News : This Russia-linked hack is worse than we knew

Tuesday, February 14, 2023

This Russia-linked hack is worse than we knew

Feb 14, 2023

View in browser

By Arianna Skibell

Presented by

A computer hacking illustration.

Russia-linked hackers threatened the U.S. power grid. | shapecharge/iStock

Hackers tied to Russia got dangerously close to knocking out a big chunk of the U.S. power grid last year — and the malware they used is still out there.

The attack, during the early weeks of the Kremlin’s invasion of Ukraine, involved hackers deploying malicious software to try to take down “around a dozen” U.S. electric and liquid natural gas sites, a top cyber executive told POLITICO’s Maggie Miller in a story today.

While the Biden administration disclosed the incident at the time, the new information suggests the threat was more acute than U.S. officials divulged.

In a conversation with Power Switch, Maggie said she was most surprised that the full extent of the threat has managed to skate under the radar, despite details of the attack and the malware — known as PIPEDREAM — being public for nearly a year.

“It is still in existence and could easily be used in the future,” Maggie said.

Robert M. Lee, the founder and CEO of Dragos Inc., which helps companies respond to cyberattacks, told reporters that last year’s attack was “the closest we’ve ever been” to having U.S. infrastructure go offline. Lee said a coalition of U.S. government and cyber industry groups derailed the effort, but he didn’t disclose how.

The discovery last year came three weeks after President Joe Biden warned that Russia was “exploring options for potential cyberattacks” against the United States. Security researchers have said the PIPEDREAM malware is likely connected to Russia, and Lee asserted that it was definitely the “go-to package” of a country aiming to bring down U.S. infrastructure.

While most malware is designed to target one specific facility, PIPEDREAM can target most industrial systems for critical infrastructure, such as the equipment operating electric grids. That one-size-fits-all feature makes it particularly dangerous.

The new disclosure builds on a decade-high surge in cyber and physical attacks against the U.S. power grid, many of them arising from homegrown — not foreign — threats.

Two shootings at Duke Energy Corp. substations in North Carolina knocked out power to 45,000 people in December. A few weeks later, about 14,000 customers in Washington state lost power when someone vandalized four substations.

And earlier this month, federal authorities announced they had foiled an attempt by racially motivated extremists to use assault weapons to bring down Baltimore’s electrical grid.

“It has not been a fun or easy year for grid operators,” Maggie said.

Lee told Maggie he expects PIPEDREAM to pop back up one day. Meanwhile, federal regulators are trying to shore up grid security, most recently in a new rule that aims to increase monitoring of important systems.

It's Tuesday— thank you for tuning in to POLITICO's Power Switch. I'm your host, Arianna Skibell. Power Switch is brought to you by the journalists behind E&E News and POLITICO Energy. Send your tips, comments, questions to askibell@eenews.net.

A message from ConocoPhillips:

ConocoPhillips joined communities on the North Slope and across Alaska to ensure the development of the Willow project is environmentally and socially responsible. Willow will create opportunities for Alaska Native communities and employment for skilled union labor. Learn more about the multi-year public consultation process and read what Alaskans are saying about Willow here.

Listen to today’s POLITICO Energy podcast

Today in POLITICO Energy’s podcast: Josh Siegel and Kelsey Tamborrino break down China’s role in the American low-carbon energy transition and why GOP lawmakers are mad.

A message from ConocoPhillips:

Power Centers

An Archer-Daniels-Midland Co. plant in Decatur, Ill.

An Archer-Daniels-Midland Co. plant in Decatur, Ill. | PR Newswire

Carbon capture dilemma
Republican-led states like Texas and North Dakota have opened their arms to carbon capture projects as an avenue to keep oil, gas and coal relevant as the nation moves away from fossil fuels, writes Jeffrey Tomich.

But Illinois is among the few blue states that could emerge as hubs for carbon sequestration — a fact that is already raising alarm among some key Democrats.

Climate VIPs
Environmentalists, labor leaders and industry representatives met with senior White House climate officials last year to discuss their priorities, according to new visitor logs, write Robin Bravender and Timothy Cama.

The records offer insight into the people who snagged coveted White House sit-downs as the administration got to work implementing the biggest climate law in U.S. history.

Russia sanctions
The EU is discussing whether to sanction a Dubai-based shipping company, which is suspected of helping Russia circumvent restrictions on its oil exports, writes Jakob Hanke Vela.

Three diplomats told POLITICO the company may have come into possession of a fleet of Russian tankers that were no longer allowed to ship oil because of EU and international sanctions on Russian-owned entities.

You heard it here first

Ben Ray Lujan walking in the U.S. Capitol.

Sen. Ben Ray Luján walks to a meeting at the U.S. Capitol. | Francis Chung/POLITICO

Plug the well: A bipartisan group of senators is slated to introduce a bill Wednesday that would help find and repair abandoned gas and oil wells, which leak methane and other toxic air pollutants.

“There are more than 2 million abandoned oil and gas wells across America that pose tremendous health, safety and environmental risks to the surrounding communities," said Democratic Sen. Ben Ray Luján of New Mexico, one of the measure's co-sponsors.

New report: An advocacy group has found that Michigan residents experienced a cumulative 14.8 hours of power interruptions in 2021, with an economic impact of nearly $3.5 billion. That's worse than 2020, when customers saw 6.9 hours of interruptions with a cost of $1.4 billion.

DOWNLOAD THE POLITICO MOBILE APP: Stay up to speed with the newly updated POLITICO mobile app, featuring timely political news, insights and analysis from the best journalists in the business. The sleek and navigable design offers a convenient way to access POLITICO's scoops and groundbreaking reporting. Don’t miss out on the app you can rely on for the news you need, reimagined. DOWNLOAD FOR iOS– DOWNLOAD FOR ANDROID.

Subscriber Zone

A showcase of some of our best subscriber content.

Nikki Haley smiles while appearing on a TV program.

Former U.N. Ambassador Nikki Haley visits "Fox & Friends" at Fox News Channel Studios. | John Lamparski/Getty Images

Former U.N. Ambassador Nikki Haley is set to become the second Republican to enter the 2024 presidential race, running on a resume that includes helping the Trump administration withdraw from the Paris climate agreement.

The Biden administration has opened a competition for $27 billion in clean-energy spending targeted at hard-hit communities.

A direct air capture pioneer is laying the groundwork to develop over a dozen facilities in the United States capable of permanently removing carbon dioxide from the atmosphere.

That's it for today, folks! Thanks for reading.

LISTEN TO POLITICO'S ENERGY PODCAST: Check out our daily five-minute brief on the latest energy and environmental politics and policy news. Don't miss out on the must-know stories, candid insights, and analysis from POLITICO's energy team. Listen today.

A message from ConocoPhillips:

The Willow project combines state-of-the-art technology with a strong commitment to environmental stewardship. The benefits: Willow will produce much needed domestic energy and provide billions in revenue to local, state and federal governments. We are proud to produce the energy America needs. Learn more about the Willow project and the benefits it offers.