Washington D.C., December 16, 2024 –CISA and EPA expose cybersecurity risks in water systems, urging action to secure exposed HMIs as cyber threats escalate against critical infrastructure.
A chilling warning from the Cybersecurity and Infrastructure Security Agency (CISA) and the Environmental Protection Agency (EPA) has spotlighted critical vulnerabilities in Human Machine Interfaces (HMIs) used by Water and Wastewater Systems (WWS).
These interfaces, essential for managing infrastructure, are increasingly being exploited by cybercriminals, putting public health and safety at risk.
A recent fact sheet revealed that improperly secured HMIs expose sensitive data, like system maps and event logs, and allow hackers to manipulate water treatment processes.
In one shocking incident this year, pro-Russian hacktivists exploited exposed HMIs to push water pumps beyond safe limits, disable alarm systems, and disrupt vital services in multiple facilities. John Simmons, a cybersecurity expert said:
This is a wake-up call for every WWS facility. Securing HMIs is no longer optional; it’s a necessity.
The danger lies in HMIs connected to the internet without proper security measures. Unauthorized access can lead to catastrophic consequences, including contamination of water supplies and widespread outages. Lisa Carter, a water safety advocate warned:
These systems are the backbone of public infrastructure. A breach could have life-altering consequences.
To combat these risks, CISA and EPA urge facilities to:
- Disconnect internet-facing HMIs or implement strong access controls.
- Use multifactor authentication and update systems regularly.
- Isolate operational technology (OT) networks from public access through firewalls and demilitarized zones (DMZ).
Other News At VPNRanks
Hey, wait!
Stay informed on the latest privacy updates, cybersecurity insights, and internet freedom news by following VPNRanks news daily! As your primary resource for critical updates in online security, we ensure you’re always in the know. Make VPNRanks your go-to guide for safeguarding your digital life!
