https://www.channelfutures.com/wp-content/themes/channelfutures_child/assets/images/logo/footer-new-logo.png
  • Home
  • Technologies
    • Back
    • SDN/SD-WAN
    • Cloud
    • RMM/PSA
    • Security
    • Telephony/UC/Collaboration
    • Cable
    • Mobility & Wireless
    • Fiber/Ethernet
    • Data Centers
    • Backup & Disaster Recovery
    • IoT
    • Desktop
    • Artificial Intelligence
    • Analytics
  • Strategy
    • Back
    • Mergers and Acquisitions
    • Channel Research
    • Business Models
    • Distribution
    • Technology Services Brokerages
    • Sales & Marketing
    • Best Practices
    • Vertical Markets
    • Regulation & Compliance
    • Diversity, Equity & Inclusion
  • MSP 501
    • Back
    • MSP 501 Information Center
    • 2021 MSP 501 Rankings
  • Intelligence
    • Back
    • Galleries
    • Podcasts
    • From the Industry
    • Reports/Digital Issues
    • Webinars
    • White Papers
  • Channel Futures TV
  • EMEA
  • Channel Chatter
    • Back
    • People on the Move
    • New/Changing Channel Programs
    • New Products & Services
    • Industry Honors
  • Resources
    • Back
    • Advisory Boards
    • Industry Organizations
    • Our Sponsors
    • Advertise
    • 2022 Editorial Calendar
  • Awards
    • Back
    • 2021 MSP 501
    • Circle of Excellence
    • DE&I 101
    • Top Gun 51
    • Channel Partners 101 (CP 101)
  • Events
    • Back
    • CP Conference & Expo
    • MSP Summit
    • Channel Partners Europe
    • Channel Partners Event Coverage
    • Webinars
    • Industry Events
  • About Us
  • DE&I
Channel Futures
  • NEWSLETTER
  • Home
  • Technologies
    • Back
    • SDN/SD-WAN
    • Cloud
    • RMM/PSA
    • Security
    • Telephony/UC/Collaboration
    • Cable
    • Mobility & Wireless
    • Fiber/Ethernet
    • Data Centers
    • Backup & Disaster Recovery
    • IoT
    • Desktop
    • Artificial Intelligence
    • Analytics
  • Strategy
    • Back
    • Mergers and Acquisitions
    • Channel Research
    • Business Models
    • Distribution
    • Technology Services Brokerages
    • Sales & Marketing
    • Best Practices
    • Vertical Markets
    • Regulation & Compliance
    • Diversity, Equity & Inclusion
  • MSP 501
    • Back
    • MSP 501 Information Center
    • 2021 MSP 501 Rankings
  • Intelligence
    • Back
    • Galleries
    • Podcasts
    • From the Industry
    • Reports/Digital Issues
    • Webinars
    • White Papers
  • Channel Futures TV
  • EMEA
  • Channel Chatter
    • Back
    • People on the Move
    • New/Changing Channel Programs
    • New Products & Services
    • Industry Honors
  • Resources
    • Back
    • Advisory Boards
    • Industry Organizations
    • Our Sponsors
    • Advertise
    • 2022 Editorial Calendar
  • Awards
    • Back
    • 2021 MSP 501
    • Circle of Excellence
    • DE&I 101
    • Top Gun 51
    • Channel Partners 101 (CP 101)
  • Events
    • Back
    • CP Conference & Expo
    • MSP Summit
    • Channel Partners Europe
    • Channel Partners Event Coverage
    • Webinars
    • Industry Events
  • About Us
  • DE&I
    • Newsletter
  • REGISTER
  • MSPs
  • VARs / SIs
  • Agents
  • Cloud Service Providers
  • Channel Partners Events
 Channel Futures

MSSP Insider


Shutterstock

Start slideshow

Nation’s Power Grid Ripe for Ransomware, Other Cyberattacks

  • Written by Edward Gately
  • April 23, 2021
There are unique challenges to securing power companies.

This week, the Biden administration launched a 100-day plan to strengthen the cybersecurity of the nation’s power grid.

The administration wants to increase the cybersecurity of electric utilities’ industrial control systems and secure the sector’s supply chain.

