Thu Sep 26 14:48:00 UTC 2024: ## Hackers Target Water Systems with Brute-Force Attacks: CISA Warns of Increased OT Threats
**Washington, D.C.** – The US Cybersecurity and Infrastructure Security Agency (CISA) has issued a stark warning about a surge in cyberattacks targeting operational technology (OT) and industrial control systems (ICS) endpoints, particularly those in the Water and Wastewater Systems (WWS) sector.
While the agency didn’t name the perpetrators, it hinted at potential Russian involvement, stating that hackers are using “unsophisticated means,” such as brute-force attacks, to gain access to these critical devices. These attacks exploit default credentials, leaving critical infrastructure vulnerable.
The consequences of such breaches are dire. Hackers could disrupt the water supply, impacting millions of people.
CISA urges OT and ICS operators in critical infrastructure sectors to implement security recommendations outlined in its “Defending OT Operations Against Ongoing Pro-Russia Hacktivist Activity” article. They also encourage organizations to review CISA’s “Secure by Design” webpage for best practices.
This warning echoes a similar alert issued by Fortinet, which found that 73% of businesses experienced OT attacks this year, a significant increase from 49% in 2023. The frequency of these attacks has also escalated, with 31% of respondents reporting more than six intrusions in the past year, compared to just 11% the previous year.
Fortinet attributes this trend to cybercriminals adapting quickly to security measures, while organizations struggle to keep up.
The CISA warning underscores the growing threat to critical infrastructure and the urgent need for enhanced security measures across all sectors.
First Piper 