• 4 minutes China 2019 - Orwell was 35 years out
  • 7 minutes Wonders of US Shale: US Shale Benefits: The U.S. leads global petroleum and natural gas production with record growth in 2018
  • 11 minutes Trump will capitulate on the trade war
  • 14 minutes Glory to Hong Kong
  • 3 mins PETROLEUM for humanity 
  • 23 mins Why don't the other GOP candidates get mention?
  • 5 mins Disenfranchised people are angry people - map of global electoral systems
  • 6 hours Brexit agreement
  • 3 hours Bloomberg: shale slowing. Third wave of shale coming.
  • 5 hours Yesterday Angela Merkel stopped Trump technology war on China – the moral of the story is do not eavesdrop on ladies with high ethical standards
  • 7 hours ABC of Brexit, economy wise, where to find sites, links to articles ?
  • 3 hours China's Blueprint For Global Power
  • 9 hours Erdogan Holds All The Cards ... 3.6 Million Of Them
  • 5 hours Spain Is On The Edge...Clashes Between Catalonia And "Madrid"
  • 7 hours 5 Tweets That Change The World?
  • 8 hours Philadelphia Energy Solutions seeks to permanently shut oil refinery - sources
Zainab Calcuttawala

Zainab Calcuttawala

Zainab Calcuttawala is an American journalist based in Morocco. She completed her undergraduate coursework at the University of Texas at Austin (Hook’em) and reports on…

More Info

Premium Content

U.S. Grid Narrowly Escapes Apocalyptic Attack

The American grid security story grows increasingly grim. Last week, security consulting firm Symantec warned that recent cyberattacks gave hackers direct access to the nation’s power grid on multiple occasions, according to a new report by Wired.

This time, not only the United States was exposed, said Symantec. Europe also experienced similar vulnerabilities, proving the hackers could have induced blackouts on both sides of the Atlantic. Thankfully, this apocalyptic scenario didn’t happen.

In spring and summer 2017, the Dragonfly 2.0 hacker group—a primary culprit featured in cybersecurity reports from many experts lately—launched campaigns against energy companies. They succeeded 20 times, hacking their way into full access to their target companies’ corporate servers and operations controls. This meant they could turn off circuit breakers that control the direct flow of electricity to homes and businesses.

“There’s a difference between being a step away from conducting sabotage and actually being in a position to conduct sabotage... being able to flip the switch on power generation,” Eric Chien, a Symantec security analyst, told Wired. “We’re now talking about on-the-ground technical evidence this could happen in the U.S., and there’s nothing left standing in the way except the motivation of some actor out in the world.” Related: Venezuela Just 24 Hours Away From Formal Declaration Of Default

The Ukrainian grid power blackouts of 2015 and 2016 are generally considered the first instances of cyberattacks wreaking havoc on a nation’s power supplies. Analysts believe that the perpetrator of the first attack on Ukraine’s power back in December 2015 was the Sandworm team, a group of hackers who previously targeted Europe and the United States. An updated version of their most lethal software, Blackenergy 3, was at the root of Ukraine’s initial power crisis.

Fast forward one year to December 2016, when Ukraine faced the CrashOverride virus, which could be the hackers’ “silver bullet” weapon, the researchers said. Deployed by Sandworm and a related group known as Electrum, it builds off of the malware capabilities in Stuxnet and the espionage nature of another virus called Dragonfly. Like Blackenergy 2, the virus connects to the internet, which allows it to leverage systems against themselves in a sophisticated, multi-stage attack.

This time, Symantec stopped short of blaming any specific countries, but did suggest possible perpetrators. The company also declined to comment on the hackers’ motives, though inducing a doomsday scenario would be a common end goal among any jihadists, Russian spies or other geopolitical foes of the American and European foreign policy agenda. Dragonfly 2.0 is the most likely culprit based on the timings of the 2017 campaign and Palmetto Fusion attacks, which targeted a Kansas nuclear power plant.

Related: Oil Pulls Back After U.S. Rig Count Sees Significant Increase

Poring through data on the most recent transgressions, Symantec tracked the hackers’ technique: sending fake emails with invites to corporate events. When the recipients open the invitations, it activates a software that takes screenshots of digital control panels running on engineers’ computers.

In July, the ongoing federal investigations on Russian involvement in the 2016 U.S. presidential election found that hackers who specialized in attacks against electric grids were employed by the Kremlin. There are several Russian hacker groups, and it hasn’t yet been determined which—if any—team was behind these efforts.

It’s clear that a solid defense against cyberattacks on energy and power companies is the only way to mitigate civilizational risk from the collapse of American and European utility systems. It almost doesn’t even matter who’s even behind them—we just need strong protection plans.

By Zainab Calcuttawala for Oilprice.com

More Top Reads From Oilprice.com:




Download The Free Oilprice App Today

Back to homepage



Leave a comment
  • Bill Simpson on November 13 2017 said:
    Russia destroys the electric grid and we are all dead in a couple of months. So we might as well fire off all our nuclear missiles and make sure we take all of them with us.
    Better to get instantly vaporized inside an H-bomb fireball than go by slow starvation and dehydration and disease. That is what President Simpson would order.
  • Eugene on November 14 2017 said:
    Wasn't it last weekend that the U.S. played a simulated attack of the GRID?
  • Eugene on November 14 2017 said:
    Didn't the U.S. hold a practice exercise on this very same situation last week?

Leave a comment




Oilprice - The No. 1 Source for Oil & Energy News
Download on the App Store Get it on Google Play