Homepage / Technology / Hackers are targeting nuclear facilities, Homeland Security and FBI say
Menyelami Dunia Slot Thailand: Keseruan dan Peluang Kemenangan Besar Menyelami Dunia Slot Thailand: Pengalaman Bermain yang Tak Terlupakan অনলাইনে স্লট মেশিন 2025 চালানোর সম্পূর্ণ নির্দেশিকা অনলাইনে স্লট 2025 চালানোর মোট ওভারভিউ Как активировать известные игровые слоты online на игровом портале комета казино Как загружать популярные виртуальные симуляторы в режиме онлайн в виртуальном клубе комета казино Призовые коды и поощрения для посетителей на платформе online 7k казино Подарочные коды и вознаграждения для пользователей в азартном заведении онлайн 7k казино Новые игровые слоты и режимы их загрузки на азартной площадке азино 777 официальный сайт Как в casino азино777 официальный сайт запускать видеослоты на реальные средства Zamanla test edilmişcasino büyük ikramiye ile: yüksek bir zarda nerede bahis oynayabilirsiniz Modernize edilmişcazino rekor nakit ödül ile: Max Bet’te nasıl oynanır En iyisi karlı makineler ödül seçenekleri web-kumarhanesinde AbeBet Tepe kumar slot makineleri Kazanan turlar bir kumar kaynağında Abe Bet casino Yatırım Şartsız Deneme Bonusları ile Hızlı Başlangıç Yapın Onwin Güncel Giriş Online Spor Bahis Siteleri 8359 onwin giriş Güncel Bonusları 1518 grandpashabet giriş Limelight ahead 5 The Majority Of Sought-After Classifications at JeetBuzz 1Win Sports Betting and Casino Official Site Login 1WIN casino official website of the bookmaker, slots, gaming machines 1win: Sitio web oficial del Casino y Casa de Apuestas 2024, Apuestas Deportivas en Línea, Inicio de sesión de 1win 1Win Apuestas Deportivas y Casino Online Bono 500% 1Win Apuestas Deportivas y Casino Online Bono 500% 1win: Sitio web oficial del Casino y Casa de Apuestas 2024, Apuestas Deportivas en Línea, Inicio de sesión de 1win Casino 1Win Argentina Reseña: Todo lo que necesitas saber sobre usabilidad y registro 1win: Sitio web oficial del Casino y Casa de Apuestas 2024, Apuestas Deportivas en Línea, Inicio de sesión de 1win Mines evaluation 1WIN casino official website of the bookmaker, slots, gaming machines 1win App Download 2025 1win apk & iOS download info! The Rise of TrumpCoin: A 2025 Digital Gold Rush 1WIN Sitio web oficial de Apuestas y Casino en línea Bonificación por inscripción $5000 1WIN bet cassino site oficial, slots, jogos de azar, apostas 1WIN bet cassino site oficial, slots, jogos de azar, apostas test-g Ghostwriting: Was ist erlaubt? 1WIN bet cassino site oficial, slots, jogos de azar, apostas Espejos acceso alternativo a los sitio Muchas personas se hacen ahora esta pregunta 10 Mejores Casinos Online en España Guía Actualizada 2025 Start meeting horny girls now – sign up today Find local adult chat sites and relate solely to fun singles generative ai course 1WIN Sitio web oficial de Apuestas y Casino en línea Bonificación por inscripción $5000 1Win Uruguay: Apuestas Deportivas y Casino Oficial The simplest way to meet up sexy women Bahis Sitelerinde