In Florida city, hackers try to poison the drinking water

Feb 9, 2021, 5:30 AM

In this screen shot from a YouTube video posted by the Pinellas County Sheriff's Office, Pinellas C...

In this screen shot from a YouTube video posted by the Pinellas County Sheriff's Office, Pinellas County Sheriff Bob Gualtieri speaks during a news conference as Oldsmar, Fla., Mayor Eric Seidel, left, listens, Monday, Feb. 8, 2021, in Oldsmar, Fla. Authorities say a hacker gained access to Oldsmar's water treatment plant in an unsuccessful attempt to taint the water supply with a caustic chemical. (Pinellas County Sheriff's Office via AP)

(Pinellas County Sheriff's Office via AP)

A hacker gained unauthorized entry to the system controlling the water treatment plant of a Florida city of 15,000 and tried to taint the water supply with a caustic chemical, exposing a danger cybersecurity experts say has grown as systems become both more computerized and accessible via the internet.

The hacker who breached the system at the city of Oldsmar’s water treatment plant on Friday using a remote access program shared by plant workers briefly increased the amount of sodium hydroxide by a factor of one hundred (from 100 parts per million to 11,100 parts per million), Pinellas County Sheriff Bob Gualtieri said during a news conference Monday.

Sodium hydroxide, also called lye, is used to treat water acidity but the compound is also found in cleaning supplies such as soaps and drain cleaners. It can cause irritation, burns and other complications in larger quantities.

Fortunately, a supervisor saw the chemical being tampered with — as a mouse controlled by the intruder moved across the screen changing settings — and was able to intervene and immediately reverse it, Gualtieri said. Oldsmar is about 15 miles (25 kilometers) northwest of Tampa.

Gualtieri said the public was never in danger.

But he did say the intruder took “the sodium hydroxide up to dangerous levels.”

Oldsmar officials have since disabled the remote-access system, and say other safeguards were in place to prevent the increased chemical from getting into the water. Officials warned other city leaders in the region — which was hosting the Super Bowl — about the incident and suggested they check their systems.

Experts say municipal water and other systems have the potential to be easy targets for hackers because local governments’ computer infrastructure tends to be underfunded.

Robert M. Lee, CEO of Dragos Security, and a specialist in industrial control system vulnerabilities, said remote access to industrial control systems such as those running water treatment plants has become increasingly common.

“As industries become more digitally connected we will continue to see more states and criminals target these sites for the impact they have on society,” Lee said.

The leading cybersecurity firm FireEye attributed an uptick in hacking attempts it has seen in the last year mostly to novices seeking to learn about remotely accessible industrial systems. Many victims appear to have been selected arbitrarily and no serious damage was caused in any of the cases — in part because of safety mechanisms and professional monitoring, FireEye analyst Daniel Kapellmann Zafra said in a statement.

“While the (Oldsmar) incident does not appear to be particularly complex, it highlights the need to strengthen the cybersecurity capabilities across the water and wastewater industry,” he said.

What concerns experts most is the potential for state-backed hackers intent on doing serious harm targeting water supplies, power grids and other vital services.

In May, Israel’s cyber chief s aid the country had thwarted a major cyber attack a month earlier against its water systems, an assault widely attributed to its archenemy Iran. Had Israel not detected the attack in real time, he said chlorine or other chemicals could have entered the water, leading to a “disastrous” outcome.

Tarah Wheeler, a Harvard Cybersecurity Fellow, said communities should take every precaution possible when using remote access technology on something as critical as a water supply.

“The systems administrators in charge of major civilian infrastructure like a water treatment facility should be securing that plant like they’re securing the water in their own kitchens,” Wheeler told the Associated Press via email. “Sometimes when people set up local networks, they don’t understand the danger of an improperly configured and secured series of internet-connected devices.”

A plant worker first noticed the unusual activity at around 8 a.m. Friday when someone briefly accessed the system but thought little of it because co-workers regularly accessed the system remotely, Gualtieri told reporters. But at about 1:30 p.m., someone accessed it again, took control of the mouse, directed it to the software that controls water treatment and increased the amount of sodium hydroxide.

The sheriff said the intruder was active for three to five minutes. When they exited, the plant operator immediately restored the proper chemical mix, he said.

Other safeguards in place — including manual monitoring — likely would have caught the change in the 24 to 36 hours it took before it reached the water supply, the sheriff said.

Investigators said it wasn’t immediately clear where the attack came from — whether the hacker was domestic or foreign. The FBI, along with the Secret Service and the Pinellas County Sheriff’s Office are investigating the case.

