Iranian Hackers Attack US Water System

Uploaded on 2023-12-12 in INTELLIGENCE-Hot Spots-Iran, GOVERNMENT-National, FREE TO VIEW, BUSINESS-Production-Utilities

Iran-linked hackers  have exploited Israeli-made programmable logic controllers (PLCs) used in multiple water systems and other operational technology facilities across the US, according to US cyber security agencies. Iran has been linked with repeated attacks on Israeli water infrastructure.

A senior White House national security official has spoken about these recent cyber attacks by Iranian hackers on US water utilities and ransomware attacks on the healthcare industry, saying there should be stronger cyber security. 

Iranian hackers breached a Pennsylvanian water utility and this was just one of the operations cyber attacked in an apparent politically motivated attack. Municipal Water Authority of Aliquippa (MWAA) said it resorted to manual controls after hackers breached pressure monitoring equipment at one of their booster stations over Thanksgiving weekend.

The US Cybersecurity and Infrastructure Security Agency (CISA) has said that the hackers, known as "CyberAv3ngers," have been infiltrating video screens with the message "You have been hacked, down with Israel. Every equipment 'made in Israel' is CyberAv3ngers legal target." Anne Neuberger the Deputy National Security Adviser said  that recent attacks on a number of American organisations by the Iranian hacker group known as Cyber Av3ngers, though to be linked with the Iranian military.

The hackers said they were specifically targeting organisations that used programmable logic controllers made by the Israeli company Unitronics, commonly used by water and water treatment utilities.

The affected device monitors and regulates pressure for Raccoon and Potter townships in Beaver County. The attack did not affect water quality or availability. But the attacks do offer a renewed warning-call utility companies and operators of critical infrastructure are facing persistent and capable cyber attacks from hostile countries and criminals that are not going away.

 “Some pretty basic practices would have made a big difference there... We need to be locking our digital doors. There are significant criminal threats, as well as capable countries, but particularly criminal threats, that are costing our economy a lot.” according to Neuberger

The US government is increasingly  concerned about Iran attempting to aggravate the Israeli-Hamas conflict through the ise of proxy groups like CyberAv3ngers.

Neuberger said that this event emphasised the need to step up cyber security efforts and the most recent attack 
came after a federal appeals court decision in October prompted the Environmental Protection Agency to drop regulations that would have obliged US public water systems to include cyber security testing in their regular audits. 

Neuberger also noted recent criminal ransomware attacks that have devastated health care systems, arguing those attacks spotlight the need for government and industry to take steps to tighten cyber security.

A recent global study by the leading cyber security firm Sophos found that nearly two-thirds of health care organisations were hit by ransomware attacks in the year ending in March, double the rate from two years earlier but  slightly lower than 2022. 

CISA:    The Hill:     AP:     ArabNews:   CPO Magazine:     The Register:    NPR:     Sophos:

Image:  American Public Power Association 

You Might Also Read: 

Iran Fingered For Attack On Israeli Water Infrastructure:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

 

Cyber Security Intelligence: Captured Organised & Accessible

 

« Google Launches Its New AI Model - Gemini
EU Agrees Regulations For Artificial Intelligence »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 7,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

DoD Cyber Crime Center (DC3)

DoD Cyber Crime Center (DC3)

DC3 is a US Department of Defense (DoD) center of excellence for Digital and Multimedia forensics.

Bayshore Networks

Bayshore Networks

Bayshore Networks was founded to safely and securely protect Industrial IoT (IIoT) networks, applications, machines and workers from cyber threats.

KZ-CERT

KZ-CERT

KZ-CERT is the national Computer Emergency Response Team for Kazakhstan.

CybergymIEC

CybergymIEC

CybergymIEC is a global leader in cyber defense solutions and training services.

Payatu

Payatu

Payatu Technologies is a security testing and services company specialized in Software, Application and Infrastructure security assessments and deep technical security training.

Cyber Discovery

Cyber Discovery

Cyber Discovery, the UK Government's Cyber Schools Programme, is a learning programme designed to give young people the opportunity to learn the skills needed to enter the cyber security profession.

Tempest

Tempest

TEMPEST is a leading provider of IT products and services including solutions for network and application security.

OSIbeyond

OSIbeyond

OSIbeyond provides comprehensive Managed IT Services to organizations in the Washington D.C., MD, and VA area including IT Help Desk Support, Cloud Solutions, Cybersecurity, and Technology Strategy.

Digital Identification & Authentication Council of Canada (DIACC)

Digital Identification & Authentication Council of Canada (DIACC)

DIACC is a non-profit coalition of public and private sector leaders committed to developing a Canadian framework for digital identification and authentication.

MDSec

MDSec

MDSec is a consultancy with a passion for information security. Our consultants specialise in application, mobile and hardware security and targeted red team attacks.

Identity Digital

Identity Digital

Identity Digital simplifies and connects a fragmented online world with domain names and related technologies that allow people and businesses to build, market and own their digital identities.

NetCentrics

NetCentrics

NetCentrics leverages an innovative, agile, ‘what’s-next’ approach to our customers’ IT and cyber challenges.

Protect AI

Protect AI

Protect AI is a cybersecurity company focused on AI & ML systems. Through innovative security products and thought leadership in MLSecOps, we help our customers build a safer AI powered world.

Whitaker Brothers

Whitaker Brothers

Whitaker Brothers data destruction equipment can be found in 115 countries and every single continent in the world, from major military organizations to small offices.

ReachOut Technology

ReachOut Technology

ReachOut is a transformative approach to IT Security, Support, and Guidance. But we’re more than that. We’re passionate IT experts driven to make solutions to your problems.

Bell Canada

Bell Canada

Bell is the leading provider of network and communications services for Canadian businesses and the partner for delivering network, IoT, cloud, voice, collaboration and security solutions.