Hackers gained remote access into the control system of the city water utility in Springfield, Illinois and destroyed a pump last week, according to a report released by a state fusion center and obtained by a security expert.
The hackers were discovered on Nov. 8 when a water district employee noticed problems in the city’s Supervisory Control and Data Acquisition System (SCADA).
The system kept turning on and off, resulting in the burnout of a water pump.
Forensic evidence indicates that the hackers may have been in the system as early as September, according to the “Public Water District Cyber Intrusion” report, released by the Illinois Statewide Terrorism and Intelligence Center on Nov. 10.
The intruders launched their attack from IP addresses based in Russia and gained access by first hacking into the network of a software vendor that makes the SCADA system used by the utility. The hackers stole usernames and passwords that the vendor maintained for its customers, and then used those credentials to gain remote access to the utility’s network.
The theft of credentials raises the possibility that other customers using the vendor’s SCADA system may be targeted as well.
Source : infognomonpolitics.blogspot