US Senators and a member of the House of Representatives have called on the U.S. Justice Department to investigate a cyberattack on a water authority near Pittsburgh. The attack, believed to be the work of foreign hackers, has prompted the nation’s top cyberdefense agency to caution other water and sewage-treatment utilities about potential vulnerabilities.
The compromised industrial control system that was breached by hackers was made in Israel, leading to speculation that the attack targeted the facility due to its connection to Israel. The chairman of the water authority, Matthew Mottes, revealed that federal officials informed him of similar breaches at four other utilities and an aquarium.
It is believed that the group responsible for the attack is known as Cyber Av3ngers, which cybersecurity experts have identified as hacktivists aligned with Iran’s government. The hackers used a photo from the Municipal Water Authority of Aliquippa, Pennsylvania, to make their intentions clear.
While the incident in Pennsylvania alarmed officials, the U.S. cybersecurity agency has identified the weaknesses in the device that was exploited by attackers, including poor password security and exposure to the internet. However, experts warn that many water utilities have paid insufficient attention to cybersecurity.
The cyberattack comes at a time when the Biden administration is striving to improve cybersecurity for critical infrastructure, with more than 80% of it being privately owned. The attack highlights the need for stronger regulations and security measures to protect essential industries.