One particular of Australia’s major regional drinking water suppliers was breached for numerous months prior to detecting the unauthorized accessibility, an additional stressing sign of weaknesses in critical infrastructure security.
A Queensland Audit Office annual report on the drinking water market did not mention the provider by identify but mentioned it proceeds to see “sizeable regulate weaknesses in the security of details methods” across the industry.
The breach in problem occurred amongst August 2020 and May well 2021, ensuing in unauthorized obtain to a web server.
“Threat actors qualified an older and extra susceptible edition of the technique. The web server that shops purchaser information and facts contained suspicious files that greater customer website traffic to an on the internet movie system,” the report defined.
“As entities use more cloud-based mostly products and services (which provide remote entry to techniques), cyber risk vulnerabilities and exposures have to be consistently assessed. Entities need to have to make confident their people are mindful of their duties in running cyber dangers.”
A local report identified the company as Sunwater, a person of the state’s premier regional vendors.
The auditor defined that it experienced taken corrective steps, which include patching, much more sturdy password techniques, and network checking.
Even though this breach seems to have been induced by economically motivated cyber-criminals, with no influence on prospects, utility suppliers are more and more becoming focused by much more about attacks intended to result in company disruption and even hurt citizens.
In 2019 a former worker at a Kansas plant accessed and shut down some of the crucial procedures used to disinfect water. Earlier this yr, in the Florida city of Oldsmar, an actor tried using to transform the water supply’s chemical balance by remotely logging into a SCADA technique.
Final month, the US authorities issued an alert warning of ongoing destructive cyber-exercise concentrating on the country’s h2o and wastewater programs (WWS) sector.
Spear-phishing, compromise of Distant Desktop Protocol (RDP) programs, and exploitation of unpatched or outdated program had been the critical threat vectors highlighted in the report.
Some components of this report are sourced from: