Energy


  • NERC CIP compliance in Azure

    February 12, 2020

    When I did my first North American Electric Reliability Corporation—Critical Infrastructure Protection (NERC CIP) compliance project it was 2009. NERC CIP was at version 3. It was the first mandatory cybersecurity standard that the utility I was working for had to meet. As it does today, the Bulk Electric System (BES) had the responsibility to ...

  • Estonia’s Elering joins ENCS to bolster EU cybersecurity

    January 16, 2020

    Estonia’s national Transmission System Operator (TSO) for electricity and natural gas, Elering, has become the latest member of the European Network for Cyber Security (ENCS) to strengthen the energy sector’s cyber defences. Elering is responsible for the functioning of the Estonian electricity system, ensuring the required standard of electricity supply to consumers at all times. For ...

  • How Safe Are The UAE’s Nuclear Power Plants?

    January 16, 2020

    Emirates Nuclear Energy Corporation (ENEC) is building four identical nuclear reactors at the Barakah site in the Al Dhafra region of Abu Dhabi emirate. Construction of the units is now close to completion. Once all four are on line they will be able to produce some 5.6GW of electricity. Nuclear power is controversial in many parts ...

  • Cyber attack plan aims to protect State hospitals, energy networks and security systems

    December 27, 2019

    A new plan to crackdown on cyber-crime, hacking and cyber-espionage has been published in a bid to protect the State. The new National Cyber Security Strategy sets out how to ensure the State’s infrastructure and computer networks are “resilient, safe and secure”. It contains proposals on how the Irish government can respond and manage cyber security incidents. Read ...

  • Drilling Deep: A Look at Cyberattacks on the Oil and Gas Industry

    December 18, 2019

    Mining, transportation, refining, distribution—the oil and gas industry has a widespread and complicated production chain that can be difficult to comprehensively defend. Risks come from all sides: extreme weather can affect transportation, politics (global and local) can impact production, and physical attacks on infrastructure can actually threaten worker safety and even impact the world’s oil ...

  • Critical Remote Code-Execution Bugs Threaten Global Power Plants

    December 12, 2019

    Siemens industrial equipment commonly found in fossil-fuel and large-scale renewable power plants are riddled with multiple security vulnerabilities, the most severe of which are critical bugs allowing remote code-execution. The affected product is SPPA-T3000, a distributed control system used for orchestrating and supervising electrical generation at major power plants in the U.S., Germany, Russia and other ...

  • The $6 Trillion Problem The Energy Industry Is Ignoring

    November 30, 2019

    Cybersecurity has long flown under the radar of the governments worldwide. Hackers are set to cost countries across the globe $6 trillion in the next two years, dwarfing the economic impact of natural disasters. And it’s not just small-timers sitting in a basement asking your grandmother for bitcoin, either. Independent and state-sponsored hackers alike are increasingly targeting major financial ...

  • The energy industry practices for a ‘black swan’ cyberattack that could take down the grid

    November 16, 2019

    More than 6,500 government officials and big players in the energy sector came together this week to conduct a simulated cyberattack on the electrical grid. The event is called GridEx, and takes place every two years. It imagines the U.S. under attack from a foreign country, through the power grid. It’s a scenario that planners say is ...

  • Earthquake hits France’s nuclear power output

    November 14, 2019

    French electricity giant EDF on Thursday cut its forecast for nuclear energy production this year after suspending operations at an atomic plant in the south of the country following a highly unusual earthquake. EDF took three reactors at the Cruas plant in the Ardeche region offline after Monday’s earthquake, which had a magnitude of 5.4 and was ...

  • Hawaii chosen to test energy grid against cyber security threats

    October 31, 2019

    What would happen if a cyber and/or physical attack knocked out Hawaii’s electric grid? A remote exercise conducted by the North American Electric Reliability Corporation will simulate that scenario on Hawaii’s electric grid, testing where the state’s strength and weaknesses lie in response and recovery. Hawaii was one of four states selected by the National Governors Association to partake in ...

