Skip to main content

Russian hackers behind ‘world’s most murderous malware’ probing U.S. power grid

Image used with permission by copyright holder

A hacking group linked to the Russian government has been attempting to breach the U.S. power grid, Wired reports.

Security experts from the non-profit group the Electric Information Sharing and Analysis Center (E-ISAC) and security firm Dragos tracked the hackers — and warn that the group has been probing the grid for weaknesses, searching for ways that they could access U.S. systems.

Recommended Videos

Even though there are no signs that the group has succeeded in accessing the power grid, the attacks still have experts worried. And that’s partly because of the history of this particular hacking group: Xenotime, who created the infamous Triton malware. In late 2017, Triton attacked critical infrastructure such as the industrial control systems used in power plants, and it could have been used to cause massive destruction through tampering with power plant controls. That lead it to be labeled the “world’s most murderous malware.”

Please enable Javascript to view this content

The recent events aren’t the first time the U.S. power grid has been subject to an attempted attack. In 2016, a state-sponsored Russian group tried to hack American utilities via the compromised email account of a contractor, as reported by the Wall Street Journal. The idea was to compromise a low-level target (the contractor) and then work their way up the chain of security through phishing and other tactics. The attack targeted 60 different utilities and succeeding in breaching 24 of them.

A similar attack was launched against the power grid of Ukraine in 2015, which was the first known hack against a power grid to succeed. The hackers were able to disrupt the supply of electricity after compromising security through the use of spear phishing attacks. The total amount of electricity interrupted was relatively small, at 73 MWh or or 0.015% of daily electricity consumption in the country, but it shows what is possible from such hacks. Once again the blame was placed on Russia, in this case a hacking group known as Sandworm.

If hackers are able to compromise the U.S. power grid, they could potentially cause a long-term power outage. And that means more than just the lights going out. A large scale outage could be devastating for emergency services, hospitals, power plants, water treatment, and many more essential services. And that’s on top of the chaos that would erupt when ordinary people suffer outages in their homes.

The security of the power grid might sound like a problem that should be fixed as a matter of urgency, but unfortunately it’s not that easy. Because of the distributed nature of utilities and the varying state and federal regulations, securing the grid completely may be almost impossible.

Georgina Torbet
Georgina has been the space writer at Digital Trends space writer for six years, covering human space exploration, planetary…
The FBI accuses China of trying to steal U.S. coronavirus vaccine research
coronavirus taiwan asia technology success science researcher getty

The FBI and the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency have accused China of attempting to steal coronavirus vaccine research from the U.S.

“The FBI is investigating the targeting and compromise of U.S. organizations conducting COVID-19-related research by PRC-affiliated cyber actors and non-traditional collectors,” according to a joint announcement Wednesday.

Read more
Attacks from Chinese hacking group have spiked, U.S. firm says
hacks header

Attempted cyberattacks from a sophisticated Chinese hacking group have spiked since late January, according to cybersecurity firm FireEye Inc.

FireEye chief security architect Christopher Glyer said more than 75 of its customers were targeted in the attacks across more than a dozen countries, including the United States and Canada. The surge is “one of the broadest campaigns by a Chinese cyber espionage actor we have observed in recent years,” according to a post by FireEye on the cyberattacks.
"We haven’t seen something of this nature in at least three years," Glyer told Digital Trends.
The group behind the attacks was identified as “APT41,” a China-based team made of contractors working on behalf of the Chinese government, Glyer said.

Read more
Windows PCs now works with the Quest 3, and I tried it out for myself
i tried windows new mixed reality link with my quest 3 alan truly sits in front of a pc and adjusts virtual screen while wear

Microsoft and Meta teamed up on a new feature that lets me use my Windows PC while wearing a Quest 3 or 3S, and it’s super easy to connect and use. I simply glance at my computer and tap a floating button to use Windows in VR on large displays only I can see.

Meta’s new Quest 3 and 3S are among the best VR headsets for standalone gaming and media consumption. When I want more performance or need to run one of the best Windows apps that aren’t yet available in VR, I can connect to a much more powerful Windows PC.
Setting up Mixed Reality Link
Scanning Microsoft's Mixed Reality Link QR code with a Meta Quest 3 Photo by Tracey Truly / Digital Trends

Read more