Please share far and wide!

Wednesday, June 28, 2017

US Nuclear Plant Hacked Today, per ABC news citing Unamed Government Officials

NOTE: added to bottom, new information about Entergy's "Nuclear 17" the NRC nickname for a particular and recent hack.   Of course there was no immediate threat to the public.   And why are we up to "17"?

--------------------------------------------
This from ABC News TODAY (you know, fake news).   A Google search, shown on the right side image,  indicates that all of the top search page results all use ABC as the source, and almost all use the exact same words as ABC.    

Federal authorities are investigating a breach into computer systems of at least one U.S. nuclear power plant, sources familiar with the matter tell ABC News. 
 One U.S. official called this an "ongoing matter" that is still being investigated. No public word has been given on who may be responsible, but authorities are looking at the possibility that a nation-state may be behind the hack.
Funny how these "Government Officials" are now never even named.    As if there would have to be some justification for remaining an anonymous source in a case like this?

I wonder how long before another anonymous official postulates that "Russia would have the capability of doing this"

Here is the story:
http://abcnews.go.com/Politics/us-nuclear-plants-computer-system-hacked/story?id=48314345
------------------------------------------------------------------------------
stock here--In true conspiracy fashion, it is verified that radiation reporting stations can be hacked to provide false readings, no readings.   Another takeaway, there is no fix, its a basic problem with the systems.

"In this [Black Hat] talk, I'm going to try to explain how to reverse-engineer an entire radio protocol, from physical to application layer," he says.
An attacker could wage a cyberattack on these devices as far away as 20 kilometers, he says. "You don't need to be near the facility to attack it," Santamarta says. And there are plenty of tools available for an attacker to jump onto the RF network. "The problem with radio is it's difficult to mitigate" an attack via it, he says.
The weak RF protocols and firmware could allow an attacker to inject fake radiation readings, so that if there were a radiation accident or leak, it couldn't be detected, for example. Or the reverse: it could send phony readings of high radiation levels when none were actually present, he says.


 http://www.darkreading.com/vulnerabilities---threats/nuclear-plants-hospitals-at-risk-of-hacked-radiation-monitoring-devices/d/d-id/1329200

--------------------------------------------------------------------------
stock here---if memory served me correctly, and it did, I remembered a number of attacks just

recently.

A German nuclear plant suffered a disruptive cyber attack, the news was publicly confirmed by the IAEA Director Yukiya Amano.
and here is another one were they achieved in placing malware on a non-internet connected computer network that controlled movement of spent fuel...

https://www.techworm.net/2016/10/nuclear-power-plant-hacked-hackers-tried-steal-ingredients-dirty-bombs.html
Gundremmingen officials said the IT system was not connected to the Internet and that the virus may have been carried into the network on a USB an employee used on his office or home computer, which would be the real source of the contamination.
The virus that was discovered in the system at the Gundremmingen nuclear plant was used to load and unload nuclear fuel from the power plant’s Block B and then transfer old fuel to the warehouse.
---------------------------------------------------------------------------
And in South Korea, hackers got into the computer systems of a nuclear plant stole, note this "other internal information about the plant".

The spin on the story is that is just focused on blueprints, which is bad enough, but pretended that it was the blueprints that were the most important thing, and that the hackers "threatened to release more blueprints."

The cyber attack came into light after a hacker posted blueprints of nuclear reactors online and threatened further "leaks" unless authorities close down the reactors. According to the South Korean Yonhap News Agency, the hacker was able to access blueprints of reactors, floor maps and other internal information on the plant. 

-----------------------------------------------------------------------------
Makes you feel all warm and fuzzy, right?   Fukuleaks does a great job of updating status in June 2017

http://www.fukuleaks.org/web/?p=16310

JAEA Plutonium Accident
More Thyroid Cancers
Mutant Rice Erases Rumors 
More Fukushima Contractor Graft 
Fukushima Robots
Contamination Found Again

-----------------------------------------------------------------------
More detailed hacking information HERE
Including "Nuclear 17"
U.S. authorities are investigating a cyber intrusion affecting multiple nuclear power generation sites this year, E&E News has learned.
There is no evidence that the nuclear energy industry's highly regulated safety systems were compromised. But any cybersecurity breach — targeted or not — at closely guarded U.S. nuclear reactors marks an escalation of hackers' probes into U.S. critical infrastructure.
Electricity-sector officials confirmed yesterday that they are working to unpack the significance of the secretive cyber event, code named "Nuclear 17."
Asked about the case, a representative from the North American Electric Reliability Corp. (NERC) said the nonprofit grid overseer "is aware of an incident" and has shared information with its members through a secure portal.
U.S. energy utilities pass around information on the latest hacking threats and vulnerabilities through NERC's Electricity Information Sharing and Analysis Center. That organization "is working closely with the government to better understand any implications this incident might have for the electricity industry," NERC spokeswoman Kimberly Mielcarek said in an emailed statement.
 Entergy Corp., which owns and operates nuclear plants across several states, from Louisiana to New York, declined to offer details about the incident, citing corporate security policy. "In keeping with our rigorous procedures to protect our computers and other information systems from cyber and physical harm, Entergy is aware of, but has not been affected by, the recent cyber incident named 'Nuclear 17,'" spokeswoman Emily Parenteau said in an emailed statement.
-------------------------------------------------------------------------

PlowboyGrownUp
Back in 2014 "Hacking of South Korean Nuclear Reactors Poses No Danger
James Conca" He blamed it on some anti-nuclear group.

https://www.forbes.com/sites/jamesconca/2014/12/24/hacking-of-south-korean-nuclear-reactors-poses-no-danger/#6e4b7ba21094

 stock here, ya PlowboyGrownUp, I remember that article where he assured everyone that Nuclear Plants are ANALOG.   And he trotted out these full on lies:

The hackers can be forgiven for not knowing that nuclear plant operations and safety systems at nuclear plants are still analog, just like in the United States. The only systems that are digital, and connected to the internet, are administrative things like personnel files, procedures, e-mails, and environmental and other data acquisition, displaying and reporting. 
The cyber attack came into light after a hacker posted blueprints of nuclear reactors online and threatened further "leaks" unless authorities close down the reactors. According to the South Korean Yonhap News Agency, the hacker was able to access blueprints of reactors, floor maps and other internal information on the plant.





2 comments:

  1. Why couldn't it be North Korea? They have real motives vs assigned motives in the case of Russia.

    ReplyDelete
    Replies
    1. It sure could be North Korea, but I don't think we need to "Trump up" the case against them, I think we can attack now based on their ability to nuke our staunch Allie, Japan, or South Korea. Or it could be fake news...it is suspicious, another anonymous government source......hmmmm

      Delete

Insightful and Relevant if Irreverent Comments