Energy


  • FBI: Renewable energy systems vulnerable to cyber attacks

    July 2, 2024

    The FBI has issued an official alert to the public about the potential for malicious cyber actors to disrupt power generation, steal intellectual property, or hold critical information for ransom within the U.S. renewable energy sector. The warning comes as federal and local governments increasingly advocate for renewable energies, expanding the industry and creating more opportunities ...

  • More ways Israel could strike Iran, from cyber attacks to assassinations

    April 20, 2024

    For years, the two countries in the Middle East targeted each other’s military and intelligence sites in cyber attacks. The best known, from Israel’s side, was Stuxnet – reportedly developed jointly by the U.S. and Israel — that struck the computer system of the Natanz nuclear site, an underground facility in central Iran. The New York ...

  • Threat landscape for industrial automation systems. H2 2023

    March 19, 2024

    In the second half of 2023, the percentage of ICS computers on which malicious objects were blocked decreased by 2.1 pp to 31.9%. In H2 2023, building automation once again had the highest percentage of ICS computers on which malicious objects were blocked of all industries that we looked at. Oil and Gas was the only ...

  • Is Cybersecurity The Achilles’ Heel Of The Electric Vehicle Revolution?

    March 12, 2024

    The electric vehicle (EV) sector, though nascent and in its formative years, faces numerous challenges. Recent concerns, such as “range anxiety” (a vehicle battery’s charge and ability to complete a planned journey) among consumers and incidents of vehicles losing power in cold temperatures, have contributed to a slowdown in adoption. While the trajectory of electric vehicle ...

  • Large-Scale Crypto Mining Consumes 2% of US Electricity

    February 4, 2024

    A recent analysis by the Energy Information Agency (EIA) estimates that large-scale cryptocurrency operations consume more than 2% of the country’s electricity. And as Ars Technica noted in a report on Friday (Feb. 2), that’s around the equivalent of adding another state to the country’s power grid. While there is some smaller-scale mining happening on home ...

  • Veolia North America hit by ransomware attack

    January 24, 2024

    A department in Veolia North America, a transnational company offering water, energy and waste recycling management services, suffered a ransomware attack which resulted in the theft of some personal data, and forced the company to take parts of its infrastructure offline. In a press release published on the Veolia website, the company confirmed its Municipal Water ...

  • Latest Cyber-Attacks in Serbia Raise Fresh Questions about Defence

    January 16, 2024

    Serbia’s inaction in the face of frequent cyber-attacks on public institutions and private companies is a growing concern, cyber security expert Ivan Markovic has told BIRN, after the online forum he co-founded reported that a server used by the Serbian army had been breached and state energy company Elektroprivreda Srbije, EPS, had been hit with ...

  • Distributed Energy Generation Gateway (In)Security

    January 11, 2024

    Distributed energy generation (DEG) is a term used to describe the shift from centralized energy generation, such as power companies, to a source — typically a renewable energy source — closer to the user. It is most often seen in the form of solar panels on the rooftops of houses or office buildings, but DEG also ...

  • Dutch national sabotaged nuclear facility in Iran: Report

    January 9, 2024

    A man who worked for Dutch intelligence in 2005 sabotaged an Iranian nuclear facility without the knowledge of the Dutch government, a media report said Monday. Dutch national Erik van Sabben was recruited in 2005 by the General Intelligence and Security Service (AIVD), the daily Volkskrant revealed. Van Sabben, whose spouse is Iranian, infiltrated a nuclear ...

  • Cyber-hackers target UK nuclear waste company RWM

    December 31, 2023

    Hackers have targeted the company behind a £50bn project to build a vast underground nuclear waste store in Britain, its developer has said. Radioactive Waste Management, the company behind the Geological Disposal Facility (GDF) project, has said that hackers unsuccessfully attempted to breach the business using LinkedIn. RWM is the government-owned entity behind a trio of ...

