Local Agencies Ramp Up Security After State, National Cyberattacks on Water Supplies

Local agencies are ramping up security measures after recent cyberattacks on water supplies at the state and national levels. The attacks have prompted a call for increased vigilance and proactive cybersecurity measures to protect critical infrastructure.

Late last year, the Municipal Water Authority of Aliquippa was targeted by Iran-affiliated hackers, who took control of one of their booster stations. The incident raised alarms and led to a manual operation of the water system to maintain service without interruption.

In response to these threats, the federal government has developed a playbook to guard against sophisticated hackers. Common-sense cybersecurity efforts, such as creating strong passwords, firewalls, and multi-factor authentication, are essential in protecting water systems from cyber threats.

The Altoona Water Authority has taken proactive steps to enhance its cybersecurity measures. Following a hacking incident in Florida, the authority adopted a “zero trust model” that requires strict identity verification for every person and device accessing resources. Multi-factor authentication and regular security updates are also part of their cybersecurity strategy.

Other local agencies, such as the Logan Township Sewer Department and Bellwood Borough Authority, have implemented similar security measures to protect their water and sewer systems. By working with third-party security firms and attending regional task force meetings, these agencies are staying informed about the latest cybersecurity guidelines and best practices.

While some agencies, like Martinsburg Borough, may not have significant cybersecurity concerns due to their limited internet-connected systems, the overall message is clear: cybersecurity threats are real and require constant vigilance. By reviewing and making necessary changes to their security protocols, local agencies can better protect their critical infrastructure from cyberattacks.

Local cybersecurity experts emphasize the importance of being proactive in developing and executing a cybersecurity plan. Annual risk analyses and working with specialized cybersecurity firms can help organizations identify and address vulnerabilities before they are exploited by hackers. With the increasing complexity of cyber threats, it is crucial for organizations to stay informed and prepared to defend against potential attacks.

As local agencies continue to strengthen their cybersecurity defenses, the goal is to prevent disruptions to essential services and protect the community from the potentially devastating effects of cyberattacks on water supplies.