Expand / Collapse search
Watch TV
Menu

This material may not be published, broadcast, rewritten, or redistributed. ©2024 FOX News Network, LLC. All rights reserved. Quotes displayed in real-time or delayed by at least 15 minutes. Market data provided by Factset. Powered and implemented by FactSet Digital Solutions. Legal Statement. Mutual Fund and ETF data provided by Refinitiv Lipper.

Pennsylvania

Pennsylvania water supply threatened after hackers target water authority, cybersecurity agency says

The PA cyberattack disabled company equipment, impacting its ability to regulate water pressure for customers

Associated Press
Published
close
Fox News Flash top headlines for November 30 Video

Fox News Flash top headlines for November 30

Fox News Flash top headlines are here. Check out what's clicking on Foxnews.com.

  • The U.S. Cybersecurity and Infrastructure Security Agency issued a warning after a water authority in Pennsylvania was hacked.
  • The targeted equipment is used in various industries, including electric utilities and oil and gas producers.
  • The equipment is manufactured by Israel-based Unitronics, which has not responded to questions about other potential hacks or vulnerabilities.

Hackers are targeting industrial control systems widely used by water and sewage-treatment utilities, potentially threatening water supplies, the top U.S. cyberdefense agency said after a Pennsylvania water authority was hacked.

The U.S. Cybersecurity and Infrastructure Security Agency issued the warning Tuesday evening, three days after hacktivists shut down a piece of equipment at the Municipal Water Authority of Aliquippa, Pennsylvania, just outside Pittsburgh. The hack effectively idled pumping equipment in a remote station that regulates water pressure for customers in two nearby towns. Crews switched to manual backup, officials said.

LARGE PENNSYLVANIA HEALTH CARE COMPANY HIT BY MALWARE ATTACK

The attackers likely accessed the device by exploiting cybersecurity weaknesses, including poor password security and exposure to the internet, U.S. officials said. The Aliquippa water authority did not respond to messages Wednesday.

Pittsburgh river

A boat travels along a river in Pittsburgh, Pennsylvania, on Sept. 12, 2020. The U.S. Cybersecurity and Infrastructure Security Agency issued the warning after a hacking group claimed credit for disabling a controller at a water utility near the city. (Justin Merriman/Bloomberg via Getty Images)

The equipment identified as vulnerable is used across multiple industries, including electric utilities and oil and gas producers. It regulates processes including pressure, temperature and fluid flow, according to the manufacturer.

While there is no known risk to the Pennsylvania towns’ drinking water or water supply, the cyberdefense agency urged water and wastewater utilities across the United States to take steps to protect their facilities.

MULTISTATE CYBERATTACK DISRUPTS HOSPITAL SERVICES

The equipment at issue is made by Israel-based Unitronics, which did not immediately respond to queries about what other facilities may have been hacked or could be vulnerable. According to Unitronics’ website, the controllers at issue are built for a wide spectrum of industries.

The Biden administration has been trying to shore up cybersecurity in U.S. critical infrastructure — more than 80% of which is privately owned — and has imposed regulations on sectors including electric utilities, gas pipelines and nuclear facilities.

But many experts complain that too many vital industries are permitted to self-regulate and administration officials want software providers to also assume a higher burden for safety.