Seven minutes before midnight, a decembernatt 2016, lost power in one part of Kiev. Oddly enough, it seemed, nothing to be broken, still had the power station Pivnitjna stopped working. Someone had closed the over the online, via channels that only trusted technician would have access to. The lights went out and electric heating systems began to cool.
Later, it was shown that the outage was the result of a hacking – in plain language that someone had hacked the power grid and closed off. In several months, someone had infiltrated the system without being detected.
the first time something like this happened. Just a year earlier had a different part of Ukraine's electricity grid suffered advanced computer hacking. At about the same time began to power in the united states get the computers hacked by someone who used their access to break into more systems connected to the electricity supply. In the last year pointed US out Russia as responsible.
In the it-säkerhetskretsar had for a long time sounded the alarm about the risks associated with the digitized control of the electricity grid. They would become an easy target for nato has warned many. The attackers could very well have a nationalstats huge resources in the back. Intrusion in the Ukraine, and later in the united states, was a confirmation that the concern was justified – cyber-attacks are already happening and they will continue to happen.
It is against this background that one must see Svenska kraftnät's carelessness with the security clearance of the staff. Without proper review, have senior managers been given the access to sensitive systems and confidential information. Some have been appointed to positions with security class 1, the highest available.
for those who are out to attack the Swedish power grid. Earlier infringement has often been based on fooling a single person, to take over its computer, steal your login details and move on to the central control system.
Individuals in sensitive positions can thus play an absolutely crucial role in whether an invasion succeeds or not. Are they loyal? Proficient? They can be blackmailed, or they can even have their own agenda?
the Consequences of a full-scale attack could be enormous. Think hospitals, heating systems, industry, and communication, which all of the electricity. The backup systems can only manage to cover up a period of time, and then there are critical societal functions without electrical power. In Ukraine, built the intrusion of an astounding arsenal of methods, all designed to delay that the network will be up and running again. The hard drives were erased with special software, telephone systems were knocked out, so alarm is not reached and alternative systems were disconnected.
the events in Ukraine or the US, really how bad it can go. Particularly in the Ukraine has made many to the interpretation that the attacker held back, as it was a test. An exercise in to infiltrate the power grid rather than an attempt to do maximum damage.
But they clearly show that the threat to power grids is not theoretical. Svenska kraftnät's mission is to protect themselves against it. That is why it is spectacular how easy the management has taken in the security protection of their staff.Link to the graphics