According to a local official speaking to CNN, recently, hackers targeted a wastewater treatment plant in Indiana, prompting plant managers to send maintenance personnel to investigate suspicious activity.
Target: Tipton Municipal Utilities
Tipton Municipal Utilities serves electricity, water, and wastewater treatment to approximately 5,000 people in Tipton, located about 40 miles north of Indianapolis.
Although Tipton Municipal Utilities was the target, it remains uncompromised, as confirmed by Jim Ankrum, the general manager. Ankrum stated that despite the incident, the utilities experienced minimal disruption and continued normal operations throughout.
The lack of transparency surrounding the incident has emphasized the need for clarity regarding the hackers’ impact on the water plant software.
Federal Investigation
Federal authorities are currently investigating the attack. Additionally, Industrial Cyber has reached out to the U.S. Cybersecurity and Infrastructure Security Agency (CISA) for further information.
The investigation into the incident is ongoing, with limited information available regarding the extent of the damage caused by the attack.
Post-attack claiming
The attack has been claimed by a hacker group with ties to Russia.
The Cyber Army of Russia, identified as the threat actor behind the attack, posted a video on its Telegram channel demonstrating their alleged interaction with the systems of the Tipton Wastewater Treatment Plant.
The group revealed that the Indiana operation is part of a series targeting U.S. infrastructure.
A security firm (Mandiant) describes the Cyber Army of Russia as a hacktivist collective with close ties to Sandworm, known for carrying out distributed denial-of-service (DDoS) attacks against countries unfriendly to Russia.
Future Steps
Following the cyberattack, concerns have arisen regarding the readiness of local water systems to combat such threats. Ankrum disclosed that the water utility depends on third-party vendors for cybersecurity assistance and lacks an in-house IT team. He noted sporadic staff training, primarily focusing on email security and phishing awareness.
Previously, the Biden Administration had issued alerts about the vulnerability of local water systems to cyberattacks, urging heightened vigilance and readiness.
Ankrum pledged that the organization would conduct a comprehensive review of its security protocols and collaborate with the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency for further inquiry.
This incident serves as a wake-up call for stakeholders to bolster cybersecurity defenses and rectify vulnerabilities in critical infrastructure to prevent future breaches.
By acknowledging the cyberattack and detailing plans for strengthened security measures, Tipton Municipal Utilities aims to reassure residents and stakeholders of their dedication to protecting essential services against cyber threats. However, the incident underscores the urgent need for unified efforts at local, national, and international levels to fortify critical infrastructure against evolving cyber risks.