Click to Skip Ad
Closing in...
  1. 4K Camera Drone Amazon
    13:37 Deals

    This pro-grade 4K camera drone is $430 at Amazon, and it beats $800+ rivals

  2. Smart Lock Amazon
    10:32 Deals

    eufy’s Smart Lock Touch is stunning, and it has one feature you can’t get with…

  3. Disney Plus Free
    14:51 Deals

    Hidden Amazon deal gets you 6 months of Disney+ for free

  4. Amazon Deals
    09:51 Deals

    Today’s best deals: Alexa in your car for $19.99, surprise Fire TV Stick 4K sale, $6…

  5. Best Deals on Amazon
    07:02 Deals

    Best Deals on Amazon (July 2021)




A hacker tried to poison the water supply in another major US city

June 22nd, 2021 at 10:26 AM
Cybersecurity news

To the average person, most cybersecurity news might only sound relevant in the abstract. Network penetrations, stolen passwords, leaked files, and the like aren’t exactly the kind of things that create a headache for most of us. But like the nasty, sharp-edged expansiveness of the iceberg below the surface that you don’t see, so too are the frightening implications of so many of the security and hack-related news items that you’re not aware of — or that you don’t hear about until much later. Like, for example, the way a hacker nearly poisoned the water supply of another major US city, this time San Francisco, earlier this year.

NBC News revealed details of the heretofore unreported incident a few days ago, as part of a larger deep-dive into the disastrously porous state of the security associated with water supply systems around the US. In brief: On January 15, the week after the insurrection at the US Capitol that was still dominating national news headlines, a hacker embarked on this mission. Armed with a password and username for an employee’s TeamViewer account, this hacker logged into the San Francisco water system’s computer network remotely and started deleting programs associated with the treatment of drinking water.

Today's Top Deal Super-popular TP-Link Kasa mini Alexa smart plugs just hit a new all-time low price of $6 each! List Price:$26.99 Price:$23.99 You Save:$3.00 (11%) Buy Now Available from Amazon, BGR may receive a commission Available from Amazon BGR may receive a commission

NBC News credits these details to a private report prepared by the Northern California Regional Intelligence Center. The scary part was that the coast seemed to be pretty clear, with few if any impediments stopping the hacker from bringing the worst to fruition. However, the report only offers this vague denouement to the whole affair, noting that the hack was discovered the following day, the facility changed the login credentials, and that was that.

Based on the few details provided, in other words, it sounds like San Francisco got super lucky. “No failures were reported as a result of this incident, and no individuals in the city reported illness from water-related failures,” the report reads.

If this all sounds a little familiar, it should. That San Francisco Bay-area attack that no one heard about until now was followed by one that actually did end up making headlines around the US — and it, too, involved a hacker using TeamViewer credentials to try and poison the water supply of Oldsmar, Florida, by raising the levels of lye in the drinking water there. Luck played a part once again in stopping this, because an employee watched the hacker’s remote actions in real-time — watched, literally, as the hacker remotely moved the computer mouse around the employee’s computer screen, and was able to shut down the hacker’s attempted changes.

“If you could imagine a community center run by two old guys who are plumbers, that’s your average water plant,” industrial cybersecurity consultant Bryson Bort told NBC News, regarding the nature of security connected to these types of systems.

Along these same lines, cybersecurity journalist Brian Krebs reported a related and very sobering finding this week: That most of the 52,000 individual drinking water systems in the US “still haven’t inventoried some or any of their information technology systems — a basic first step in protecting networks from cyberattacks.” Per the Water Sector Coordinating Council, a survey of around 600 employees of water and wastewater treatment facilities around the country revealed that only 37.9% of utilities “have identified all IT-networked assets.”

Today's Top Deal Super-popular TP-Link Kasa mini Alexa smart plugs just hit a new all-time low price of $6 each! List Price:$26.99 Price:$23.99 You Save:$3.00 (11%) Buy Now Available from Amazon, BGR may receive a commission Available from Amazon BGR may receive a commission

Andy is a reporter in Memphis who also contributes to outlets like Fast Company and The Guardian. When he’s not writing about technology, he can be found hunched protectively over his burgeoning collection of vinyl, as well as nursing his Whovianism and bingeing on a variety of TV shows you probably don’t like.




Popular News