With a central role in modern electrical systems, digital substations are of particular interest to cybercriminals. Their use of Ethernet communications to transfer information between substations and utility enterprise systems makes them more vulnerable to attacks, giving hackers the ability to disrupt operations at banks, gas stations, and emergency services. From January through August 2022, there were 101 cyberattacks nationwide on equipment that delivers electricity.
Utility systems and substations, which have a key role in today’s electrical infrastructures, can be vulnerable to cyberattacks without proper security measures and protection. Because coordinated cyberattacks can cause highly disruptive outages, substation cybersecurity is essential and should be based on concepts that include defense-in-depth, cyber kill-chain mapping, and intelligence-driven cybersecurity.
New Cyber Threats Force Electric Utilities’ Hands
Cybersecurity was not a priority for many electric utilities until recently, prior to national regulatory standards. Advanced threat groups using Pipedream, a malware kit specifically developed to disrupt industrial processes, have attacked critical…