CISA – Ransomware targeted SCADA systems of 3 US water facilities

United States has warned of more ransomware attacks on information technology (IT) and operational technology (OT) networks of country’s Water and Wastewater Systems (WWS) Sector facilities.

On Thursday, multiple US government agencies, including the Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Agency (CISA), the Environmental Protection Agency (EPA), and the National Security Agency (NSA), issued a joint alert, warning organizations in the Water and Wastewater Systems (WWS) Sector regarding an upsurge in cyberattacks against these facilities.

SEE: Employee PC hacked via TeamViewer in attempted water supply poisoning

The alert revealed that three industrial control systems (ICS) at water facilities in the US had been impacted by ransomware attacks in the past two years.

“The ransomware variant had been in the system for about a month and was discovered when three supervisory control and data acquisition (SCADA) servers displayed a ransomware message,” the agencies noted in the alert.

WWS Facilities Under Threat

As per the alert from the FBI, CISA, EPA, and NSA, the WWS sector is currently under the radar of cybercriminals. Threat actors can launch phishing campaigns and target outdated software to exploit control systems.

The agencies claim that they are aware of the emerging threat

Read More: