Utah Renewable Energy Supplier Hit By Cyber Attack – Experts Reactions

It has recently been reported that a renewable energy provider in Utah was hit by a cyber attack. This is the first instance of power grid operator in the US to have lost connection with its power generation installations as a result of a cyber attack. The root of the problem was traced to an unpatched firewall and the attacker used a vulnerability in a Cisco firewall to crash the device and break the connection between sPower’s wind and solar power generation installations and the company’s main command centre. sPower said it mitigated the intrusion by patching outdated devices.

Following the developments of this story, below are several comments from industry experts about the situation at hand.


EXPERTS COMMENTS
Sam Curry, Chief Security Officer,  Cybereason
November 04, 2019
The cyber-attack on sPower, the Utah-based solar and wind power utility, is specifically a lesson in anti-fragility and resilience.
With attackers breaching and disrupting left and right, to say that another “wake up call” has come is stating the obvious. Let’s get specific. The cyber-attack on sPower, the Utah-based solar and wind power utility, is specifically a lesson in anti-fragility and resilience. There’s very little public information here, so attribution isn’t really possible and the motivation of the attack ....
[Read More >>]
Moreno Carullo, Co-founder and CTO,  Nozomi Networks
November 04, 2019
The attack against sPower is likely not going to be a unique incident.
As the world moves towards a clean energy future, renewable energy infrastructures will likely become an increasingly attractive target for hackers or nation-state actors. The attack against sPower is likely not going to be a unique incident and demonstrates the growing threat to the renewable energy sector. Cybersecurity is just as important for a wind farm or hydroelectric plant as it is an oi ....
[Read More >>]
Martin Jartelius, CSO ,  Outpost24
November 04, 2019
In essence this is where they pay the price of the chosen design for their setup. It has advantages and drawbacks.
Well, smartgrid and IoT and so on are rather similar in its basic setup and proper maintenance. They belong more on M2M networks than on the open internet, and they clearly need proper maintenance and automated patch distributions. There are excellent guidelines such as the GSMA IoT guidelines covering everything from protection of communication to good design of update mechanisms. In essence thi ....
[Read More >>]

If you are an expert on this topic:

Submit Your Expert Comments


In this article