cybersecurity

FORNEBU, Norway – May 2, 2022 – Aker, via Aker Capital (“Aker”), Cognite, and Telenor are establishing a software security company to serve industry and operational technology. The company, called Omny, will fill a gap in the cybersecurity market where there is a great unmet need for software that prevents cyber attacks and secures businesses’ […]

Some cybersecurity experts believe hackers today pose a greater threat than ever to power plants and electric grids. Much of the operational technology (OT) used in power stations and throughout the grid was installed at a time when cybersecurity was more of an afterthought than a focal point in the system design. Furthermore, the pool […]

A Goldman Sachs private equity business is taking a stake in critical industry cybersecurity firm Fortress Information Security. The $125 million investment underscores a heightened awareness of supply chain vulnerabilities within the investor community. Fortress, which announced the investment from Goldman Sachs Asset Management Private Equity on April 19, said it also highlights a wider […]

The benefits of renewable energy continue to grow, with wind generation supplying 9.2% of generation in the U.S. and up to 22.6% in other western countries like Germany. Solar is at 2.8% in the U.S. (for utility-scale installations) and near 10% in Germany. Through diversification and greater distribution system integration, the application of renewable energy […]

In January, the U.S. Department of Energy (DoE) launched its new Building a Better Grid initiative. The DoE’s stated intention for the program is to create a more robust transmission system that will restore the nation’s electrical grid through expanded access and greater resilience. The initiative emphasizes supporting generation and distribution of clean energy, and […]

The energy transition will bring with it a new generation of cybersecurity challenges for the power sector. While information-sharing has been valuable, strategies to address issues related to vendor security, cyber talent, and lagging investment will also be critical, a former utility supply chain executive who led the development of an industry-wide cybersecurity risk exchange […]

The digital transformation in the power generation industry touches several areas, encompassing engineering, monitoring and control, asset performance, and operations optimization, among others. Power plant operators know the digital era has been a perfect fit for their industry, enabling digitization to reduce risk, save costs, optimize performance, and speed crisis response. Doble Engineering is a […]

RALEIGH, N.C. (Jan. 18, 2022) — Power management company Eaton today introduced the latest advancement in intelligent power management with the North American launch of the 5PX G2 uninterruptible power supply (UPS). The new solution delivers enhanced connectivity and cybersecurity protection for Eaton’s legacy 5PX UPS technology, making it ideal for users in distributed IT […]

The power and energy sector is one of the most critical areas of our country’s infrastructure, making it a prime target for cybercriminals increasingly looking for ways to infiltrate and disrupt the sector and ultimately the national grid. In fact, the U.S. Government Accountability Office (GAO) released a report in early 2021 that found the […]

The clock is ticking to protect the electric grid from cyberattacks. Adversarial nations, terrorists, and criminal groups have been refining their techniques since before Dan Coats, director of National Intelligence, warned of America’s vulnerability to major electric grid attacks in January 2019. This followed an earlier report from Lloyd’s that a successful, coordinated intrusion could cost $1 trillion. […]

A survey of chief information security officers revealed great insight on cyber risks and perceived vulnerabilities. While some insiders may think working hand-in-hand with government agencies to develop sound

HOUSTON, Texas (Nov. 16, 2021) – ABS Group Consulting Inc. (ABS Consulting), a leading global risk management company, and NAES Corporation, the energy industry’s largest independent provider of O&M services, have formed a partnership to provide industrial cybersecurity services for critical infrastructure in the power and energy sector. Through this collaboration, NAES will have enhanced […]

In January 2021, a hacker accessed the digital infrastructure controlling the water supply for Oldsmar, a Florida city of 15,000 people. The bad actor attempted to manipulate the city’s water supply, exploiting a vulnerability in the company’s IT-grade remote access software to alter levels of sodium hydroxide in the water supply, raising its concentration to […]

Executive Summary Electric utilities face unprecedented cybersecurity challenges as attacks grow more frequent, complex, and targeted. Once considered an IT issue, cybersecurity is now central to maintaining grid reliability, customer trust, and regulatory compliance. This white paper examines the critical vulnerabilities within meter data management systems and the operational, financial, and reputational risks utilities face […]

