• Skip to main content
  • Skip to footer

Commonwealth Sentinel

Cyber Security for local government, non-profits and small business

MENUMENU
  • Home
  • About Us
    • Sheri Donahue
    • Leo Haggerty
    • Careers
  • Services
    • Vulnerability and Threat Evaluation
    • Transformation Management
    • CISO Management Services
    • Incident Response Management
  • News
  • Blog
  • FAQs
  • Contact Us

commonsent / August 19, 2021

Is Our Drinking Water Safe?

Many water and wastewater utilities, particularly small systems, lack the resources for a cyber security program. Many utility personnel may believe that cyber attacks do not present a risk to their systems or feel that they lack the technical capability to improve their cyber security.

Florida Hack

Earlier this year, hackers accessed the water treatment plant of a small Florida city. According to the Tampa Bay Times, the intrusion only lasted between three and five minutes. In that time, the level of sodium hydroxide being fed to the city of Oldsmar, Florida was changed from 100 to 11,100 parts per million. It took five and a half hours for an employee to notice the change

“This is dangerous stuff,” Pinellas County Sheriff Bob Gualtieri said at a news conference. Consumed in large quantities, sodium hydroxide can cause vomiting, chest and abdominal pain, skin burns, even hair loss, according to the Centers for Disease Control.

Kansas Rural Water

In April of this year, a U.S. grand jury indicted a 22-year-old man for allegedly hacking the computer system of a rural water utility in Kansas and shutting down processes that affect procedures for cleaning and disinfecting water.

Federal prosecutors allege in an indictment that Wyatt Travnichek logged into Ellsworth County Rural Water District’s computer system in 2019 as part of an “unauthorized remote intrusion” that resulted “in the shut-down of the facility’s processes.”

Widespread Danger

Of all the U.S. critical infrastructure, water might be the most vulnerable to hackers. It’s the hardest to guarantee everyone follows cyber security steps and the easiest to cause significant, real-world harm to large numbers of people.

According to Cybersecurity and Infrastructure Security Agency (CISA) survey, only several hundred out of more than 50,000 across the U.S. choose to use CISA’s services. It also noted that as many as 1 in 10 water and wastewater plants had recently found critical cyber security vulnerabilities. And that more than 80% of the significant vulnerabilities that the surveyed facilities had were software flaws discovered before 2017, indicating a rampant problem of employees not updating their software.

There is hope and help

Basic cyber security best practices can be carried out by utility personnel as long as they have cyber security specialists audit their system and get cyber hygiene training for their employees.

Filed Under: Blog

Footer

CONTACT US

COMMONWEALTH SENTINEL

1230 US Highway 127 S
Suite #5
Frankfort KY 40601
(502) 320-9885

EMAIL US

ABOUT US

Cyber security consulting for local governments, non-profit organizations, and small businesses facing the threats of the cyber world.  At Commonwealth Sentinel, we are passionate about helping people be cyber-safe!

FOLLOW US

  • Email
  • Facebook
  • LinkedIn
  • Phone
  • Twitter
  • YouTube

Copyright © 2023 Commonwealth Sentinel

We use cookies on our website to give you the most relevant experience by remembering your preferences and repeat visits. By clicking “Accept”, you consent to the use of ALL the cookies.
Cookie settingsACCEPT
Privacy & Cookies Policy

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these cookies, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may have an effect on your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. This category only includes cookies that ensures basic functionalities and security features of the website. These cookies do not store any personal information.
Non-necessary
Any cookies that may not be particularly necessary for the website to function and is used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-necessary cookies. It is mandatory to procure user consent prior to running these cookies on your website.
SAVE & ACCEPT