Help

BI’s Article search uses Boolean search capabilities. If you are not familiar with these principles, here are some quick tips.

To search specifically for more than one word, put the search term in quotation marks. For example, “workers compensation”. This will limit your search to that combination of words.

To search for a combination of terms, use quotations and the & symbol. For example, “hurricane” & “loss”.

Login Register Subscribe

Utility says Ukraine power outage was a cyber attack

Reprints
Utility says Ukraine power outage was a cyber attack

(Reuters) — A power blackout in Ukraine's capital of Kiev last month was caused by a cyber attack, and investigators are trying to trace other potentially infected computers and establish the source of the breach, utility Ukrenergo told Reuters on Wednesday.

When the lights went out in northern Kiev on Dec. 17-18, power supplier Ukrenergo suspected a cyber attack and hired investigators to help it determine the cause following a series of breaches across Ukraine.

Preliminary findings indicate that workstations and Supervisory Control and Data Acquisition systems, linked to the 330-kilowatt substation "North," were influenced by external sources outside normal parameters, Ukrenergo said in comments emailed to Reuters.

"The analysis of the impact of symptoms on the initial data of these systems indicates a premeditated and multi-level invasion," Ukrenergo said.

Law enforcement officials and cyber experts are still working to compile a chronology of events, draw up a list of compromised accounts, and determine the penetration point, while tracing computers potentially infected with malware in sleep mode, it said.

The comments make no mention of which individual, group or country may have been behind the attack.

"It was an intentional cyber incident not meant to be on a large scale ... they actually attacked more but couldn't achieve all their goals," said Marina Krotofil, lead cyber security researcher at Honeywell International Inc., who assisted in the investigation.

In December 2015, a first-of-its-kind cyber attack cut the lights to 225,000 people in western Ukraine, with hackers also sabotaging power distribution equipment, complicating attempts to restore power.

Ukrainian security services blamed that attack on Russia.

In the latest attack, hackers are thought to have hidden in Ukrenergo's IT network undetected for six months, acquiring privileges to access systems and figure out their workings, before taking methodical steps to take the power offline, Ms. Krotofil said.

"The team involved had quite a few people working in it, with very serious tools and an engineer who understands the power infrastructure," she said.

The attacks against Ukraine's power grid are widely seen by experts as the first examples of hackers shutting off critical energy systems supplying heat and light to millions of homes.

Read Next

  • Energy and power insurance sector to continue to grow

    A white paper by Bahrain-based reinsurer Trust International Insurance & Reinsurance Company B.S.C. has said that energy and power insurance will remain a "growth business" with world energy demand projected to increase by up to 50% over the next 25 years. The energy and power sector is expected to receive investments of around $70 trillion by 2040, with particularly steep growth expected in insurance premiums, Middle East Insurance Review reported. Energy insurance premiums totaled around $14.2 billion, while power insurance premiums came in at about $9.4 billion in 2014.