America's Electric Grid Has a Vulnerable Back Door--and Russia Walked Through It
Source: Wall Street Journal
The cyberattack on the 15-person company near Salem, Ore., which works with utilities and government agencies, was an early thrust in the worst known hack by a foreign government into the nation’s electric grid. It set off so many alarms that U.S. officials took the unusual step in early 2018 of publicly blaming the Russian government.
A reconstruction of the hack reveals a glaring vulnerability at the heart of the country’s electric system. Rather than strike the utilities head on, the hackers went after the system’s unprotected underbelly—hundreds of contractors and subcontractors like All-Ways who had no reason to be on high alert against foreign agents. From these tiny footholds, the hackers worked their way up the supply chain. Some experts believe two dozen or more utilities ultimately were breached.
The scheme’s success came less from its technical prowess—though the attackers did use some clever tactics—than in how it exploited trusted business relationships using impersonation and trickery.
The hackers planted malware on sites of online publications frequently read by utility engineers. They sent out fake résumés with tainted attachments, pretending to be job seekers. Once they had computer-network credentials, they slipped through hidden portals used by utility technicians, in some cases getting into computer systems that monitor and control electricity flows.
Read more: https://www.wsj.com/articles/americas-electric-grid-has-a-vulnerable-back-doorand-russia-walked-through-it-11547137112?mod=searchresults&page=1&pos=1
A new and sobering story about things being learned in a major ongoing story.
Our seemingly-endless hunger for fast and easy internet-based communications, information exchange, entertainment, software-as-a-service, data storage, etc., is leaving us vulnerable to some pretty worrisome stuff.
attentively,
Bright
= new reply since forum marked as read
Anyone with half a brain who thought about where our vulnerabilities are, got it.
But nooooo, the greatest country on Earth 
allowed a bunch of yahoos to elect a yahoo president enabled by a yahoo political party in power. Our greatness may have hit the proverbial brick wall, never mind the concrete-steel slat-shower curtain wall.
They need to hire good programmers who can setup secure networks in their businesses - especially in the essential services like power utilities. Yep, that costs money but even more than that it, takes top managers with the intelligence and leadership to understand how important our security is.
