Main menu


US Department of Homeland Security: Russian pirates are able to control US utilities

The US Department of Homeland Security (DHS) has accused Russian government-backed infiltrators of penetrating US infrastructure and said Russian hackers had access to electricity facilities in the United States, which allowed them to cause power outages. According to a report in the Wall Street Journal, Working for a state-sponsored Russian group called Dragonfly or Energetic Bear that had access to the networks over the past year.

Hackers infiltrated secure or isolated public utility networks by penetrating networks belonging to other vendors with ties to energy companies, the Department of Homeland Security said at a news conference. Officials said the campaign had resulted in hundreds of casualties, but many serious actions may not have taken place yet. , The campaign is likely to continue.

The Department of Homeland Security is planning four briefings and is looking for evidence that the Russians are trying to automate their attacks. Investigators said it was not clear whether this was done by hackers in preparation for a bigger attack in the future. Jonathan Homer, The Department of Homeland Security's industrial control system: "They have reached a point where they can turn off the power switches to block the flow force."

US Department of Homeland Security: Russian pirates are able to control US utilities

Energy-management organizations in the United States, including nuclear power and other vital infrastructure, have become frequent targets of cyber attacks in recent years, given their ability to cause immediate chaos such as blocking traffic lights, usually because of outdated programs and costs Upgrading infrastructure.

US Department of Homeland Security: Russian pirates are able to control US utilities

The hackers have been exposed to networks of private companies that run US utilities through a number of traditional methods, such as fraudulent e-mails and attacks targeting a specific group of users by infecting known Web sites, and hackers, after accessing vendor networks, Theft of credentials for access to utility networks and identification of facilities operations, officials said.

The hackers stole information on how to configure utility networks, what equipment was being used and how to control it, how they were supposed to operate, and many experts feared that a professional technician could use unrestricted access to change Some equipment settings, making them unreliable, cause utility engineers to perform objects that could cause extensive damage and could result in long electrical outages.

According to the information, the US Department of Homeland Security did not identify the victims, and some companies may not know that they have been hacked because the attacks used legitimate credentials to access networks, and cyber attacks on electrical systems is not a new issue, 2016 due to electronic attacks attributed to Russia involved in regional disputes with Ukraine in the east of the country and the Crimea, Russia denied any involvement in the targeting of vital infrastructure.

The report comes amid escalating tensions between Russia and the United States on cybersecurity. Earlier this month, the US Justice Department sent new charges to 12 Russian intelligence officers for breaking the accounts of Democratic Party officials and the presidential campaign of Hillary Clinton during the 2016 US presidential election. . The US intelligence community issued a joint statement in January last year confirming that Russia had already manipulated the US presidential election in 2016.

In May 2017, President Donald Trump signed a Presidential Executive Order aimed at strengthening cybersecurity in the United States by protecting federal networks, vital infrastructure, and the public via the Internet. One of the Executive Order divisions focuses on protecting utility networks such as electricity and water, To the financial care, health care, and communications systems, prompting the US Department of Commerce and the Department of Homeland Security to issue a draft report on strengthening action against botnet networks and other automated threats to the White House.