Without federal action, hackers will continue to endanger US water systemsOminous warnings from the federal government early this month cautioni...

Published on by

Without federal action, hackers will continue to endanger US water systemsOminous warnings from the federal government early this month cautioni...
Without federal action, hackers will continue to endanger US water systems
Ominous warnings from the federal government early this month cautioning of the “malicious cyber activity against operational technology” commonly used by water and wastewater providers must serve as a wake-up call for the nation — especially when it concerns the only public utility service we ingest.

Last month, cyber actors compromised computer systems designed to control and monitor equipment used to ensure safe and reliable water and wastewater service in Aliquippa, Pa. During the same time frame, the North Texas Municipal Water District experienced disrupted phones and impacted business computer systems when hackers said they obtained personal customer information.

Critical infrastructure is in the crosshairs of hackers. Unfortunately, this is not new.

In January 2021, a hacker deleted the programs used to treat water in parts of the San Franciso Bay area. One month later, a bad actor in Oldsmar, Fla., remotely adjusted the chemicals for the water treatment system creating a scenario where the area’s water could have turned into poison.

Thankfully to date, unauthorized access to these sensitive systems has not impacted public health or our environment. However, the importance of ensuring the safety and reliability of our critical water and wastewater assets from cyber-related attacks cannot be overstated.

The level of cyber sophistication at the nation’s water and wastewater facilities varies greatly. To comprehend the inconsistencies, it helps to understand the highly fragmented nature of the water and wastewater industry.

The United States has about 50,000 drinking water systems, 85 percent of which are government-run — and approximately 16,000 wastewater systems, of which around 90 percent are government-run. To put that in perspective, the nation has about 3,300 electric utilities.

The disparity among each of those 50,000 systems is often stark. The sobering reality is that too many system operators have been lax in their investments in not only the physical infrastructure but also cybersecurity-related areas.

At the National Association of Water Companies, where I am president and CEO, over 90 percent of members have a cybersecurity plan in place. However, these companies are often the exception, not the rule, when it comes to preparedness and cybersecurity in the water sector.

Attached link

https://thehill.com/opinion/cybersecurity/4373600-without-federal-action-hackers-will-continue-to-endanger-us-water-systems

Taxonomy