For the better part of the past decade, utility companies have been more concerned with the potential for outages than cyberattacks, but this has changed over the past several months. The Colonial Pipeline ransomware attack and the remote cyberattack on a Florida water treatment plant put cybersecurity top-of-mind and made it clear hackers can do […]

In December 2020, the U.S. Department of Energy announced a new subcommittee focused on the nation’s electric grid. The Grid Resilience for National Security subcommittee was a response to increasing threats to the country’s expansive electric grid that reliably delivers electricity to power the digital age. Today, those threats are even more relevant than ever […]

Cyberattacks on the U.S. energy system threaten our national security and way of life. While the sources of such risks may be debatable, the threats are real and the potential consequences are grave. Former

  COMMENTARY Supply chain security is top of mind these days for policymakers and regulators focused on protecting the utility industry and other critical infrastructure. A cyber vulnerability with a single supplier can take down an entire supply chain network and the entities that use its products. The organizations that support and supply products and […]

The Biden administration is moving to add more safeguards to the nation’s critical infrastructure by establishing a new voluntary public-private collaboration that will focus wholly on industrial control systems (ICS) cybersecurity. The administration formally launched the “Industrial Control Systems Cybersecurity Initiative” in the “National Security Memorandum on Improving Cybersecurity for Critical Infrastructure Control Systems” signed by […]

IBM Security reported on July 28 that the average cost of recent data breaches was $4.24 million per incident, the highest cost ever recorded by the company in 17 years of tracking the metric. Notably, data breaches in the U.S. were by far the costliest, exceeding $9 million per incident on average. The findings were […]

In early May 2021, a Russian cyber-criminal group hit Colonial Pipeline, the largest U.S. oil and natural gas pipeline system, with a devastating ransomware attack. The exploit maliciously encrypts computer files, making them inaccessible unless the victim pays a ransom. To contain the threat, Colonial was forced to temporarily shut down portions of its operations […]

How do you protect yourselves from cybercriminals that plan to hold your organization for ransom? These criminals are intelligent, extremely computer literate, and know that production facilities, the utility sector, and mainly the power sector are ripe for ransom threats. The criminal hack organization known as DarkSide created a malicious computer code that resulted in […]

When securing network assets, a long and often complex list of configurations must be performed to ensure industrial control systems have the appropriate cyber protection. This article presents a systematic

Owners and operators of the 100 most “critical” hazardous liquid and natural gas pipelines, and liquefied natural gas (LNG) facilities will need to act within the next 30 days to align with federal cybersecurity guidance under new mandates issued by the Transportation Security Administration (TSA). The TSA’s May 27-issued pipeline-focused security directive is a notable, […]

Commentary by Jay Zoellner, CEO Kiwi Power.   The ransomware attack that forced one of the nation’s largest fuel arteries to halt operations earlier this month exposed critical vulnerabilities in the American energy system, and as the largest such attack in history, it raised serious concerns for the security of our energy infrastructure. Supplying nearly half […]

The Biden administration this week issued a new spate of actions to bolster the nation’s cybersecurity, though details of its 100-day plan issued last month to address risks to the U.S. bulk power system (BPS) remain scant. In a May 11 notice, the president said his administration would continue, for one year, a national emergency declared […]

A ransomware incident on May 7 that prompted Colonial Pipeline Co., owner of the nation’s largest refined products pipeline, to proactively shut it down underscores the punch cyberthreats can pose to organizations, “regardless of size or sector,” the U.S. Cybersecurity and Infrastructure Security Agency (CISA) has warned.   Five days after Colonial Pipeline first learned it was the […]

Managing a nationwide system of assets providing power generation, transmission, and distribution, which underpin the energy sector, can be a challenging endeavor. Particularly when you take into account the vast array of modern and legacy technologies that may not work in harmony together. For energy professionals, the stakes could not be higher. Prolonged outages as […]

Two recent incidents have made the cost of not protecting our infrastructure and natural resources abundantly clear. First, there was the widely publicized SolarWinds attack that infected more than a dozen utility companies, and oil and gas manufacturing entities. Then, there was a dangerous incident in Florida, where a hacker gained access to a water […]

The utility industry has undergone a remarkable shift over the past 10 years. What was traditionally a one-way commodity electron-flow to customers has now become bidirectional traffic of both electrons and bytes. With the rise of distributed energy resources (DERs) and customer demands for improved energy efficiency, utilities are handling an increasing amount of useful […]