Broadly reported last week. Was later pointed out that such local systems are universally poorly funded and protected. And this is unlikely to be improved given the current business models of such systems.
A relatively rare SCADA attack on infrastructure occurs in the US. By allowed remote access.
Poor Password Security Led to Recent Water Treatment Facility Hack
By The Hacker News, February 11, 2021
New details emerging about the remote computer intrusion at a Florida water treatment facility last week highlight a lack of adequate security measures to protect critical infrastructure environments.
New details have emerged about the remote computer intrusion at a Florida water treatment facility last Friday, highlighting a lack of adequate security measures needed to bulletproof critical infrastructure environments.
The breach, which occurred last Friday, involved an unsuccessful attempt on the part of an adversary to increase sodium hydroxide dosage in the water supply to dangerous levels by remotely accessing the SCADA system at the water treatment plant. The system's plant operator, who spotted the intrusion, quickly took steps to reverse the command, leading to minimal impact.
Now, according to an advisory published on Wednesday by the state of Massachusetts, unidentified cyber actors accessed the supervisory control and data acquisition (SCADA) system via TeamViewer software installed on one of the plant's several computers that were connected to the control system.
From The Hacker News
No comments:
Post a Comment