IOC Experts on the Energy Transfer Partners Attack

There are a number of oil and gas pipelines across the United States. Pipeline leakage is one of the biggest public concerns, and it’s something that happens from time to time. But those of us who don’t work in the industry can forget that there are also sophisticated computer systems behind those pipelines. Cyberattacks to those computer systems can be very costly indeed.

On Monday, April 2nd, a cyberattack against the computer system behind an Energy Transfer Partners’ natural gas pipeline forced the company to temporarily shut it down. After 6pm Eastern Standard Time that day, the computer system was back online.

EDI is the computing system used by Energy Transfer Partners that was attacked. ETP’s competitors, Tallgrass Energy Partners and Kinder Morgan, also use EDI systems, but they were unaffected by this cyberattack. EDI stands for “electronic data interchange,” and the system enables companies like ETP to engage in computer-to-computer document exchanges with customers.

Incident Response

ETP and their vendor Latitude Technologies were able to restore the EDI system on the evening of the day the attack was discovered. Latitude Technologies said, “While we believe things to be fully restored, we will continue to monitor for gaps in functionality.” A spokesperson for ETP said, “It was on a third-party service provider that a number of energy companies use, including us. Our operations were not impacted by their breach. We were back online with them (Monday) evening.”

A Cyberwarfare Risk

As of this writing, most of the details about the type of cyberattack Energy Transfer Partners faced and the attack methodology aren’t publicly known. We also don’t know who or what was behind the attack. But there is reason to be concerned about cyberwarfare from foreign military entities putting America’s industrial infrastructure at risk.

The Department of Homeland (Read more...)

*** This is a Security Bloggers Network syndicated blog from Cylance Blog authored by Kim Crawley. Read the original post at: