Florida Water Plant Targeted With Cyberattack

Share post:

According to security firm Dragos, an employee in Oldsmar, Florida, visited a malicious website targeting water utilities on May 18, just hours before a person entered the city’s water treatment plant and tried to poison the drinking water.

The site did not play a role in the incident, but the situation was worrying, the security firm said.

“Watering-hole attacks” have become relatively common in computer hacking crimes targeting specific industries and users.

Florida is often a target.

The site is owned by a water utility in Florida and was compromised in December by hackers with malicious code targeting water utilities.

During the 58 days the site was infected, more than 1,000 computers visited the site.

One visit by an unauthorized person used the site to adjust chemicals that treat drinking water for about 15,000 residents of a small town northwest of Tampa.

The change was immediately recognized and canceled.

According to Dragos, the malicious code collected more than 100 pieces of detailed information about visitors.

Information such as CPU type, operating system, browser, time zone, and geolocation were just a few examples of information that the code could access.

The code also led visitors to two different websites that collected cryptographic hashes that uniquely identified each connecting device and uploaded fingerprints to a database.

Although the safety flaws did not cause extreme damage, as the majority of the attacks were caught immediately, Dragos researcher Kent Backman said this should be a wake-up call for water plants.

For more information, read the original story in arstechnica. 

Featured Tech Jobs

SUBSCRIBE NOW

Related articles

Cyber Security Today, March 27, 2024 – A botnet exploits old routers, a new malware loader discovered, and more warnings about downloading code from...

This episode reports on a new network of 40,000 infected small and home office routers and other devices that are part of a criminal botnet

Cyber Security Today, March 25, 2024 – A suspected China threat actor going after unpatched F5 and ScreenConnet installations

This episode reports on a new campaign stealing email passwords ,the latest data breaches

A hacker’s view of the civic infrastructure: Hashtag Trending, the Weekend Edition for March 23rd, 2024

What does the civic infrastructure look like through the eyes of a hacker? The legendary general Sun Tzu in the Art of War said that in order to defeat your enemy, you must first understand your enemy. How do you do this? He said, “to know your enemy, you must become your enemy.” If we

Cyber Security Today, Week in Review for week ending Friday, March 22, 2024

This episode features discussion on lessons learned from the ransomware attack on the British Library, advice for managing expectations of IT/security teams, why firms are leaving Google Firebase unprotecte

Become a member

New, Relevant Tech Stories. Our article selection is done by industry professionals. Our writers summarize them to give you the key takeaways