Cyberattack Shows Vulnerability of Gas Pipeline Network

Cyberattack Shows Vulnerability of Gas Pipeline Network


The attack’s target appears to have been Latitude Technologies, a Texas-based provider of electronic data-sharing between pipeline companies and their gas producer and utility customers. The company handles the critical computer communications of gas storage facilities, as well as sales contracts and shipment scheduling.

Chris Bronk, a cybersecurity expert at the University of Houston, said such attacks on the gas marketing communications hub is a way to gather intelligence on the entire gas industry.

“If I compromise their operations, I can see all the buyers and sellers,” he said. “If I can persistently be in their network I can issue fake transactions.” In that way, Mr. Bronk added, hackers could potentially jumble gas shipments, and even cause electricity production outages.

Latitude Technologies, a unit of Energy Services Group, declined to discuss the disruption in detail. In a statement, it said, “We do not believe any customer data was compromised.”

The Department of Homeland Security was investigating the attack, and no suspect has been publicly identified. But the attack came shortly after the department and the F.B.I. issued a report alleging that Russia was taking aim at the electric grid and other critical infrastructure with cyber probes.

The House Committee on Science, Space and Technology released a staff report this month that described Russian efforts to influence American energy markets and energy policy through inflammatory posts on social media. The motivation for such efforts appeared to be the increase in exports of liquefied natural gas from the United States, a challenge to Russian dominance in European markets.

Cybercriminals, frequently suspected of working for foreign governments, have been increasingly active in the energy sector in recent years. Last fall, hackers penetrated safety systems of a petrochemical plant in Saudi Arabia, the latest in a spate of increasingly sophisticated attacks on the kingdom’s energy infrastructure. An attack on Ukraine’s grid in 2015 led to extensive blackouts.

American gas pipeline companies were targeted in 2012, although the damage was believed to have been limited. Employees of several pipeline companies have been targets of spear-phishing attacks — efforts to lure them to click on email attachments containing malicious code.

The Trump administration has announced that it is establishing an office within the Department of Energy to shore up cybersecurity for critical infrastructure like nuclear plants, refineries and pipelines.



Source link

About The Author

Related posts

Leave a Reply

Your email address will not be published. Required fields are marked *