Category: CyberSecurity

MCGA & NRWA Joint Position Statement on Cybersecurity Readiness

On Monday, February 8, 2021, Sheriff Bob Gualtieri held a press conference surrounding the unlawful intrusion to the City of Oldsmar’s water treatment system. During the press conference, Sherriff Gualtieri laid out the sequence of events: On Friday 5th February at approximately 8am an operator at a water treatment plant noticed someone accessing the control system Human Machine Interface (HMI) […]

Microsoft Exchange Vulnerability

INTENDED FOR WIDEST DISTRIBUTION Critical Infrastructure Colleagues and Partners, The Cybersecurity and Infrastructure Security Agency (CISA) strongly urges its partners to follow guidance provided to Federal Civilian Executive Branch Departments and Agencies at cisa.gov/ed2102. This CISA Emergency Directive outlines key steps federal officials must take to immediately address this vulnerability. We cannot stress enough the seriousness of this vulnerability; it is widespread and is indiscriminate.   As a […]

Compromise of U.S. Water Treatment Facility

On February 5, 2021, unidentified cyber actors obtained unauthorized access to the supervisory control and data acquisition (SCADA) system at a U.S. drinking water treatment plant. The unidentified actors used the SCADA system’s software to increase the amount of sodium hydroxide, also known as lye, a caustic chemical, as part of the water treatment process. […]