cybersecurity

Siemens Energy and Schneider Electric, two industrial control system (ICS) vendors for critical infrastructure industries, have been reportedly listed as ransomware victims by cybercrime gang CL0P, though any targeted attacks are yet unconfirmed. The ransomware gang, also known as TA505, began exploiting a vulnerability in MOVEit Transfer, an internet-facing automated file transfer web application, starting […]

It’s been two years since the historic Colonial Pipeline ransomware attack shut down one of the largest and most vital oil pipelines in the U.S. While this hasn’t been the nation’s only attack on power infrastructure, it’s the largest publicly disclosed and, at $4.4 million, it was also the most-costly. Since then, we’ve learned that […]

A tailored approach to evaluating and implementing benefit-based cybersecurity technologies for wind power plants. Recent research and development (R&D) have provided insights into cybersecurity strategies and business cases for cybersecurity investments. These findings will help renewable sector entities tailor an approach to evaluating and implementing cybersecurity technologies for wind power plants. A Cyber Resilient Reference […]

The utility industry needs to be prepared to adapt at this time of uncertainty and change, rising prices, and international turmoil. However, it is becoming more challenging to comply with regulations and

The aging energy grid is in need of an upgrade. Converging challenges, such as distributed energy resources, electric vehicles and frequent extreme weather events, are pushing our infrastructure—some of which is over a half a century old—to the limit. As grid modernization efforts move full steam ahead to meet these challenges, security implications are often […]

Physical security at power plants has received renewed concern of late, owing to a spate of gunfire vandalism events in the U.S. However, power plants have long-fielded several other physical security risks, including from terrorism, sabotage, natural disasters, insider threats, and physical breaches. Power plants have typically employed a set of physical security tools, such […]

Several major power companies have launched a software assurance database that will serve as a software bill of materials (SBOM) repository for the power industry. Part of a long-sought solution to address a critical supply chain cybersecurity risk, the collaborative effort announced on Feb. 8 seeks to help vendors identify and remediate vulnerabilities in software […]

Interrupting power grids is one of the most effective ways to cripple a town or a city. If a region can’t keep the lights on, pretty much everything must come to a halt until the issue is remedied. For this reason, the power and energy industry has become a prime target for cyberattacks on operational […]

Even more than technology and processes, power and utilities leaders must focus on that most timeless of resources—people—to be successful against a landscape of ever-evolving cybersecurity threats. Users

ARLINGTON, Va. – The Department of Energy today awarded a $15 million award to the National Rural Electric Cooperative Association to help electric cooperatives expand their cyber monitoring capabilities of their industrial control facilities. The award will be spread over three years, with $10 million disbursed in 2022 and the remaining $5 million in subsequent […]