•   
  •   
  •   

US Hackers targeted US drinking water and wastewater facilities as recently as August, Homeland Security says

11:51  17 october  2021
11:51  17 october  2021 Source:   usatoday.com

Ransomware hackers find vulnerable target in U.S. grain supply

  Ransomware hackers find vulnerable target in U.S. grain supply At least three U.S. grain distributors’ systems have been infected with ransomware in recent weeks, raising concerns that hackers have found an easy target in a vital part of the U.S. food supply chain. © Provided by NBC News All three known victims are Midwestern grain cooperatives that buy grain from farmers and then process, store and resell it for uses like livestock feed and fuel.

WASHINGTON – The nation's top civilian cybersecurity agency issued a warning Thursday about ongoing cyber threats to the U.S. drinking water supply, saying malicious hackers are targeting government water and wastewater treatment systems.

Authorities said they wanted to highlight ongoing malicious cyber activity “by both known and unknown actors” targeting the technology and information systems that provide clean, drinkable water and treat the billions of gallons of wastewater created in the U.S. every year.

The alert, which disclosed three previously unreported ransomware attacks on water treatment facilities, was issued by the Department of Homeland Security’s Cybersecurity and Infrastructure Agency (CISA). It was the result of analytic efforts by DHS, the FBI, the Environmental Protection Agency and the National Security Agency.

Officials Close Access to Some Lake Michigan-Area Waters After Second U.S. Steel Spill

  Officials Close Access to Some Lake Michigan-Area Waters After Second U.S. Steel Spill "No sheen was observed entering or in Lake Michigan," a U.S. Steel spokesperson said. "We continue to investigate the cause."Company spokeswoman Amanda Malkowski told AP that the sheen was spotted Thursday morning on Burns Waterway outside the U.S. Steel Midwest Plant in Portage, Indiana. However, it was no longer visible by 8 p.m.

Start the day smarter. Get all the news you need in your inbox each morning.

One DHS cybersecurity official described it as the routine sharing of technical information between federal agencies and their industry partners “to help collectively reduce the risk to critical infrastructure in the United States.” Added a second Homeland Security official: “It’s not any indication of a new threat. We don’t want anyone to think that their drinking water supply is under attack.”

What is killware? © Provided by USA TODAY What is killware?

Both officials spoke on the condition of anonymity in order to elaborate on the agency’s public statements.

Despite their assurances, the advisory disclosed that in March 2019, a former employee at a Kansas-based water and waste water treatment facility unsuccessfully tried to threaten drinking water safety by logging in with his user credentials – which had not been revoked at the time of his resignation – to remotely access a facility computer.

The next big cyberthreat isn't ransomware. It's killware. And it's just as bad as it sounds.

  The next big cyberthreat isn't ransomware. It's killware. And it's just as bad as it sounds. Hackers increasingly are targeting infrastructure – from hospitals and water supplies to banks and transit – in ways that could injure or kill.The Colonial Pipeline ransomware attack in April galvanized the public’s attention because of its consumer-related complications, including long lines at gas stations, Homeland Security Secretary Alejandro Mayorkas said in an interview with USA TODAY's Editorial Board last week.

In that case, a federal grand jury in Topeka, Kansas accused Wyatt Travnichek, 22, of tampering with the water treatment facilities for the sprawling, eight-county Post Rock Rural Water District.

The indictment, announced March 31, alleges that Travnichek's job for the utility was to monitor the water plant remotely by logging into its computer system. Two months after he left his job with the water district in January 2019, it said, Travnichek logged in remotely with the intent of shutting shut down the facility’s cleaning and disinfecting procedures.

“By illegally tampering with a public drinking water system, the defendant threatened the safety and health of an entire community,” said Lance Ehrig, special agent in charge of the EPA's criminal investigation division in Kansas. The federal indictment says Travnichek used a Samsung phone to commit the offense.

Agencies say agriculture groups being targeted by BlackMatter ransomware

  Agencies say agriculture groups being targeted by BlackMatter ransomware A trio of federal agencies on Monday sounded the alarm about critical infrastructure groups, particularly agricultural organizations, being targeted by a prolific ransomware group.The FBI, the Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) put out a joint advisory warning of targeting by "BlackMatter ransomware," connecting the group to previous attacks this year. "Since July 2021, BlackMatterThe FBI, the Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) put out a joint advisory warning of targeting by "BlackMatter ransomware," connecting the group to previous attacks this year.

