Critical.
Authoritative.
Strategic.
Subscribe to CIO Magazine »

FBI, DHS say no evidence of a hack in an Illinois water district pump failure

The FBI and Department of Homeland Security say they can't find evidence to confirm any of the story that an Illinois water authority's SCADA network was hacked and that it resulted in burning out a pump in the system.

"There is no evidence to support ... claims that any credentials were stolen, or that the vendor was involved in any malicious activity that led to a pump failure at the water plant," according to a story published by the BBC.

BACKGROUND: Apparent cyberattack destroys pump at Ill. water utility

"In addition, DHS and FBI have concluded that there was no malicious or unauthorized traffic from Russia or any foreign entities, as previously reported."

Word of a possible hack of the supervisory control and data acquisition (SCADA) system came out last week in a blog by Joseph Weiss, managing partner at Applied Control Systems LLC and author of the book Protecting Industrial Control Systems from Electronic Threat.

Weiss says he saw a document from the Illinois Statewide Terrorism and Intelligence Center (STIC) that that states user names and passwords were stolen from the SCADA consultant to the Curran-Gardner water district. The district noted what are referred to as glitches in its remote access system over the past few months.

Then earlier this month, someone accessing the network from a Russian IP address managed to turn the SCADA system on and off, which also turned the pump on and off, which resulted in its failure, he says.

The investigation by federal agencies found nothing to back up the story, but it didn't report any alternative reason for the pump problem.

The federal statement is at odds with a statement made by the chairman of the water authority Don Craver, to WLS-TV in Chicago.

"There's some indication there was a breach of some sort into a software program -- the SCADA system -- that allows remote access to the wells, and the pumps, and those sorts of things," Craver is quoted as saying.

Weiss says in a later blog that the notification he read from Illinois STIC should have been enough to trigger a cyber-attack response. "If DHS turns out to be correct in its assumptions, then anyone acting on the STIC warning would have been wasting precious resources addressing a problem that doesn't exist."

He says the system for issuing warnings needs to be scrutinized. If the STIC report is true, there was no response as there should have been. If the DHS is right, the STIC made an error that it hasn't acknowledged. The situation as it exists lacks both timely notification if there was an incident, and correct information if there wasn't.

Read more about wide area network in Network World's Wide Area Network section.

Join the CIO Australia group on LinkedIn. The group is open to CIOs, IT Directors, COOs, CTOs and senior IT managers.

More about: BBC, FBI, LAN, TIC
References show all

Comments

Post new comment

The content of this field is kept private and will not be shown publicly.
Users posting comments agree to the CIO comments policy.
Login or register to link comments to your user profile, or you may also post a comment without being logged in.
Related Coverage
Related Whitepapers
Latest Stories
Community Comments
Tags: BBC, Cyberattack, cybercrime, Intel, legal, security
Latest Blog Posts
Whitepapers
  • Synergy gains sustainable competitive edge with HP printers, services and solutions
    Western Australian electricity retailer Synergy signed a four-year HP Smart Print Services agreement to establish an efficient and sustainable imaging and printing network which reduces waste and the organisation’s environmental footprint, without compromising on quality, reliability or security. Read more.
    Learn more »
  • Six tips for choosing a unified threat management (UTM) solution
    As network security grows more complex, businesses are demanding the simplicity of unified threat management (UTM). Businesses like yours are replacing multiple, outdated and costly appliances from different vendors with a single, reliable UTM solution. The best solutions offer a more powerful way to manage network security today and in the future. UTM also promises to slash your network security management efforts and hardware costs. This whitepaper offers you detailed advice on how to choose the comprehensive unified threat management (UTM) that best suits your business.
    Learn more »
  • IDC MarketScape: Worldwide Business Process Platforms 2011 Vendor Analysis
    Enterprises adopting business process management (BPM) software have wide-ranging needs, from highly dynamic task management to complex, high-volume processing with a focus on straight-through automation and the ability to rapidly detect exceptions. This IDC MarketScape focuses on what we call business process (BP) platforms, which are optimized to support midrange to more complex use cases. Read on.
    Learn more »
All whitepapers
rhs_login_lockGet exclusive access to Invitation only events CIO, reports & analysis.