At the same time, the U.S. Department of Energy issued a request for information to enable the electricity sector and other bodies to provide input on future recommendations for supply chain security.

This follows a water supply hack in Oldsmar, Florida, that could have poisoned that city’s drinking water. Someone remotely accessed a computer for the city’s water treatment system. They then briefly increased the amount of sodium hydroxide, aka lye, by a factor of more than 100.

NCC Group's Damon Small

NCC Group’s Damon Small

Damon Small is an energy cybersecurity expert and consultant at NCC Group. It’s one of the largest security consultancies in the world with 15,000 clients and 35 global offices. He said we’re likely to see more power grid attacks in the coming months.

The goal of cyber terrorism is to “mess up people’s lives,” he said. And if you want to disrupt a lot of people, you start attacking energy companies — energy producers specifically.

Remote Access a Growing Problem

In a Q&A with Channel Futures, Small talks about why energy production is an increasing target for cybercriminals.

Channel Futures: What are the main cyber threats facing the power grid today? Are there examples of recent attacks?

Damon Small: Within the last couple of years, ransomware has been a big problem. That’s when some sort of malicious software gets on a device and makes the information on the device unavailable until they pay. Remote access is causing a problem. The ability to move malicious software onto an industrial control system didn’t used to exist. The ability for a malicious user to do some sort of cyber network-based attack wasn’t really possible until some things happened in the last several years. Ransomware is kind of indiscriminate. So if you’re vulnerable, you might get hit. But targeted, even state-sponsored attacks, are something that I would tell energy producers to worry about.

CF: What sort of damage can be inflicted by these attacks on power grids?

DS: A lot. The damage can be [merely] annoying, like maybe a website is defaced and it’s a high-tech vandalism. But it can [also] be mission-critical and disrupt the energy company’s ability to serve their companies and produce energy. That’s bad for the business, because if they’re not producing energy, they’re not generating revenue. And that’s also bad for the customers that the producer serves.

I’m in Houston, so I know from firsthand information what happens when a large power grid becomes unstable, as happened in Texas during that big freeze. So it doesn’t just affect the business. It affects the people who depend on having their modern society powered. So this has happened before and it’s going to continue to happen, not just because of opportunistic reasons, but also because if you want to disrupt lives, messing with public utilities is a very effective way to do that.

Scroll through our gallery above for more of Small’s comments and the week’s other cybersecurity news.

Tags: MSPs Analytics Best Practices Galleries Intelligence MSSP Insider Security

Most Recent


  • Eight, 8
    8 Takeaways You Need to Know from AWS’ Public Sector Summit
    Get the scoop from Jeffrey Kratz, who now leads the vendor’s public sector partner program.
  • Managed Security Services
    Verizon Data Breach Investigation Report: Employee Cybersecurity Training Still Lagging as Stolen Credentials Rise
    The DBIR team examined more than 914,000 incidents and nearly 235,000 data breaches.
  • leverage your MSP's people power
    Leverage Your MSP's People Power
    The foundation of any company's success is, and always will be, its people power.
  • Q&A
    Ingram Micro Talks AWS Partnership Success, CloudBlue, MSPs, Cybersecurity, More
    “AWS and Ingram are doing all the right things to develop partners’ competency," said Ingram Micro's executive director, cloud services.

Leave a comment Cancel reply

-or-

Log in with your Channel Futures account

Alternatively, post a comment by completing the form below:

Your email address will not be published. Required fields are marked *

Related Content

  • College classroom
    Community College Ransomware Attack Wreaks Havoc
  • White House
    White House to Private Sector SMEs: Get Serious About Cybersecurity
  • zero trust security
    Leveraging Partner Expertise to Build a Zero-Trust Strategy
  • Security Vulnerability
    Older Fortinet Vulnerabilities Lead to Attack on Local Government Office

Upcoming Events

View all

Channel Partners Europe

June 14, 2022 - June 15, 2022

MSP Summit

September 13, 2022 - September 16, 2022

Galleries

View all

8 Takeaways You Need to Know from AWS’ Public Sector Summit

May 24, 2022

Verizon Data Breach Investigation Report: Employee Cybersecurity Training Still Lagging as Stolen Credentials Rise