  • Cyber-attack hits Utah wind and solar energy provider

    October 31, 2019

    sPower, a Utah-based renewable energy provider, is in the unenvied posture of holding two unwanted titles. First, the company is the first-ever US provider of solar and wind renewable energy to have been the victim of a cyber-attack. Second, the company is the first US power grid operator that is known to have lost connection with its ...

  • Global alliance addresses OT security threats

    October 29, 2019

    The Operational Technology Cyber Security Alliance (OTCSA), a new global alliance focused on cyber security, has been launched. It has been established to help companies address the OT security challenges that continue to put operations, and consequently, business at risk. Cyber-attacks on critical and industrial infrastructure are on the rise, impacting operational reliability and business risk ...

  • National Cybersecurity Center of Excellence (NCCoE) Securing the Industrial Internet of Things for the Energy Sector

    October 8, 2019

    The National Institute of Standards and Technology (NIST) invites organizations to provide products and technical expertise to support and demonstrate security platforms for Securing the Industrial Internet of Things (IIoT) for the energy sector use case. This notice is the initial step for the National Cybersecurity Center of Excellence (NCCoE) in collaborating with technology companies to ...

  • Energy to Launch $5.5M Artificial Intelligence Research Center

    October 7, 2019

    The Energy Department unveiled plans to launch a $5.5 million research center that will bring together top thinkers from three federal and academic institutions to solve some of the world’s most complex challenges in artificial intelligence. Researchers from Energy’s Pacific Northwest National Laboratory, Sandia National Laboratories, and the Georgia Institute of Technology will join forces in the newly ...

  • US to help secure Baltic energy grid against cyber attacks

    October 6, 2019

    The United States and Baltic states on Sunday agreed to beef up cooperation to protect the Baltic energy grid from cyber attacks as they disconnect from the Russian electricity grid. US Energy Secretary Rick Perry and his Lithuanian, Latvian and Estonian counterparts termed the agreement “a critical moment for the Baltic States in strengthening cybersecurity” in ...

  • Colombia’s Trasandino pipeline damaged in bombing

    October 5, 2019

    Colombia’s Trasandino pipeline was damaged in a bomb attack, state-run oil company Ecopetrol (ECO.CN) said on Saturday, spilling crude into a nearby river. The attack took place in Orito municipality in Putumayo province, the company said in a statement. The pipeline was not functioning at the time of the attack, which affected the Guamues River, Ecopetrol said. It ...

  • Kuwait raises security alert level at oil and commercial ports: KUNA

    September 20, 2019

    Kuwait has raised the security alert level at all of its ports, including the oil terminals, the state-run Kuwait News Agency reported on Friday, citing a decision by Trade and Industry Minister Khaled Al-Roudhan. “The decision emphasizes that all measures have to be taken to protect the vessels and the ports facilities,” it said. The announcement comes ...

  • Cyber-security incident at US power grid entity linked to unpatched firewalls

    September 9, 2019

    A cyber-security incident that impacted a US power grid entity earlier this year was not as dangerous as initially thought, the North American Electric Reliability Corporation (NERC) said last week. In a report highlighting the “lessons learned” from a past incident, NERC said hackers repeatedly caused firewalls to reboot for about ten hours, on March 5, ...

  • FERC, NERC propose to publicly identify utilities violating cybersecurity standards

    September 4, 2019

    Safeguarding the U.S. power grid against a potential cyberattack remains a high priority for regulators and utilities alike. While there has been no loss of load in North America from a cyberattack, the threat is at an all-time high, according to NERC. The changes proposed in the white paper address the biggest complaints of the current reporting ...

  • ACSC helps power energy sector’s cybersecurity capabilities

    September 4, 2019

    The Australian Cyber Security Centre (ACSC) has plugged into energy sector organisations and government agencies to help power their cybersecurity capabilities. The nationwide program — which started in November 2018 – aims to improve the energy industry’s cyber threat resilience and responses. So far, the ACSC has provided cybersecurity incident response and exercise training, information exchange sessions on operational ...