A new tool will enable grid operators to better detect not only a brutal physical attack, but also a hacker probing for vulnerabilities.
CS Digest Section: Critical Infrastructure
Baltimore 911 Dispatch System Hacked, Investigation Underway, Officials Confirm
Baltimore's 911 dispatch system was hacked by an unknown actor or actors over the weekend, prompting a temporary shutdown of automated dispatching and an investigation into the breach, Mayor Catherine Pugh's office confirmed Tuesday.
http://www.baltimoresun.com/news/maryland/crime/bs-md-ci-911-hacked-20180327-story.html
A Cyberattack Hobbles Atlanta, and Security Experts Shudder
The City of Atlanta's 8,000 employees got the word on Tuesday that they had been waiting for: It was O.K. to turn their computers on. But as the city government's desktops, hard drives and printers flickered back to life for the first time in five days, residents still could not pay their traffic tickets or water bills online, or report potholes or graffiti
https://www.nytimes.com/2018/03/27/us/cyberattack-atlanta-ransomware.html
Cyberattacks Put Russian Fingers on the Switch at Power Plants, U.S. Says
The Trump administration accused Russia on Thursday of engineering a series of cyberattacks that targeted American and European nuclear power plants and water and electric systems, and could have sabotaged or shut power plants off at will.
https://www.nytimes.com/2018/03/15/us/politics/russia-cyberattacks.html
Schneider Electric Says Bug in its Technology Exploited in Hack
Schneider Electric said on Thursday that hackers had exploited a flaw in its technology in a watershed incident discovered last month that halted operations at an undisclosed industrial facility.
How the Triton Malware Shut Down Critical Infrastructure in the Middle East
The attack vector for Triton, the nation state-sponsored malware that attacked industrial sites in the Middle East in December 2017, has been revealed by the hardware manufacturer whose equipment was the target.
Critical Infrastructure More Vulnerable Than Ever Before
Despite widespread awareness of the physical and data-related danger inherent in exposing critical infrastructure to cyberattack, the number of internet-accessible industrial control systems (ICS) is increasing every year.
https://www.infosecurity-magazine.com/news/critical-infrastructure-more/
Trisis Has Mistakenly Been Released on the Open Internet
An elite, government authored cyberweapon has been sitting online in public view for nearly anyone to copy since Dec. 22 because multinational energy technology company Schneider Electric mistakenly posted a sensitive computer file to VirusTotal, three sources familiar with the matter told CyberScoop.
https://www.cyberscoop.com/trisis-virus-total-schneider-electric/
AF Installation Cyberattack Plans Tested During National Grid Exercise
Recently, 32 Air Force installations and representatives from Headquarters Air Force took part in the two-day national Grid Security Exercise IV, or GridEx IV, to simulate a coordinated response to cyber and physical security threats to North America's electricity grid and other critical infrastructure.
Hackers Halt Plant Operations in Watershed Cyber Attack
Hackers likely working for a nation-state recently invaded the safety system of a critical infrastructure facility in a watershed attack that halted plant operations, according to cyber investigators and the firm whose software was targeted.
