cybersecurity

The power grid is changing across the U.S. More distributed energy resources are being added every day. That brings challenges for power utilities, but also opportunities. John Di Stasio, president of the Large Public Power Council (LPPC), which represents 27 of the largest locally governed and operated not-for-profit electric systems in the U.S., was a […]

The names of bulk power system entities that violate federal critical infrastructure cybersecurity reliability standards—along with identification of standards violated and penalties assessed—may soon be routinely disclosed under changes proposed by the Federal Energy Regulatory Commission (FERC) and the North American Reliability Corp. (NERC).  The proposed changes, which FERC and NERC outlined in an Aug. […]

XENOTIME, a cyberthreat activity group thought responsible for TRISIS/TRITON malware attacks on safety instrumented systems (SIS) at an oil and gas Middle Eastern facility in 2017, has been probing power company networks in the U.S. and elsewhere, new intelligence from industrial control systems (ICS) security firm Dragos shows.  “In February 2019, Dragos identified a change in […]

The Department of Energy (DOE) in March 2018 released a 52-page report outlining its multi-year strategy to improve cybersecurity. In the report’s introduction, Assistant Secretary Bruce J. Walker noted that

The malicious threat landscape for industrial control systems (ICSs) is constantly evolving and getting more sophisticated, thereby raising the need to have visibility, implement protective controls, and perform continuous monitoring. As a result, it is important to take a look at the attack vectors of some malware/malicious events—such as Triton—that have occurred over the last […]

The smart grid offers great promise to transform the electric system, enabling two-way communication between providers and consumers over the network, and allowing new services that can save electricity and

Cybersecurity firm FireEye has uncovered and is responding to a new intrusion at an unnamed critical infrastructure facility that it suggests in an April 10 blog post was perpetrated by the group behind the TRITON attack, which prompted a process shutdown at a Middle Eastern facility in 2017. But while details of the new attack are sparse, […]

When conversations around the power industry turn to computer hacking, more often than not experts say it’s not a question of if, but rather, how systems have been compromised. William Doering, adjunct professor in the online Master’s in Business Administration program at Maryville University and a director with Guidehouse—a management consulting services provider—said he has participated […]

Norsk Hydro, a major global aluminum producer that is also Norway’s third-largest producer of hydropower, has been stricken by an extensive cyberattack—reportedly ransomware—that forced its entire global network offline. The company powers its sizable aluminum production operations with 20 hydropower plants concentrated in Telemark, Røldal-Suldal, Sogn, and Vennesla, producing a total 10 TWh per year. […]

Houston, March 14, 2019 – BlueVoyant and IronNet Cybersecurity today announced a partnership to deliver advanced, collective cyber defense and threat-detection capabilities to small-to-medium-sized energy providers in the United States. The joint offering will deliver IronNet’s threat analytics platform along with the industry’s first and only real-time collective cyber defense capability through BlueVoyant’s superior managed […]