Filed Under:Agent Broker, E&S/Specialty Business

Russian hacking code found in Vermont power utility computer

U.S. intelligence agencies have identified the code that the utility found as one used in what they call operation “Grizzly Steppe,” a far-reaching Russian operation to interfere with November’s presidential election. (Photo: iStock)
U.S. intelligence agencies have identified the code that the utility found as one used in what they call operation “Grizzly Steppe,” a far-reaching Russian operation to interfere with November’s presidential election. (Photo: iStock)

(Bloomberg) -- Computer code connected to Russian cyberattacks by U.S. intelligence agencies has been found in a laptop computer at a Vermont electric utility, a development that emerged a day after the Obama administration hit Russia with sanctions for hacking during this year’s U.S. election.

The laptop wasn’t connected to the power grid at the time, the Burlington Electric Department said in a statement on Friday. It said it scanned its computer network and found the malware after the U.S. Department of Homeland Security sent out an alert about the code to owners and operators of critical infrastructure.

“We took immediate action to isolate the laptop and alerted federal officials of this finding,” utility spokesman Mike Kanarick said in the statement. “Our team is working with federal officials to trace this malware and prevent any other attempts to infiltrate utility systems. We have briefed state officials and will support the investigation fully.”

Such a breach has long been a concern for the U.S. because knocking out a power grid could cause widespread disruptions and hamper police, fire and medical responders. For that reason, computers at utilities are routinely checked for intrusions.

Vermont elected officials denounced the Russian hacking.

‘Manipulate the grid’


“This is beyond hackers having electronic joy rides — this is now about trying to access utilities to potentially manipulate the grid and shut it down in the middle of winter,” Senator Patrick Leahy said in a statement on Friday. “That is a direct threat to Vermont and we do not take it lightly.”

Governor Peter Shumlin and Representative Peter Welch also issued statements.

There was no indication of compromise to customer information or to the security of its system, Burlington Electric General Manager Neale Lunderville said in a note on the municipally-owned utility’s website. Burlington Electric serves about 16,000 residential customers and more than 3,600 commercial customers in Vermont’s largest city.

Skepticism from Trump


U.S. intelligence agencies have identified the code that the utility found as one used in what they call operation “Grizzly Steppe,” a far-reaching Russian operation to interfere with November’s presidential election. President Barack Obama’s administration on Thursday slapped sanctions on Russia for the intrusion and ordered the expulsion of 35 Russian operatives.

While lawmakers of both parties have backed Obama’s actions, President-elect Donald Trump has expressed skepticism at the conclusion of intelligence agencies that Russia was behind the hacking and release of e-mails in an effort to damage his campaign opponent, Democrat Hillary Clinton.

Related: Should you call in the feds after a cyber breach?

“I just want them to be sure because it’s a pretty serious charge,” Trump said Saturday night in Palm Beach at his Mar-a-Lago resort’s New Year’s Eve party. “When you look at the weapons of mass destruction — that was a disaster and they were wrong, and so I want them to be sure. I think it’s unfair if they don’t know.”

Trump has pledged to improve relations with Russian President Vladimir Putin, whose government has denied it was behind the hacking. He praised Putin on Twitter Friday for not retaliating against the U.S. sanctions, saying “I always knew he was very smart!”

On Saturday night, the president-elect said: “Hopefully we’re going to have great relationships with many countries — and that includes Russia and it includes China.”

Not first time Russia linked to utility cyberattack


Homeland Security confirmed it shared technical information with owners of critical U.S. infrastructure to aid them in identifying code involved in Grizzly Steppe. The discovery of the code by a Vermont utility was reported earlier by the Washington Post.

It’s not the first time Russia has been linked to to a cyber attack on a utility. Hackers broke into computers at a utility control center in western Ukraine in December 2014 and shut down substations throughout the region, leaving tens of thousands of people without power. U.S. Senate Armed Services Committee Chairman John McCain, a Republican from Arizona, has said Russia was behind the breach.

Related: Exposures are 'greater than ever,' but opportunity remains in energy insurance

Copyright 2017 Bloomberg. All rights reserved. This material may not be published, broadcast, rewritten, or redistributed.

Related

Ted Koppel warns of cyber threat against electrical grids

The consequences of major cyber attack against the nation's electrical grids could be 'devastating,' veteran journalist tells audience at NAILBA...

Featured Video

Most Recent Videos

Video Library ››

Top Story

Are we safe drivers? Apparently not…

Drivers in the U.S score a 'C' rating for safe driving.

Top Story

NUPC presents Risk Manager Choice Awards at RIMS 2017

AIG, FM Global, Swiss Re and Chubb received awards for their outstanding results in NUPC's Risk Manager Choice Awards.

More Resources

Comments

eNewsletter Sign Up

Specialty Markets Insight eNewsletter

Receive updates and analyses on hard to place and challenging coverages. Sign Up Now!

Mobile Phone

Advertisement. Closing in 15 seconds.