The water and wastewater systems sector is facing growing cyber threats and attacks due to internet-exposed human-machine interfaces (HMIs).
These devices, used to monitor and control industrial control systems (ICS) such as SCADA systems, have been exploited by threat actors to disrupt operations.
A joint fact sheet from the EPA and CISA highlighted incidents such as the 2024 pro-Russia hacktivist attacks that manipulated HMIs, causing water pumps and blower equipment to exceed normal operating limits. Hackers altered settings, disabled alarms, and changed passwords, forcing facilities into manual operations.
To counteract these risks, the agencies recommend implementing robust security practices, including inventorying internet-exposed devices, implementing strong authentication, securing networks with segmentation and geo-fencing, and updating systems regularly.
Organizations are also urged to leverage free government resources such as vulnerability scanners and security guidelines tailored for water systems.
