Hackers Breached A Florida Water Treatment Facility In Failed Attempt To Poison Residents
According to the press conference with Pinellas County Sheriff Bob Gualtieri, the system was regularly accessed remotely, so the operator didn't think much of it. Upon the second attack and attempted change of sodium hydroxide through the “supervisory control and data acquisition” (SCADA) system, the plant operator quickly reverted the change and reported the issue. At present, Reuters reports that the remote access happened through TeamViewer, a popular remote access software, according to the sheriff.
While Gualtieri explained that “In order to get into the system, somebody had to use some pretty sophisticated ways of doing it,” it may not have taken much in all actuality. One bad password, open port, or compromised piece of software, including but not limited to TeamViewer, could have led to the cybersecurity issue. It is likely we will find out more in the coming days as the investigation continues, but for anyone with critical infrastructure under their purview, it is time to batten down the hatches as hackers are out to cause harm.