Üyelik Bonusu Nasıl Alınır? Find an ideal match with lonely housewife hookup website Master the art of online dirty talk Yeni Başlayanlar İçin En İyi Bahis Siteleri ve Promosyonlar Casino Sitelerinde Hangi Bonuslar Daha Avantajlı? Deneme Bonusları ile Slot Oyunları: Oynamak İçin En İyi Siteler Experience a fantastic and unique option to satisfy brand new people Adjustment in Marriage: 10 Techniques For Newly Married Couples Güncel Bahis Siteleri: Bonus Fırsatları ve Yenilikler 2025’ün En İyi Bahis Stratejileri: Yüksek Oranlarla Kazanma Deneme Bonuslarıyla Oyunları Keşfet: En İyi Siteler Güncel Deneme Bonusları: Hangi Sitelerde Mevcut? Enjoy the greatest adult fuckbook experience now Mature bbw lesbians – find love utilizing the right partner เว็บพนัน ออนไลน์ จับกลางกรุง! บุกทลายฐานเว็บพนันชาวไต้หวันรายใหญ่ เงินหมุนเวียน 500 ล้าน ปี Panduan Lengkap Bermain Slot Online: Strategi & Tips Terbaik Deneme Bonusu ile Ücretsiz Oyun Oynayın Boy Names: Top 1,000 Baby Boy Names in the U S. for 2024 List of most popular given names Wikipedia Mobile Gaming in the UK: Trends, Regulations, and Future Leads Start dating hot moms today – it’s easier than you think Define generative ai 14 Define generative ai 14 How to find the right online gay dating website for you Home Superclones watches Exploring Super Clone Watches: Quality, Accuracy, and Affordability Join the most effective bbw milf dating site today En İyi Bahis Siteleri İçin Seçim Yaparken Nelere Dikkat Edilmeli? At this point, and yet very near | Life and magnificence | Trusted Casino Hellspin Review Leading Online Casino Hellspin Evaluation Mostbet App: Download Mostbet apk for Android & iOS 2024 Ігрові Автомати з Виводом Грошей на Карту ️ Онлайн Ігри на Гривні в Українікращі азартні ігри на гроші з виводом на карту2024-01-08 Taya365 online casino login Tips for conference and dating other bisexual men How to get the right bi partner Exploring the Prospering World of Online Casinos in the UK Meet hot singles and luxuriate in flirty chatting Bahis Siteleri: En İyi Bonuslar ve Promosyonlar Situs Slot Hari Ini Terbaik dan Terpercaya Tahun Ini, Gampang Menang Güvenilir Bonus Veren Siteler ve Detaylı İncelemeler Güncel Giriş, Güvenilir Adres VOX Casino: VOXCasino Promo Code 2025 Get to learn other old gay men inside area Slot Min Depo 10K Terbaik dan Paling Direkomendasi Tahun Ini: Gampang Menang! Scatter Hitam Terbaik dan Paling Direkomendasi Tahun Ini: Gampang Menang! Top 10 Online Casinos in Deutschland Januar 2025 Get ready to unleash your wildest fantasies Ücretsiz Oyun Deneyimi: Deneme Bonuslarıyla Risk Almadan Kazan Bonuslarla Bahis Keyfini Katlamanın Yöntemleri 2025’te Bahis Oynayarak Kazanç Sağlamanın Yolları Freespin Veren Casino Siteleri ile Daha Fazla Eğlenin Casino Sitelerinde En İyi Bonuslar Nerede? The Ultimate Guide to Free Spins BC.Game Mirror – Discover All Current Mirrors Find regional women seeking intimate encounters Elitecasino’a Katýlým saðlayarak, Hýzla 800 TL Bonus Ýmkaný Kazanýn!

