Home / News

Biden Administration Alerts Governors to Rising Cyber Threats on U.S. Water Systems

Lubos Chlubny / Adobe Stock

The Biden administration has issued a stark warning to the nation’s governors about the increasing threat of cyberattacks on the United States’ water and wastewater systems. National Security Affairs assistant Jake Sullivan and Environmental Protection Agency Administrator Michael S. Regan alerted in a joint letter that foreign nations are orchestrating disabling cyberattacks targeting the operations of these critical utilities. These attacks pose a significant threat to the provision of clean and safe drinking water, potentially leading to substantial impacts on communities.

Two notable incidents were highlighted to underscore the severity of the threat.

  • First, a facility, indirectly identified as the Municipal Water Authority of Aliquippa in Pennsylvania, was compromised by Iranian government-backed hackers using a default administrator password, leading to a temporary shutdown of a critical water pump.
  • The second incident involved the Chinese government-backed group, Volt Typhoon, which has infiltrated multiple critical infrastructure sectors, including water, preparing for potential disruption in the event of crises. This group has been lurking within some networks for up to five years.

In response to these threats, the letter urges water facilities to adopt basic cybersecurity measures like changing default passwords and updating software. It also references a collaborative effort between the Cybersecurity and Infrastructure Security Agency (CISA) and the EPA to provide resources, guidance, and a task force aimed at identifying vulnerabilities within water systems.

A meeting for state governors’ secretaries is scheduled to discuss strategies for enhancing the sector’s cybersecurity resilience, marking a serious commitment by federal agencies to combat these cyber threats.

By CircleID Reporter

CircleID’s internal staff reporting on news tips and developing stories. Do you have information the professional Internet community should be aware of? Contact us.

Visit Page

Filed Under

Comments

Comment Title:

  Notify me of follow-up comments

We encourage you to post comments and engage in discussions that advance this post through relevant opinion, anecdotes, links and data. If you see a comment that you believe is irrelevant or inappropriate, you can report it using the link at the end of each comment. Views expressed in the comments do not represent those of CircleID. For more information on our comment policy, see Codes of Conduct.

CircleID Newsletter The Weekly Wrap

More and more professionals are choosing to publish critical posts on CircleID from all corners of the Internet industry. If you find it hard to keep up daily, consider subscribing to our weekly digest. We will provide you a convenient summary report once a week sent directly to your inbox. It's a quick and easy read.

I make a point of reading CircleID. There is no getting around the utility of knowing what thoughtful people are thinking and saying about our industry.

VINTON CERF
Co-designer of the TCP/IP Protocols & the Architecture of the Internet

Related

Topics

IPv4 Markets

Sponsored byIPv4.Global

Threat Intelligence

Sponsored byWhoisXML API

Cybersecurity

Sponsored byVerisign

DNS

Sponsored byDNIB.com

Brand Protection

Sponsored byCSC

Domain Names

Sponsored byVerisign

New TLDs

Sponsored byRadix