An unknown threat actor remotely took control of a critical control system at the water treatment facility in Oldsmar, Florida on February 6th. The facility operator noticed the attacker take control of the mouse on the computer and start making changes, including changes to the amount of Sodium Hydroxide that was put into water. At low levels, Sodium Hydroxide is not dangerous, but when consumed in large amounts it could become poisonous. The attacker changed the level from 100 parts per million to 11,100 parts per million. Because the facility operator recognized the attack quickly, they managed to reverse the changes immediately and cut off remote access. The attacker remotely gained access to the computer using the TeamViewer software, which is used by other facility workers to remotely troubleshoot problems within the system. The city mayor stated that even if the facility manager would not have recognized the changes on the computer system, the facility has redundant safety controls in place that sound alarms when dangerous levels of chemicals are identified in the water. The county sheriff was notified immediately, and now the FBI and Secret Service are investigating the attack.
12 Essentials for a Successful SOC Partnership
As cyber threats continue to impact businesses of all sizes, the need for round-the-clock security