid

The smart grid offers great promise to transform the electric system, enabling two-way communication between providers and consumers over the network, and allowing new services that can save electricity and

New Cyberattack by Group Behind TRITON/TRISIS Reported

Cybersecurity firm FireEye has uncovered and is responding to a new intrusion at an unnamed critical infrastructure facility that it suggests in an April 10 blog post was perpetrated by the group behind the TRITON attack, which prompted a process shutdown at a Middle Eastern facility in 2017. But while details of the new attack are sparse, […]

Autonomous Power Plant Takes Shape in Japan

The world’s first autonomous combined cycle power plant is currently under construction at the Takasago Machinery Works facility in Japan, and it will be operational by 2020, according to Mitsubishi Hitachi

the-power-podcast

Working with Peers Is Critical to Power System Reliability [PODCAST]

When conversations around the power industry turn to computer hacking, more often than not experts say it’s not a question of if, but rather, how systems have been compromised. William Doering, adjunct professor in the online Master’s in Business Administration program at Maryville University and a director with Guidehouse—a management consulting services provider—said he has participated […]

Trump Acts on Critical Infrastructure Resiliency Against EMP Threats

President Trump has signed an executive order (EO) to boost coordination for and national resilience against electromagnetic pulse (EMP) threats—both from nuclear warfare and natural events like solar superstorms. The action suggests new federal mandates to protect critical infrastructure against EMP events and attacks may be on the horizon.  Senior Trump administration officials from the National Security […]

Cyberattack Debilitates Major Aluminum and Hydropower Producer

Norsk Hydro, a major global aluminum producer that is also Norway’s third-largest producer of hydropower, has been stricken by an extensive cyberattack—reportedly ransomware—that forced its entire global network offline. The company powers its sizable aluminum production operations with 20 hydropower plants concentrated in Telemark, Røldal-Suldal, Sogn, and Vennesla, producing a total 10 TWh per year. […]