Water and Waste Water


Black Basta Group Claims Ransomware Attack at UK Water Treatment Company

January 23, 2024

Southern Water, a water treatment company serving millions across the United Kingdom, was the victim of a ransomware attack claimed by the Black Basta ransomware gang.

“At this point there is no evidence that our customer relationships or financial systems have been affected. Our services are not impacted and are operating normally,” Southern Water said today. It’s unclear where the root cause of the breach lies. Some documents leaked online are branded with Greensands logos – the parent company of Southern Water.

Black Basta said it stole 750 GB worth of data in total, comprised of personal data and corporate documents, which is consistent with the small sample leaked online.

read more

Veolia Municipal Water Division Systems Impacted by Ransomware Attack

January 12, 2024

Veolia North America’s Municipal Water division reported a ransomware attack. After detecting the attack, Veolia has implemented defensive measures, temporarily taking some systems offline to contain the breach. Veolia is now working with law enforcement and third-party forensics experts to assess the extent of the attack’s impact on its operations and systems.

read more

Ransomware Attack at Iowa Water & Electric Utility Company

January 26, 2024

Iowa Electric, Water Utility confirmed that a January ransomware attack at Muscatine Power and Water — providing the Muscatine and Fruitland area with internet, TV, phone, water, and electric services for more than 50,000 people —led to the exposure of sensitive information from nearly all local residents.

The company said internet services on the night of the attack were down for eight hours and business systems were restored over several days. “Additionally, at no time were critical controls systems at the power plant or in the field at risk,” the company explained.

read more

Russian Cyberattack Targets Water and Gas Utility Meter Manufacturer in Ukraine

August 1, 2023

Illia Vitiuk, head of the cyber department at the Security Service of Ukraine (SBU), when asked in an interview for a recent example of attacks Russia has carried out during the war, gave a previously undisclosed real-world example. He said Russia targeted a water and gas utility meter manufacturer in a supply chain attack. The Security Service of Ukraine (SBU) was able to stop the supply chain attack from real-world consequences.

SBU went on to explain this was targeted at telemetry equipment that could see and measure the consumption of water or gas. They penetrated the company as a new update was about to come out. With this update, they wanted to penetrate these systems [a kind of supply chain hack similar to the SolarWinds hack in 2019].

read more

Pro-Iran Hackers Cut Water Supply for 2 Days in Remote Irish Town

November 30, 2023

Cyberattack on Irish water utility, Erris, leaves 180 homeowners without water for 2 days after the extraordinary incident impacted the Eurotronics Israeli-made water pumping system. The hackers stated the equipment was targeted due to the fact it originated in Israel.

Erris Water stated they did not have the budget for firewalls and were unable to recover operations, struggling to bypass the pump to run manually, leading to the two day outage.

read more

Cyberattack at Puerto Rico’s Water Supply Agency did not Affect Critical Infrastructure

March 19, 2023

The agency that manages Puerto Rico’s water supply has called in the FBI to investigate a cyberattack that occurred last week. The investigation into the attack on the Puerto Rico Aqueduct and Sewer Authority (PRASA), which was announced on March 19, found that customer and employee information was compromised in the incident. But officials noted that the authority’s critical infrastructure was not affected by the incident due to network segmentation.

The Vice ransomware gang leaked the passports, driver’s licenses and other documents of the impacted individuals.

read more

Florida Water Agency Confirms it Responded to Cyberattack

December 6, 2023

A regulatory agency in Florida that oversees the long-term supply of drinking water confirmed that it responded to a cyberattack over the last week as the top cybersecurity agencies in the U.S. warned of foreign attacks on water utilities.

A spokesperson for the St. Johns River Water Management District, which works closely with utilities on water supply issues, confirmed that it “identified suspicious activity in its information technology environment” and that “containment measures have been successfully implemented.”

read more

Chinese Identified Hackers Targeting Hawaii Water Utilities and unidentified Oil & Gas Pipeline in US

December 11, 2023

Chinese hackers are positioning themselves inside critical US infrastructure by targeting careless office workers in a bid to cause ‘societal chaos’ from within should war break out.
Beijing’s military have burrowed into more than 20 major suppliers in the last year alone including a water utility in Hawaii, a major West Coast port and at least one oil and gas pipeline, analysts have revealed. They have bypassed elaborate cyber security systems by intercepting passwords and log-ins unguarded by junior employees, leaving China ‘sitting on a stockpile of strategic’ vulnerabilities.

“It is very clear that Chinese attempts to compromise critical infrastructure are in part to pre-position themselves to be able to disrupt or destroy that critical infrastructure in the event of a conflict” stated Brandon Wales, executive director of the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA).

As a result of these cyber concerns, the Biden administration introduced mandatory regulations for industries in the oil and gas pipeline sector in summer 2021. Additionally, the Environmental Protection Agency introduced a directive for states to disclose cyber threats within their public water system evaluations in March. After that, three states filed lawsuits against the administration, alleging excessive regulatory control.

read more

Data Breach at Aqualectric Utilities in Curaçao

December 6, 2023

Aqualectra Utilities witnessed a breach of its digital infrastructure. With data soon to be available for download, the Akira ransomware attack on Aqualectra Utility compromised operational files, business documents, and a plethora of payment records. The breach threatens the security and privacy of over 80,000 households and companies relying on Aqualectra’s water and electricity services.

read more

Blue Waters Bottling Company Operations Affected by Ransomware Attack

December 9, 2023

Blue Waters Products Limited is the latest local company to fall victim to a cyberattack. Officials of the company, located at Orange Grove Estate, Trincity, confirmed that their operations had been affected by a ransomware attack. They have not yet determined whether the hacker gained access to data and other sensitive company information.

A screenshot of one of the company’s computers shows a ransom notice warning that Blue Waters’ data will be released on the dark web. Blue Waters CEO Dominic Hadeed said company officials are still assessing the cyberattack and have taken the necessary actions. Lockbit3 claimed responsibility for the attack
“Our automated ordering and delivery capabilities are now back to normal,” he said. “Once we know more about how it happened, we will be communicating internally and with our business partners accordingly.”

read more