ES / EN
ARTICLES &
EVENTS
cyberattack in US gas facility
highlights need for cybersecurity

A natural gas compression facility in the United States has become the latest victim of a critical infrastructure cyberattack. An advisory published by the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (DHS CISA) on February 18 2020 stated that the attacker gained access to the organization’s IT and operational (OT) networks and successfully encrypted company data. The pipeline operator was forced to shut down operations for two days, compelling other facilities with pipeline transmission dependencies to also temporarily suspend their services.

Attackers initially managed to infiltrate the facility’s IT network via a spear phishing link. Once inside, the organization’s lack of air gapping allowed them to pivot to the OT network and encrypt data from both networks. They then demanded a ransom in exchange for the decryption key.

The CISA was keen to stress that the attackers did not gain access to the programmer logic controllers and thus could not manipulate factory equipment. However, staff lost data related to other industrial processes and decided to implement an emergency shutdown of the facility as a precautionary measure.

The CISA advisory judged that the pipeline operator’s emergency response plan did not explicitly consider the risks posed by cyberattacks, nor did it empower employees to make critical decisions in the event of said attacks. Though the hackers were unable to control facility operations at any point, its personnel’s lack of cybersecurity knowledge left it wide open to more damaging attacks in the future.

At Soteria, we offer a comprehensive range of multi-layer security solutions to help organizations mitigate the risks of cyberattacks. Our ICS/SCADA monitoring and detection technology platforms help protect critical infrastructure, while our Cywareness program teaches facility personnel how to identify and neutralize potential threats. We keep pace with new innovations and evolutions in the cyberarena, adapting our strategies and products to ensure our clients are best equipped to deal with any cyber threat on the horizon.

 

Source: https://www.zdnet.com/article/dhs-says-ransomware-hit-us-gas-pipeline-operator/

Cyberattack in US gas facility highlights need for enhanced cybersecurity.
MIT researchers question the security of mobile voting applications
Voatz, a mobile voting platform launched in 2016, was the subject of a reverse engineering project carried out with the aim of pinpointing security weaknesses. The researchers found that attackers could theoretically access information about users’ voting preferences and even modify or suppress their votes. Read more
COVID-19 contact tracing apps: A data breach waiting to happen?
Since the beginning of the current coronavirus pandemic, many countries have sought to accelerate and streamline contact tracing via mobile applications. So just how great is the security threat posed by contact tracing applications? Read more
Soteria in Cyber Security in the Age of Industry 4.0 Conference
Soteria was proud to hold a conference on Cybersecurity in the Age of Industry 4.0 in Torino, Italy. We presented CYWARIA, Soteria’s Next Generation Cyber Range, as a means to empower large companies in the face of cybersecurity threats. Read more
New study reveals the passwords hackers can easily guess
The coronavirus pandemic has exacerbated the risk of cyberattacks due to the huge number of people working from home on unsecured endpoint devices. If you’re concerned about data breaches, Soteria can help. Get in touch with us today for further information. Read more
CORONAVIRUS: CYBERSECURITY BEST PRACTICES
The number of workers doing home office has increased dramatically over the past month and is expected to continue rising. With remote working comes new challenges; not only in terms of logistics and communication, but also in relation to information and cybersecurity. Read more
Soteria on White-Hat Conference Colombia 13-14 of March
We were very proud to have participated in the cybersecurity conference in Bogota organized by the National Police of Colombia and the ESTIC (Escuela de Tecnologías de la Información y las Comunicaciones) and were delighted by the enthusiasm with which we were received. Read more
Cyber Arena - the Modern Battlefield
A new World War has been raging on an unseen battlefield, claiming casualties with greater ease than ever before.   This war has no clear battle lines and few rules of engagement. The enemy is invisible and there is no end in sight. At Soteria, we believe that education is the antidote to this insidious cyber war we have been fighting. Read more
Hack of the Month: Using Wifi to "See"
At Soteria, we take cyber security seriously. We combat even the most cutting-edge privacy breaches to keep your personal information safe. New evidence proves that WiFi signals can show what’s going on behind closed doors Read more
CONTACT US