U.S. Water Utilities Face Cybersecurity Threats

Iranian-backed hackers target water utilities, highlighting the sector's vulnerability and sparking calls for increased cybersecurity measures.

Iranian-backed hackers targeted the Municipal Water Authority of Aliquippa in Pennsylvania, along with several other water utilities, prompting new warnings from U.S. security officials.
Officials warn of the danger of hackers gaining control of automated equipment to shut down pumps that supply drinking water or contaminate drinking water by reprogramming automated chemical treatments.
Many water utilities, especially smaller ones, lack the necessary funds and expertise for effective cybersecurity measures.
Legislation to step up scrutiny of cybersecurity in water utilities has been passed in a handful of states, but has faced opposition in others, including Pennsylvania and Maryland, where public water authorities fought bills backed by private water companies.
States are applying for grants from a $1 billion federal cybersecurity program, but water utilities will have to compete for the money with other utilities, hospitals, police departments, courts, schools, local governments and others.