  • Israeli-linked hacker group behind major cyber-attack on Iran’s petrol stations

    December 18, 2023

    An Israeli-linked hacker group claims to have carried out a major cyber-attack on Iranian petrol stations, knocking 70 per cent of them offline on Monday. Predatory Sparrow, or “Gonjeshke Darande” in Persian, said it launched the “controlled” attack in response to “aggression” by the Islamic Republic and its proxies in the region. “This cyber attack was ...

  • Attack Surface Of The Ubiquiti Connect EV Station

    December 5, 2023

    The Ubiquiti Connect EV Station is a Level 2 charging station for electric vehicles. The EV Station is meant to be managed by a Ubiquiti management platform running the UniFi OS Console, such as the Ubiquiti Dream Machine or Cloud Gateway. Users can also use the iOS or Android UniFi Connect mobile apps to configure the EV ...

  • UK: Sellafield nuclear site hacked by groups linked to Russia and China

    December 4, 2023

    The UK’s most hazardous nuclear site, Sellafield, has been hacked into by cyber groups closely linked to Russia and China, the Guardian can reveal. The astonishing disclosure and its potential effects have been consistently covered up by senior staff at the vast nuclear waste and decommissioning site, the investigation has found. The Guardian has discovered that ...

  • Hellhounds: Operation Lahat

    November 30, 2023

    In 2023, Positive Technologies Computer Security Incident Response Team (PT CSIRT) discovered that a certain power company was compromised by the Decoy Dog trojan. According to the PT CSIRT investigation, Decoy Dog has been actively used in cyberattacks on Russian companies and government organizations since at least September 2022. This trojan was previously discussed by NCIRCC, Infoblox, ...

  • Hacker claims to have hit General Electric and stolen company data

    November 27, 2023

    A hacker with the alias IntelBroker claims to have breached General Electric and stolen plenty of sensitive data from the company’s systems. The company operates in different fields, including aerospace, renewable energy, power, venture capital, and more. The hacker posted a new thread on an underground forum, selling access to the company’s “development and software pipelines” ...

  • Singapore cyber defenders fend off simulated attacks against cellular, gas and airport systems

    November 24, 2023

    As simulated attackers tried to overload an electrical system, cripple a water distribution network and shut down a gas plant, cyber defence operators across 26 national agencies sprung into action to neutralise the assaults on a fictional state’s critical infrastructure. These were among the scenarios that more than 200 participants went through from Nov 22 to ...

  • Cisco aids Ukraine in cyber defense with modified switches to counter Russian attacks

    November 23, 2023

    Cisco has proactively shipped modified switches to Ukrenergo, the state-owned electricity grid operator in Ukraine, to bolster its defenses against Russian cyberattacks targeting energy infrastructure. These attacks have included the use of GPS-jamming tactics, which disrupt the high-voltage energy subsystems crucial for power distribution and damage assessment. The reliance of Ukraine’s substations on GPS for time ...

  • Data stolen in hack of nuclear energy testing facility Idaho National Lab

    November 20, 2023

    The Idaho National Laboratory, part of the U.S. Department of Energy and one of the country’s foremost advanced nuclear energy testing labs, has suffered a breach that released the details of employees online. A hacking group called SiegeSec took responsibility for the breach, which occurred Sunday night. In a statement to local media, INL media spokesperson ...

  • Enhancing Computer Security for Nuclear Safety and Security

    November 16, 2023

    Nuclear safety and nuclear security share the same objective and vision: to protect individuals, societies and the environment from the potential harmful effects of ionizing radiation. Though the activities that address nuclear safety and nuclear security are different, it is essential to establish a well-coordinated approach to managing their interface. It is important to ensure that ...

  • Sandworm Disrupts Power in Ukraine Using a Novel Attack Against Operational Technology

    November 9, 2023

    In late 2022, Mandiant responded to a disruptive cyber physical incident in which the Russia-linked threat actor Sandworm targeted a Ukrainian critical infrastructure organization. This incident was a multi-event cyber attack that leveraged a novel technique for impacting industrial control systems (ICS) / operational technology (OT). The actor first used OT-level living off the land (LotL) ...