May 24, 2022

Top 5 Cloud, Data Announcements from Informatica World

May 24, 2022

Industry Perspectives

View all

Leverage Your MSP’s People Power

May 24, 2022

How SD-WAN Helps Secure the Expanding Network Perimeter

May 19, 2022

A Sneak Peek at the 2022 BrightCloud Threat Report

May 17, 2022

Webinars

View all

Simplifying SaaS Security for MSPs

April 27, 2022

How to Supercharge The Network to Support Your IT Superhero Moves

May 3, 2022

The 2022 MSP Challenge: Scale Service Delivery Despite the Talent Gap

April 21, 2022

White Papers

View all

The New Bottom Line: How MSPs Can Meet the Healthcare Crisis While Evolving Their Businesses

April 19, 2022

How to build a Security Operations Center (on a budget)

April 4, 2022

The AT&T Cybersecurity Incident Response Toolkit

April 4, 2022

Channel Futures TV

View all

AT&T, Microsoft, Cisco, ThreatLocker on Unlocking Partner Potential

Agents Share ‘Secrets,’ Industry Opportunity

May 11, 2022

Vonage Addresses Potential Partner Opportunity via Acquisition by Ericsson

May 5, 2022

Lumen Technologies ‘Built for Growth and Scale’

May 4, 2022

Twitter

ChannelFutures

.@Avaya doles our Partner of the Year honors to @ATTBusiness @VerrizonBusiness @Converge_One @Jenne_inc @TELUS… twitter.com/i/web/status/1…

May 24, 2022
ChannelFutures

.@IngramMicroInc's John Dusett talks @ThisIsCloudBlue, MSPs, cybersecurity, AWS and more. dlvr.it/SR0Cw1 https://t.co/OpcZRj9fdb

May 24, 2022
ChannelFutures

.@VZDBIR dove deep into the latest #databreach trends. @TheMediaTrust @saryunayyar @Gurucul @olsontmt… twitter.com/i/web/status/1…

May 24, 2022
ChannelFutures

Using people power to drive #profitability and capitalize on emerging #tech @Sherweb #MSPs dlvr.it/SQzrrl https://t.co/XwLfY492B0

May 24, 2022
ChannelFutures

.@Unit4Global @embridgeconsult talk the shift away from service delivery to sales #ERP. dlvr.it/SQzmPV https://t.co/dKLAPIKfzS

May 24, 2022
ChannelFutures

This Thursday, join us online for this incredible discussion, hosted by @chachelly of @figfirm, and featuring the i… twitter.com/i/web/status/1…

May 24, 2022
ChannelFutures

Check out the news coming from @Informatica today regarding cloud, data, #AI. #InformaticaWorld… twitter.com/i/web/status/1…

May 24, 2022
ChannelFutures

What are traits of a valuable vendor/partner relationship? We asked our roundtable partner participants to weigh in… twitter.com/i/web/status/1…

May 23, 2022

MSSP Insider

Business advice for MSSPs and news from the broader security channel.

Newsletters and Updates

Sign up for The Channel Report, Channel Futures Update, MSP 501 Newsletter and more.

Live Channel Events

Get the latest information on the next industry-leading Channel Partners event.

Galleries

Educational slide shows and images from live events.

Media Kit And Advertising

Want to reach our audience? Access our media kit.

DISCOVER MORE FROM INFORMA TECH

  • Channel Partners Events
  • Telecoms.com
  • MSP 501
  • Black Hat
  • IoT World Today
  • Omdia

WORKING WITH US

  • Contact
  • About Us
  • Advertise
  • Newsletter

FOLLOW Channel Futures ON SOCIAL

  • Privacy
  • CCPA: “Do Not Sell My Data”
  • Cookie Policy
  • Terms
Copyright © 2022 Informa PLC. Informa PLC is registered in England and Wales with company number 8860726 whose registered and Head office is 5 Howick Place, London, SW1P 1WG.
This website uses cookies, including third party ones, to allow for analysis of how people use our website in order to improve your experience and our services. By continuing to use our website, you agree to the use of such cookies. Click here for more information on our Cookie Policy and Privacy Policy.
X