Deputy national security adviser Anne Neuberger, A top White House national security official said recent cyber attacks by Iranian hackers on U.S. water authorities — as well as a separate spate of ransomware attacks on the health care industry — should be seen as a call to action by utilities and industry to tighten cybersecurity.
Quick Read
- Cyber Attacks on U.S. Infrastructure: A top White House national security official highlighted recent cyber attacks by Iranian hackers on U.S. water authorities and separate ransomware attacks on the healthcare industry as a call to action for tightening cybersecurity.
- Deputy National Security Adviser’s Comments: Anne Neuberger, Deputy National Security Adviser, emphasized that the attacks were unsophisticated but warned they are a sign of persistent cyber threats from hostile countries and criminals.
- Focus on Cybersecurity Measures: Neuberger stressed the importance of basic cybersecurity practices to protect against such threats.
- Details of the Cyber Attacks: The Iranian hacker group “Cyber Av3ngers,” allegedly linked to Tehran’s Islamic Revolutionary Guard Corps, targeted multiple U.S. organizations including a municipal water authority in Aliquippa, Pennsylvania.
- Targets of Iranian Hackers: The hackers aimed at organizations using programmable logic controllers from the Israeli company Unitronics.
- Impact of the Aliquippa Hack: The attack caused temporary disruption in water pumping, leading to manual operation of a remote station.
- Context of U.S.-Iran Tensions: The attacks coincide with heightened tensions between the U.S. and Iran, exacerbated by the ongoing Israel-Hamas war and Iran’s support for Houthi rebels in Yemen.
- Iran’s Role in Regional Conflicts: Iran is identified as a key supporter of Hamas and the Houthi rebels.
- White House Advisor on Iran’s Influence: Jake Sullivan, White House National Security Adviser, indicated Iran’s role in supplying weapons to groups involved in regional conflicts.
- Uncertainty Over Future Cyber Threats: Neuberger did not comment on the potential for future Iranian cyber attacks on U.S. infrastructure but underscored the need for improved cybersecurity.
- Rescinded Cybersecurity Rule for Water Systems: A recent federal appeals court decision led to the rollback of a rule that would have required U.S. public water systems to conduct cybersecurity testing.
- Biden Administration’s Cybersecurity Plan: The administration has proposed a comprehensive plan to enhance cybersecurity in critical sectors and hold software companies accountable for lapses.
- Ransomware Attacks on Healthcare: Neuberger also mentioned the devastating impact of recent ransomware attacks on healthcare systems, calling for joint efforts from government and industry to strengthen cybersecurity.
The Associated Press has the story:
Top White House cyber aide: Recent Iran hack on water system is call to tighten cybersecurity
Newslooks- WASHINGTON (AP)
A top White House national security official said recent cyber attacks by Iranian hackers on U.S. water authorities — as well as a separate spate of ransomware attacks on the health care industry — should be seen as a call to action by utilities and industry to tighten cybersecurity.
Deputy national security adviser Anne Neuberger said in an interview on Friday that recent attacks on multiple American organizations by the Iranian hacker group “Cyber Av3ngers” were “unsophisticated” and had “minimal impact” on operations. But the attacks, Neuberger said, offered a fresh warning that American companies and operators of critical infrastructure “are facing persistent and capable cyber attacks from hostile countries and criminals” that are not going away.
“Some pretty basic practices would have made a big difference there,” said Neuberger, who serves as a top adviser to President Joe Biden on cyber and emerging technology issues. “We need to be locking our digital doors. There are significant criminal threats, as well as capable countries — but particularly criminal threats — that are costing our economy a lot.”
The hackers, who U.S. and Israeli officials said are tied to Tehran’s Islamic Revolutionary Guard Corps, breached multiple organizations in several states including a small municipal water authority in the western Pennsylvania town of Aliquippa. The hackers said they were specifically targeting organizations that used programmable logic controllers made by the Israeli company Unitronics, commonly used by water and water treatment utilities.
Matthew Mottes, the chairman of the Municipal Water Authority of Aliquippa, which discovered it had been hacked on Nov. 25, said that federal officials had told him the same group also breached four other utilities and an aquarium.
The Aliquippa hack prompted workers to temporarily halt pumping in a remote station that regulates water pressure for two nearby towns, leading crews to switch to manual operation.
The hacks, which authorities said began on Nov. 22, come as already fraught tensions between the U.S. and Iran have been heightened by the two-month-old Israel-Hamas war. The White House said that Tehran has supported Houthi rebels in Yemen who have carried out attacks on commercial vessels and have threatened U.S. warships in the Red Sea.
Iran is the chief sponsor of both Hamas, the militant group which controls Gaza, as well as the Houthi rebels in Yemen.
The U.S. has said they have uncovered no information that Iran was directly involved in Hamas’ Oct. 7 attack on Israel that triggered the massive retaliatory operation by Israeli Defense Forces in Gaza. But the Biden administration is increasingly voicing concern about Iran attempting to broaden the Israeli-Hamas conflict through proxy groups and publicly warned Tehran about the Houthi rebels’ attacks.
“They’re the ones with their finger on the trigger,” White House national security adviser Jake Sullivan told reporters earlier this week. “But that gun — the weapons here are being supplied by Iran. And Iran, we believe, is the ultimate party responsible for this.”
Neuberger declined to comment on whether the recent cyber attack by the Iranian hacker group could portend more hacks by Tehran on U.S. infrastructure and companies. Still, she said the moment underscored the need to step up cybersecurity efforts.
The Iranian “Cyber Av3ngers” attack came after a federal appeals court decision in October prompted the EPA to rescind a rule that would have obliged U.S public water systems to include cybersecurity testing in their regular federally mandated audits. The rollback was triggered by a federal appeals court decision in a case brought by Missouri, Arkansas and Iowa, and joined by a water utility trade group.
Neuberger said that measures spelled out in the scrapped rule to beef up cybersecurity for water systems could have “identified vulnerabilities that were targeted in recent weeks.”
The administration, earlier this year, unveiled a wide-ranging cybersecurity plan that called for bolstering protections on critical sectors and making software companies legally liable when their products don’t meet basic standards.
Neuberger also noted recent criminal ransomware attacks that have devastated health care systems, arguing those attacks spotlight the need for government and industry to take steps to tighten cyber security.
A recent attack targeting Ardent Health Services prompted the health care chain that operates 30 hospitals in six states to divert patients from some of its emergency rooms to other hospitals while postponing certain elective procedures. Ardent said it was forced to take its network offline after the Nov. 23 cyberattack.
A recent global study by the cybersecurity firm Sophos found nearly two-thirds of health care organizations were hit by ransomware attacks in the year ending in March, double the rate from two years earlier but dipping slightly from 2022.
“The president’s made it a priority. We’re pushing out actionable information. We’re pushing out advice,” Neuberger said. “And we really need the partnership of state and local governments and of companies who are operating critical services to take and implement that advice quickly.”
