• 5 minutes Iran Says It Arrested 17 CIA Spies, Some Sentenced To Death
  • 9 minutes Will We Ever See 100$+ OIL?
  • 13 minutes Iran downs US drone. No military response . . Just Destroy their economy. Can Senator Kerry be tried for aiding enemy ?
  • 2 hours Iran Loses $130,000,000 Oil Revenue Every Day They Continue Their Games . . . .Opportunity Lost . . . Will Never Get It Back. . . . . LOL .
  • 2 hours How is E&P of Marginal Oil on the UKCS Similar to the Shale Oil Operations in the US?
  • 7 hours Oil Giant Saudi Arabia Is Set to Start First Wind-Power Plant
  • 4 hours So You Think We’re Reducing Fossil Fuel? — Think Again
  • 35 mins Renewables provided only about 4% of total global energy needs in 2018
  • 3 hours Berkeley becomes first U.S. city to ban natural gas in new homes
  • 6 hours EIA Reports Are Fraudulent : EIA Is Conspiring With Trump To Keep Oil Prices Low
  • 2 hours N.Y. Governor Signs Climate Bill
  • 17 hours First limpet mines . . . . now fly a drone at low altitude directly at U.S. Navy ship. Think Iran wanted it taken out ? Maybe ? YES
  • 16 hours Today in Energy
  • 13 hours Which is a better domain name for OAPEC?
  • 21 mins U.S. Administration Moves To End Asylum Protections For Central Americans
  • 5 hours Trump vs. Xi Trade Battle, Running Commentary from Conservative Tree House
Alt Text

IEA: Don’t Expect Oil Prices To Go Much Higher

Slowing oil demand growth and…

Alt Text

Why Is U.S. Demand For Solar Panels Booming?

U.S. solar companies are hoarding…

Jen Alic

Jen Alic

 

More Info

Premium Content

Cyber Update: Pipelines, China and Lax Security Standards

The Department of Homeland Security (DHS) has identified China as the possible origin of an ongoing cyber attack targeting US gas pipeline companies, and specifically a group that managed to hack into RSA security in 2011.  

The cyber attack could be a continuation of the “Night Dragon” attack in February 2011 on McAfee computer security firm, which was also traced back to China. The objective of that attack was to obtain financial data from oil and gas companies. 

Chinese officials deny that there is any evidence that the cyber attack is coming “directly” from China.

At the same time, US officials have announced that they will be working together with Chinese defense officials on cyber security issues to “avoid any miscalculation or misperception that could lead to crisis in this area”. This new cooperation deal follows Washington’s public accusation last year that China was stealing sensitive high-tech data for economic gain.

The cyber investigation also coincides with a survey released by Carnegie Mellon University CyLab, showing that US energy infrastructure is the least prepared for cyber attacks, while financial institutions are the best prepared in terms of cyber security standards.

The CyLab 2012 survey is based upon results received from 108 respondents at the board or senior executive level from Forbes Global 2000 companies. The survey found that “boards are not actively addressing cyber risk management”, and there is still a “gap in understanding the linkage between information technology (IT) and enterprise risk management.”

Specifically, the survey notes that fewer than two-thirds of the companies had full-time personnel in key privacy and security roles “in a manner that is consistent with internationally accepted best practices and standards”.

One of the most troubling aspects of the survey was how the energy sector rated in terms of cyber security—not well at all, in fact, the worst. According to the survey, energy and utilities sector respondents indicated that their boards “never” address vendor management issues.

Among other revelations, the survey noted that “the energy/utilities sector also places a much lower value on board member IT experience than the other sectors, which is puzzling since their operations are so dependent upon complex supervisory control and data acquisition (SCADA) systems.”

The survey and the investigation into the ongoing cyber attack are come against the backdrop of a legislative battle over cyber security standards and information-sharing. In late April, the House of Representatives pass the Cyber Intelligence Sharing and Protection Act (CIPSA), but the President is threatening to veto that bill, on the recommendation of the White House Office of Management and Budget. 

While in vetoing the bill President Obama appears to come out on the side of privacy advocates who oppose CIPSA, the real criticism of the bill is that it fails to obligate companies in charge of critical infrastructure to engage in some very costly cyber security standardizations.

By. Jen Alic of Oilprice.com

Jen Alic is a geopolitical analyst, co-founder of ISA Intel in Sarajevo and Tel Aviv, and the former editor-in-chief of ISN Security Watch in Zurich.




Download The Free Oilprice App Today

Back to homepage


Leave a comment

Leave a comment




Oilprice - The No. 1 Source for Oil & Energy News
Download on the App Store Get it on Google Play