Grid Cyberattack risk

For technical discussions about electricity, electrical equipment with particular emphasis on safe and compliant installations.
Off topic remarks are liable to be moved elsewhere, or in extreme cases to be deleted.
User avatar
Mean Mr Mustard
Posts: 1555
Joined: 31 Dec 2006, 12:14
Location: Cambridgeshire

Grid Cyberattack risk

Post by Mean Mr Mustard »

The national electricity grid is wide open to a devastating cyber attack that could wreak havoc on the economy and make the 2008 financial crisis seem puny by comparison, a leading computer industry guru has told The Independent.

James Martin, who has made a fortune from making predictions about future developments in computers, warned that the only sure way of safeguarding the electricity grid against a coordinated cyber assault is to disconnect it completely from the internet.



http://www.independent.co.uk/life-style ... 85155.html

:shock:
1855 Advertisement for Kier's Rock Oil -
"Hurry, before this wonderful product is depleted from Nature’s laboratory."

The Future's so Bright, I gotta wear Night Vision Goggles...
User avatar
UndercoverElephant
Posts: 13498
Joined: 10 Mar 2008, 00:00
Location: UK

Post by UndercoverElephant »

Very interesting.
kenneal - lagger
Site Admin
Posts: 14290
Joined: 20 Sep 2006, 02:35
Location: Newbury, Berkshire
Contact:

Post by kenneal - lagger »

You can't do that! What about the staff's human rights to be able to read their emails?
Action is the antidote to despair - Joan Baez
User avatar
Mean Mr Mustard
Posts: 1555
Joined: 31 Dec 2006, 12:14
Location: Cambridgeshire

Post by Mean Mr Mustard »

I'd expect to see a collapse of a few public sector systems from virus attack. IT security, like other risk based spending, is harder to protect from cutbacks.
1855 Advertisement for Kier's Rock Oil -
"Hurry, before this wonderful product is depleted from Nature’s laboratory."

The Future's so Bright, I gotta wear Night Vision Goggles...
ziggy12345
Posts: 1235
Joined: 28 Nov 2008, 10:49

Post by ziggy12345 »

Cyber attacks take money and resources. What would be the benefit and who would want to?

The threat is being over stated as preconditioning propaganda to prepare people for large electricity price rises. I would expect to see similar stories, mainly in the Telegraph and on the BBC, about power failures over the next couple of months. There is backlog of essential maintenance to be carried out. This will provide an opportunity for the companies to cut people off and lable it under investment as preparation for prices rises.
JohnTaylor
Posts: 17
Joined: 06 Sep 2008, 12:17
Location: Ipswich

Post by JohnTaylor »

Wasn't this the plot for Die Hard 4?
User avatar
adam2
Site Admin
Posts: 10897
Joined: 02 Jul 2007, 17:49
Location: North Somerset, twinned with Atlantis

Post by adam2 »

kenneal wrote:You can't do that! What about the staff's human rights to be able to read their emails?
You could still use the internet for the normal administerative functions of any large business, including email.
I dont believe that the internet should be used for any important control functions, owing to the risk of attack.
We did after all have a national grid before the internet !

Internet MONITORING of remote substations can be usefull, but CONTROL, no way !

All important grid sites should be linked by private dedicated telephone and data lines not interconnected with any public network.
Secondary sites could reasonably use the public telephone and internet system, but only for passing messages or information to a human engineer, not for direct internet control of anything owing to the risk of attack.
Some remote sites use remote telephone control of plant, this is old technology and relatively safe. Anyone attempting misuse would have to know the telephone number, and the access code which are kept secure. They could no doubt be obtained, but all that could be done would be improper control of a small switching center, leading to a one-off local blackout. There would be no question of a general attack and subsequent failure as with an internet based system.
Any general failure of the telephone system simply means that someone has to drive to the site and operate controls manually.
"Installers and owners of emergency diesels must assume that they will have to run for a week or more"
User avatar
adam2
Site Admin
Posts: 10897
Joined: 02 Jul 2007, 17:49
Location: North Somerset, twinned with Atlantis

Post by adam2 »

According to this report, the risks are increasing, though it must be said that the source of the report has a vested interest as they sell internet security.
http://www.bbc.co.uk/news/technology-13122339
"Installers and owners of emergency diesels must assume that they will have to run for a week or more"
User avatar
clv101
Site Admin
Posts: 10552
Joined: 24 Nov 2005, 11:09
Contact:

Post by clv101 »

Cyber attack? What about physical attack?

A dozen crews, in a dozen transit vans, painted/dressed up in National Grid colours and equipped with beefy metal cutting equipment could take out a dozen strategic supergrid pylons around the country in one night. Couple of hundred £k and ~30 suitably motivated volunteers would do it.
User avatar
adam2
Site Admin
Posts: 10897
Joined: 02 Jul 2007, 17:49
Location: North Somerset, twinned with Atlantis

Post by adam2 »

Agreed, and arguably more likely.
"Installers and owners of emergency diesels must assume that they will have to run for a week or more"
kenneal - lagger
Site Admin
Posts: 14290
Joined: 20 Sep 2006, 02:35
Location: Newbury, Berkshire
Contact:

Post by kenneal - lagger »

kenneal wrote:You can't do that! What about the staff's human rights to be able to read their emails?
Should have put a smiley after that, I suppose. :shock: :D :D

A physical attack would be more likely. A couple of Molotov cocktails on a substation would probably do the trick, but don't tell anyone nasty. :shock:
Action is the antidote to despair - Joan Baez
User avatar
adam2
Site Admin
Posts: 10897
Joined: 02 Jul 2007, 17:49
Location: North Somerset, twinned with Atlantis

Post by adam2 »

Time to re-visit this old thread, I feel, in view of the growing tensions between Russia and America over alleged internet hacking.
Although these tensions do not DIRECTLY involve the UK, the risk of an attack on the UK national grid are IMHO increasing.
With so little spare generating capacity available, even a small scale attack could have serious consequences.
"Installers and owners of emergency diesels must assume that they will have to run for a week or more"
Snail

Post by Snail »

Seems to be some sort of large-scale cyber attack on the NHS affecting both England and Scotland, causing disruption and cancelled appointments etc.

Expert saying getting into the NHS system may have been accidental after a smaller company could have been targeted.
User avatar
clv101
Site Admin
Posts: 10552
Joined: 24 Nov 2005, 11:09
Contact:

Post by clv101 »

This seems to be global attack, probably the largest one yet. It targets a known, and patched Microsoft vulnerability... 'cept many people/organisations don't keep their software updated. :?
User avatar
adam2
Site Admin
Posts: 10897
Joined: 02 Jul 2007, 17:49
Location: North Somerset, twinned with Atlantis

Post by adam2 »

Certainly cause for concern, IMHO the risks of a successful cyber attack on the grid is increasing.
It would be well to review ones preparations for power outages, whether caused by cyber attack, physical attack, or of course simply running out of gas to fuel power plants.
"Installers and owners of emergency diesels must assume that they will have to run for a week or more"
Post Reply