December 11, 2024 at 11:30AM The Romanian National Cybersecurity Directorate has confirmed that the Lynx ransomware gang breached Electrica Group, a major electricity supplier. While the attack is under investigation, critical systems remain unaffected. Electrica is collaborating with cybersecurity authorities, and the directorate advises scanning for malware and not paying ransom demands. ### Meeting Takeaways: … Read more
December 3, 2024 at 06:35AM ENGlobal Corporation has reported that its operations were impacted by a ransomware attack discovered on November 25. The company is investigating the incident while restricting IT system access, allowing only essential operations. Recovery efforts are ongoing, but they have not determined the financial impact or confirmed any data theft. ### … Read more
October 25, 2024 at 09:06AM Renewable energy companies are less prepared for cybersecurity threats compared to traditional energy firms. A study revealed their median score as 85, below the oil and gas industry’s 94. The increased internet connectivity of renewable systems exposes them to risks, especially from third-party breaches, raising concerns for future cybersecurity defenses. … Read more
July 24, 2024 at 10:42AM Siemens issued an out-of-band security advisory announcing patches for critical vulnerabilities in Sicam A8000, Enhanced Grid Sensor, and Sicam 8 software, impacting energy supply sector. One vulnerability allows unauthorized admin access, the other can enable firmware downgrading and code execution. Siemens has released firmware updates and mitigation measures, while SEC … Read more
June 26, 2024 at 06:05AM Recently, Siemens patched high-severity vulnerabilities in Sicam products: A8000, EGS grid sensors, and 8 power automation software, affecting energy sector security. The flaws allow sensitive data theft, command injection, and password exposure, potentially enabling arbitrary code execution and network destabilization. SEC Consult credited for discovery, with a potential real-world attack … Read more
March 29, 2024 at 08:36AM The US Department of Energy has allocated $15 million for university-based electric power centers to enhance cybersecurity in the energy sector. Six universities will partner with industry stakeholders and the DOE National Laboratories for cybersecurity research and training. The initiative aims to reduce power disruption risk and develop tailored cybersecurity … Read more
February 27, 2024 at 11:27AM The US Department of Energy has invested $45 million in 16 projects to enhance cybersecurity in the energy sector. The projects aim to develop new tools to reduce cyber risks and fortify energy systems, covering areas like attack prevention, vulnerability detection, and quantum communication. General Electric, EPRI, and several universities … Read more
November 2, 2023 at 01:43PM The CEO of Saudi Aramco warned that the energy sector is vulnerable to attacks, especially with the introduction of new technologies like generative AI. Amin H. Nasser emphasized that any disruption to the global energy supply would have significant consequences. He stressed the need for assessing these technologies and addressing … Read more
October 19, 2023 at 05:24PM EPRI Senior Technical Executive, Jeremy Renshaw, testified before a U.S. House Energy and Commerce Subcommittee on the benefits and challenges of using artificial intelligence (AI) in the energy sector. EPRI has been studying AI’s potential impacts on the energy sector for over a decade and has been involved in over … Read more
October 19, 2023 at 03:29PM Law enforcement has taken down Ragnar Locker’s Tor negotiation and data leak sites, stating that they were seized in a coordinated international action. Europol, along with officials from the US and Japan, is involved in taking action against the ransomware group. Experts warn that this may only be a temporary … Read more