The advisory also includes bare-bones details of four other unauthorized intrusions between 2019 and August 2021 in California, Maine, Nevada and New Jersey. All of them were ransomware attempts, or efforts to shut down water and wastewater systems in an effort to get a payout in order to put the systems back online, it said, without providing specifics.

The advisory comes several days after Homeland Security Secretary Alejandro Mayorkas and senior DHS cybersecurity officials told USA TODAY that they were concerned about the possibility of a deliberate cyberattack on a water treatment plant or other critical facility that could result in serious injuries or even death.

The DHS officials and cybersecurity experts cited the case of an Oldsmar, Florida water treatment plant that was penetrated in February by hackers trying to alter the chemicals used to treat the municipal water supply.

Mayorkas told the USA TODAY Editorial Board that he was especially troubled by the Oldsmar incident because “that attack was not for financial gain but rather purely to do harm … and that should have gripped our entire country.”

Governor seeks $11M as water crisis rages in predominately Black community

  Governor seeks $11M as water crisis rages in predominately Black community Michigan Gov. Gretchen Whitmer visited Benton Harbor amid a crisis of toxic lead poisoning the city's drinking water in the predominately Black community. The governor issued a new call for the state legislature to provide an additional $11.4 million investment to help expedite the replacement of lead pipes and service lines in the predominately Black community within the next 18 months.

Wam Voster, senior research director at the security firm Gartner, warned that the attack on the Oldsmar water treatment facility “shows that security attacks on operational technology are not just made up in Hollywood anymore.” He described the relatively new and growing phenomenon as "killware,” or cyberattacks that can literally end lives.

Thursday's advisory did not disclose whether any of the four ransomware attempts resulted in payouts to hackers – or if any of them resulted in significant damage or any physical harm. The DHS cybersecurity official referred questions about that to an FBI official who could not be reached for comment.

In September 2020, workers at a New Jersey water and wastewater facility discovered that potential ransomware had compromised some of their system files, the advisory said. Six months later cyber actors used an unknown ransomware variant to disable a monitoring system – and its backup – at a facility in Nevada.

In July 2021, hackers used remote access to introduce ransomware onto a Maine facility’s wastewater operations computer. The treatment system was run manually until workers used local control of the system to get it back online. And the next month, a ransomware attack on a California facility was discovered when computer servers displayed a ransomware message. The malware had been in the system for about a month.

Policy Hackathon: Recreating America’s downtowns

  Policy Hackathon: Recreating America’s downtowns The pandemic undermined the economic model that supports the urban centers of most U.S. cities. POLITICO brought together mayors and city leaders from around the country to figure out what’s next, and how to get there.More than a year-and-a-half after those stay-at-home measures, vaccination rates are climbing and lockdown orders have largely lifted, sidewalk restaurants are filling, and museums, music venues and sporting arenas are slowly opening their doors. But city centers have yet to fully recover.

The agencies provided a long list of things that owners and operators can to do stop attacks on their systems and to minimize the damage if and when it occurs – including those overseeing Department of Defense water treatment facilities here and overseas. One recommendation: making sure their emergency response plans consider the full range of potential impacts of cyberattacks, including total shutdowns, loss of control of their operating systems, theft or destruction of internal data – and threats to human safety.

Follow domestic security correspondent Josh Meyer on Twitter @JoshMeyerDC and see his other reports:

  • The next big cyber threat isn't ransomware. It's killware. And it's just as scary as it sounds.
  • Khalid Sheikh Mohammed confessed to being the 9/11 mastermind. 20 years later, he’s still awaiting trial
  • Biden, Trump didn't miss ISIS-K threat – they ignored it, experts say

This article originally appeared on USA TODAY: Hackers targeted US drinking water and wastewater facilities as recently as August, Homeland Security says

Phone call, worn underwear, Sharpie: How Ariel Torres' historic Olympic medal quest in karate began .
For karateka Ariel Torres, the first American to win an Olympic medal in karate, the road to Tokyo started with a call, worn underwear and a Sharpie. Your browser does not support this video Five years before he took bronze in men’s kata at the Tokyo Games, 18-year-old Torres received a call from his sensei, Robert Young of Goju-Ryu Miami Kenseikan. Young told Torres that karate was being added to the Olympic program for 2020. However, karate wouldn’t be featured at the 2024 Paris Olympics, so Torres needed to spend the next four years working toward qualification.

usr: 3
This is interesting!