Technology

Hackers are targeting nuclear facilities, Homeland Security and FBI say

Since May, hackers have been penetrating the computer networks of companies that operate nuclear power stations and other energy facilities, as well as manufacturing plants in the United States and other countries.

Among the companies targeted was the Wolf Creek Nuclear Operating Corporation, which runs a nuclear power plant near Burlington, Kan., according to security consultants and an urgent joint report issued by the Department of Homeland Security and the Federal Bureau of Investigation last week.

The joint report was obtained by The New York Times and confirmed by security specialists who have been responding to the attacks. It carried an urgent amber warning, the second-highest rating for the sensitivity of the threat.

The report did not indicate whether the cyberattacks were an attempt at espionage — such as stealing industrial secrets — or part of a plan to cause destruction. There is no indication that hackers were able to jump from their victims’ computers into the control systems of the facilities, nor is it clear how many facilities were breached.

Wolf Creek officials said that while they could not comment on cyberattacks or security issues, no “operations systems” had been affected and that their corporate network and the internet were separate from the network that runs the plant.

In a joint statement with the F.B.I., a spokesman for the Department of Homeland Security said, “There is no indication of a threat to public safety, as any potential impact appears to be limited to administrative and business networks.”

The hackers appeared determined to map out computer networks for future attacks, the report concluded. But investigators have not been able to analyze the malicious “payload” of the hackers’ code, which would offer more detail into what they were after.

John Keeley, a spokesman for the Nuclear Energy Institute, which works with all 99 electric utilities that operate nuclear plants in the United States, said nuclear facilities are required to report cyberattacks that relate to their “safety, security and operations.” None have reported that the security of their operations was affected by the latest attacks, Mr. Keeley said.

More from the New York Times:
Hacker who aided Russian intelligence is sentenced to 2 years
Private not state hackers likely to have targeted UK parliament: Sources
Hacks raise fear over NSA’s hold on cyberweapons

In most cases, the attacks targeted people — industrial control engineers who have direct access to systems that, if damaged, could lead to an explosion, fire or a spill of dangerous material, according to two people familiar with the attacks who could not be named because of confidentiality agreements.

The origins of the hackers are not known. But the report indicated that an “advanced persistent threat” actor was responsible, which is the language security specialists often use to describe hackers backed by governments.

The two people familiar with the investigation say that, while it is still in its early stages, the hackers’ techniques mimicked those of the organization known to cybersecurity specialists as “Energetic Bear,” the Russian hacking group that researchers have tied to attacks on the energy sector since at least 2012.

Hackers wrote highly targeted email messages containing fake résumés for control engineering jobs and sent them to the senior industrial control engineers who maintain broad access to critical industrial control systems, the government report said.

The fake résumés were Microsoft Word documents that were laced with malicious code. Once the recipients clicked on those documents, attackers could steal their credentials and proceed to other machines on a network.

In some cases, the hackers also compromised legitimate websites that they knew their victims frequented — something security specialists call a watering hole attack. And in others, they deployed what are known as man-in-the-middle attacks in which they redirected their victims’ internet traffic through their own machines.

Energy, nuclear and critical manufacturing organizations have frequently been targets for sophisticated cyberattacks. The Department of Homeland Security has called cyberattacks on critical infrastructure “one of the most serious national security challenges we must confront.”

On May 11, during the attacks, President Trump signed an executive order to strengthen the cybersecurity defenses of federal networks and critical infrastructure. The order required government agencies to work with public companies to mitigate risks and help defend critical infrastructure organizations “at greatest risk of attacks that could reasonably result in catastrophic regional or national effects on public health or safety, economic security, or national security.”

The order specifically addressed the threats from “electricity disruptions and prolonged power outages resulting from cybersecurity incidents.”

Jon Wellinghoff, the former chairman of the Federal Energy Regulatory Commission, said in an interview last week that while the security of United States’ critical infrastructure systems had improved in recent years, they were still vulnerable to advanced hacking attacks, particularly those that use tools stolen from the National Security Agency.

“We never anticipated that our critical infrastructure control systems would be facing advanced levels of malware,” Mr. Wellinghoff said.

In 2008, an attack called Stuxnet that was designed by the United States and Israel to hit Iran’s main nuclear enrichment facility, demonstrated how computer attacks could disrupt and destroy physical infrastructure.

The government hackers infiltrated the systems that controlled Iran’s nuclear centrifuges and spun them wildly out of control, or stopped them from spinning entirely, destroying a fifth of Iran’s centrifuges.

In retrospect, Mr. Wellinghoff said that attack should have foreshadowed the threats the United States would face on its own infrastructure.

Critical infrastructure is increasingly controlled by Scada, or supervisory control and data acquisition systems. They are used by manufacturers, nuclear plant operators and pipeline operators to monitor variables like pressure and flow rates through pipelines. The software also allows operators to monitor and diagnose unexpected problems.

But like any software, Scada systems are susceptible to hacking and computer viruses. And for years, security specialists have warned that hackers could use remote access to these systems to cause physical destruction.

Source: Tech CNBC
Hackers are targeting nuclear facilities, Homeland Security and FBI say

Comments are closed.