Russian state-backed hackers have in recent years penetrated some U.S. industrial control systems, including the power grid and manufacturing plants while Iranian hackers were caught seizing control of a suburban New York dam in 2013. In no case was damage inflicted but officials say they believe the foreign adversaries have planted software boobytraps that could be activated in an armed conflict.

—-

Bajak reported from Boston.

We want to hear from you.

Have a story idea or tip? Send it to the KSL NewsRadio team here.

Damage from the Cottonwood Fire can be seen from Highway 153 in Beaver County on Thursday, July 9, ...

Heather Peterson

Beaver County suffers from loss of tourism due to Cottonwood Fire

The Cottonwood Fire is ruining summer tourism in Beaver County, as businesses and county leaders grapple with the lost income.

12 hours ago

FILE - This photo provided by the U.S. Geological Survey shows polymetallic nodules in a sample fro...

Dánica Coto, Associated Press

The US plans to auction off sections of water around American Samoa in a push for deep-sea mining

The U.S. government plans to auction off massive sections of water surrounding American Samoa for potential deep-sea mining in an unprecedented move expected to draw criticism from many countries.

13 hours ago

A woman flashes a victory sign while walking at Tehran's traditional main bazaar, Iran, Thursday, J...

Jon Gambrell, Associated Press

US and Iran escalate strikes across Mideast; bridges and a water plant hit

The US and Iran escalated attacks across the Middle East on Friday, trading strikes aimed at infrastructure and military targets as their battle over the Strait of Hormuz intensified.

13 hours ago

Jon Anderson speaks after being named as Utah Valley University's next president on Friday. The Uta...

Logan Stefanich, KSL

‘Best days at UVU are ahead’: Jon Anderson appointed president at Utah Valley University

The Utah Board of Higher Education on Friday voted unanimously to appoint Jon Anderson as the next Utah Valley University president.

13 hours ago

Two male piglets born June 14 are the first warthog piglets born at Utah's Hogle Zoo. (Photo credit...

Simone Seikaly

2 warthog piglets born at Utah’s Hogle Zoo

Hogle Zoo announced the recent births of two common warthog piglets. They are healthy, but likely won't stay in Utah.

14 hours ago

Sohail is shown in a hospital after he sustained critical injuries in a stabbing in West Valley Cit...

Pat Reavy, KSL

Valley Fair Mall stabbing incident charged as hate crime

A Taylorsville man accused of stabbing another man multiple times at Valley Fair Mall, allegedly because of his faith, has been charged with two counts of attempted murder.

15 hours ago

Sponsored Articles

...

Bear Lake

Road trip ready: How Bear Lake became the go-to destination for Western U.S. travelers

Whether you are chasing pristine beaches, fresh raspberry shakes, or endless water sports, this sponsored guide—brought to you in partnership with Bear Lake —uncovers everything you need to plan the ultimate getaway.   There’s nothing quite like the thrill of hopping in the car with your favorite snacks in tow and heading out for a […]

...

Harper Clinic

A new standard of care: How Harper Clinic’s IOP is changing the face of mental health treatment in Utah

This article is sponsored by Harper Clinic, a Utah-based clinic offering FDA-approved TMS therapy for treatment-resistant depression.    Utah’s mental health crisis is leaving many residents caught in an uncomfortable middle ground: struggling too much for weekly therapy alone, but unable to step away from work, parenting or daily life for inpatient treatment. As demand […]

...

Harper Clinic

Breaking free from depression: How Harper Clinic’s TMS Therapy can help

This article is sponsored by Harper Clinic, a Utah-based clinic offering FDA-approved TMS therapy for treatment-resistant depression.    The weight of depression is real. Many people spend years fighting it, adjusting medications, managing side effects and wondering if this is simply how life is going to feel.   According to the World Health Organization, depression affects […]

mental health...

Andrew Adams, KSL

Library discussions bring men’s mental health to the surface

Therapists say it’s common for men to repress things like trauma, grief, stress and anxiety. Now, a new weekly series of discussions aims to help men bring it all to the surface.

...

Bear Lake Convention & Visitors Bureau

Cozy up in Bear Lake: Discover the magic of a winter getaway

SALT LAKE CITY – The holiday season shines brightest when time slows down and loved ones gather. Gifts, decorations and festive music come and go, but shared experiences tend to last much longer. Research supports that idea. Dr. Theresa E. DiDonato told Psychology Today that vacations can strengthen relationships by creating meaningful time away from daily […]

...

Harper Clinic

Rewriting the path to healing: Inside Harper Clinic’s whole-person mental health model

OREM — A few decades ago, you’d have had a hard time finding a doctor to treat both your mind and body; And a century ago, you’d have been hard-pressed to find a doctor to treat your mind at all. Today, medical professionals are understanding more and more the undeniable connection between the body and […]

In Florida city, hackers try to poison the drinking water