Hackers Accessed HMIs at Israeli Water Facility

September 30, 2022

INCIDENT

An Iranian threat-actor published a video of a breach in an Israeli reclaimed water reservoir HMI system. According to industrial cybersecurity firm OTORIO, the hackers accessed a human-machine interface (HMI) system that was directly connected to the internet without any authentication or other type of protection. The target was apparently a reclaimed water reservoir. “This gave the attackers easy access to the system and the ability to modify any value in the system, allowing them, for example, to tamper with the water pressure, change the temperature and more. All the adversaries needed was a connection to the world-wide-web, and a web browser,” OTORIO said in a blog post.

Incident Date

December 1, 2020

Location

Israel

Estimated Cost


No cost values disclosed.

Victims

Type of Malware

No Malware identified

Threat Source

No threat source identified

References

Industries

Water and Waste Water

Impacts

OT