US water and wastewater systems targeted by cybercrime

October 29, 2021

A joint statement from the Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Agency (CISA), the Environmental Protection Agency (EPA) and the National Security Agency (NSA) alerts U.S. water and wastewater (WWS) facilities to ongoing cyber threats to the sector.

Cyber threats to WWS facilities

The joint alert highlighted the threats of spearphishing and ransomware, insider risk and outdated operating systems and software to WWS facilities. The FBI, CISA, EPA and NSA noted the following cyberattacks on WWS systems that took place between 2019 and early 2021:

California: Cyber actors attacked a WWS facility with Ghost variant ransomware, which was discovered after a month, when ransomware messages were displayed across three supervisory control and data acquisition (SCADA) servers.
Maine: Cyberattackers remotely introduced ZuCaNo ransomware onto a wastewater SCADA computer, resulting in the wastewater treatment facility being run manually until the computer was secure.
Nevada: Unknown ransomware affected a facility's SCADA and backup systems.
New Jersey: Staff found that potential Makop ransomware had compromised files in a WWS facility's system.
Kansas: A former employee unsuccessfully tried to threaten drinking water safety by using their unrevoked user credentials.

How WWS facilities can protect themselves

The joint alert suggests multiple mitigation strategies for WWS facilities to reduce their risk of cyberattack, including threat monitoring, using blocklisting and allowlisting to control remote employee access, reviewing and testing emergency response plans and more. Instituting multi-factor authentication, strong passwords, securing remote desktop protocol and avoiding suspicious links were all listed as suggestions for WWS systems to implement immediately.

The report highlighted that cyberattacks on critical infrastructure are on the rise, noting that WWS systems are not being attacked at a higher rate compared to other critical infrastructure sectors. Read the alert for more information on the threats and cyber risk mitigation tools.

Madeline Lauver joined Security magazine in 2021 as its Assistant Editor. She covers news affecting enterprise security leaders, including physical security, cybersecurity, leadership and management, risk and resilience and more. Within her role at Security, Lauver focuses on news articles, Web Exclusives features, the Today’s Cybersecurity Leader and Security enewsletters and several departments for Security’s monthly digital edition. Lauver graduated in 2019 with a BA in English, German and Media Studies from Kalamazoo College.

Ransomware and the propulsion of the extortion economy has rapidly eclipsed into a national priority. Recently, we observed the catastrophic impact of a widescale ransomware attack impacting gas pipelines and raising national gas prices overnight.

Organizations rely on application innovation, particularly API-driven applications, to fuel their business transformation and growth. Attackers know this and are constantly looking for ways to find the unfindable and break the unbreakable. They’ve got tools, motivation, and time on their side.

Poll

Comparison Metrics

View Results

Poll Archive

Products

Effective Security Management, 7th Edition

Effective Security Management, 5e, teaches practicing security professionals how to build their careers by mastering the fundamentals of good management. Charles Sennewald brings a time-tested blend of common sense, wisdom, and humor to this bestselling introduction to workplace dynamics.

See More Products

US water and wastewater systems targeted by cybercrime

Cyber threats to WWS facilities

Recent Articles by Madeline Lauver

Data from 400,000 Planned Parenthood patients compromised

Business travel likely to remain permanently low

TSA requests insight on Information Sharing and Analysis Center

GoDaddy breach: Up to 1.2 million user records compromised

The 10 best US cities for IT security professionals

Get our new eMagazine delivered to your inbox every month.

Stay in the know on the latest enterprise risk and security industry trends.

US water and wastewater systems targeted by cybercrime

Cyber threats to WWS facilities

Recent Articles by Madeline Lauver

Related Articles

Get our new eMagazine delivered to your inbox every month.

Stay in the know on the latest enterprise risk and security industry trends.