Taking Charge of Cybersecurity in the Energy Industry

Credit to Author: Aaron Larson| Date: Wed, 02 Oct 2019 12:50:29 +0000

The post Taking Charge of Cybersecurity in the Energy Industry appeared first on POWER Magazine.

Delivering energy has centered on the fundamental tenant of being reliably available. As energy providers strive to maintain that availability, they all too often push security to the backburner. Many unsafe practices have fallen into place for the sake of speed and efficiency, including the use of default and shared passwords, open access, and little […]

The post Taking Charge of Cybersecurity in the Energy Industry appeared first on POWER Magazine.

Read more

FERC, NERC Want to Disclose Names, Penalties for Cybersecurity Reliability Violations

Credit to Author: Sonal Patel| Date: Wed, 28 Aug 2019 16:52:16 +0000

The names of bulk power system entities that violate federal critical infrastructure cybersecurity reliability standards—along with identification of standards violated and penalties assessed—may soon be routinely disclosed under changes proposed by the Federal Energy Regulatory Commission (FERC) and the North American Reliability Corp. (NERC).  The proposed changes, which FERC and NERC outlined in an Aug. […]

The post FERC, NERC Want to Disclose Names, Penalties for Cybersecurity Reliability Violations appeared first on POWER Magazine.

Read more

TRITON/TRISIS Cyberattacker Has a New Target: Power Sector

Credit to Author: Sonal Patel| Date: Fri, 14 Jun 2019 14:12:51 +0000

XENOTIME, a cyberthreat activity group thought responsible for TRISIS/TRITON malware attacks on safety instrumented systems (SIS) at an oil and gas Middle Eastern facility in 2017, has been probing power company networks in the U.S. and elsewhere, new intelligence from industrial control systems (ICS) security firm Dragos shows.  “In February 2019, Dragos identified a change in […]

The post TRITON/TRISIS Cyberattacker Has a New Target: Power Sector appeared first on POWER Magazine.

Read more

Strengthening the Energy Sector’s Cyber Preparedness

Credit to Author: POWER| Date: Sat, 01 Jun 2019 00:00:00 +0000

The Department of Energy (DOE) in March 2018 released a 52-page report outlining its multi-year strategy to improve cybersecurity. In the report’s introduction, Assistant Secretary Bruce J. Walker noted that

The post Strengthening the Energy Sector’s Cyber Preparedness appeared first on POWER Magazine.

Read more

Modifying Behavior to Protect Systems in a Malicious Threat Landscape

Credit to Author: Aaron Larson| Date: Wed, 01 May 2019 04:00:40 +0000

The malicious threat landscape for industrial control systems (ICSs) is constantly evolving and getting more sophisticated, thereby raising the need to have visibility, implement protective controls, and perform continuous monitoring. As a result, it is important to take a look at the attack vectors of some malware/malicious events—such as Triton—that have occurred over the last […]

The post Modifying Behavior to Protect Systems in a Malicious Threat Landscape appeared first on POWER Magazine.

Read more

New Cyberattack by Group Behind TRITON/TRISIS Reported

Credit to Author: Sonal Patel| Date: Wed, 10 Apr 2019 22:45:39 +0000

Cybersecurity firm FireEye has uncovered and is responding to a new intrusion at an unnamed critical infrastructure facility that it suggests in an April 10 blog post was perpetrated by the group behind the TRITON attack, which prompted a process shutdown at a Middle Eastern facility in 2017. But while details of the new attack are sparse, […]

The post New Cyberattack by Group Behind TRITON/TRISIS Reported appeared first on POWER Magazine.

Read more

New TRITON/TRISIS Cyberattack Reported at Critical Infrastructure Facility

Credit to Author: Sonal Patel| Date: Wed, 10 Apr 2019 16:04:17 +0000

A new critical infrastructure facility has suffered a TRITON intrusion, says cybersecurity firm FireEye.  The company confirmed in an April 10 blog post that it has uncovered and is responding to an “an additional intrusion by the attacker behind TRITON at a different critical infrastructure facility.”  Details about the attack are sparse, but FireEye and […]

The post New TRITON/TRISIS Cyberattack Reported at Critical Infrastructure Facility appeared first on POWER Magazine.

Read more

Working with Peers Is Critical to Power System Reliability [PODCAST]

Credit to Author: Aaron Larson| Date: Fri, 29 Mar 2019 18:59:46 +0000

When conversations around the power industry turn to computer hacking, more often than not experts say it’s not a question of if, but rather, how systems have been compromised. William Doering, adjunct professor in the John E. Simon School of Business at Maryville University and a director with Guidehouse—a management consulting services provider—said he has […]

The post Working with Peers Is Critical to Power System Reliability [PODCAST] appeared first on POWER Magazine.

Read more

Cyberattack Debilitates Major Aluminum and Hydropower Producer

Credit to Author: Sonal Patel| Date: Tue, 19 Mar 2019 18:05:53 +0000

Norsk Hydro, a major global aluminum producer that is also Norway’s third-largest producer of hydropower, has been stricken by an extensive cyberattack—reportedly ransomware—that forced its entire global network offline. The company powers its sizable aluminum production operations with 20 hydropower plants concentrated in Telemark, Røldal-Suldal, Sogn, and Vennesla, producing a total 10 TWh per year. […]

The post Cyberattack Debilitates Major Aluminum and Hydropower Producer appeared first on POWER Magazine.

Read more

DOE and FERC Mull Incentivizing Cybersecurity, Physical Security of Power and Gas Infrastructure

Credit to Author: Sonal Patel| Date: Mon, 04 Feb 2019 20:22:17 +0000

The U.S. Department of Energy (DOE) and Federal Energy Regulatory Commission (FERC) want to explore how federal and state authorities could incentivize cybersecurity and physical security in the power and natural gas sectors. The agencies issued a notice on Feb. 4announcing they would jointly hold a technical conference on Thursday, March 28, 2019, from 10 […]

The post DOE and FERC Mull Incentivizing Cybersecurity, Physical Security of Power and Gas Infrastructure appeared first on POWER Magazine.

Read more