Environmental, Health and Safety News: Ugh...NUCLEAR FACILITIES NOT READY FOR CYBERATTACKS: WHAT’S THE "FALLOUT"? (Not Punny)

Oct 8, 2015

Ugh...NUCLEAR FACILITIES NOT READY FOR CYBERATTACKS: WHAT’S THE "FALLOUT"? (Not Punny)

Securityintelligence - Nuclear facilities are now a critical facet of the American utility market. According to the Nuclear Energy Institute (NEI), these facilities generated almost 20 percent of U.S. electricity through 2014, with 99 reactors in use across the country. Owing to the volatile nature of the materials and processes in any nuclear plant, companies have developed excellent physical safety and security procedures.

But as noted by a new Chatham House report based on interviews with 30 industry experts, cybersecurity risk is underestimated at nuclear facilities, leaving these critical producers open to cyberattacks. If plants are breached, what's the fallout?

The Myth of Air

A recent SecurityWeek article discusses some of the reasons for this lack of nuclear cyber readiness. The biggest problem? A belief that air-gapped systems effectively curtail the risk of cyberattack. The idea here is that since potentially vulnerable points such as industrial control system (ICS) software are often isolated from the Internet, there's little chance they could be compromised by attackers. The Chatham report, however, found that many nuclear facilities use technology such as virtual private networks (VPNs) to forge outside-facing connections — and in some cases, plant operators aren't even aware they exist.

Risk assessment is also problematic. The nuclear industry doesn't have a set of unified guidelines for measuring such risk, and the infrequency of cyber incident disclosures often provides a false sense of security. And according to the report, "very few" plants actually take steps — such as installing software patches, for example — to mitigate security risks. What's more, most are reliant on perimeter defenses alone to stop attackers, which hasn't been successful for retail, finance, manufacturing or other energy companies.

Culture also plays a role. As noted by Dark Reading, nuclear operations and IT staff don't always get along. Operations employees are focused on preventing accidental nuclear incidents, while IT professionals focus on curtailing intentional damage. Add in a different set of employment standards for regular staff and IT teams and it's not surprising to see that cybersecurity isn't making headway.

In sum: Nuclear facilities are protected only by myth and miscommunication. And that's a problem.

Please read on at:

https://securityintelligence.com/news/nuclear-facilities-not-ready-for-cyberattacks-whats-the-fallout/

Site Info & Links

Message to first time readers:

Optimism and an open mind are the most radical political acts there are.

We have thousands of energy options that can save our economy and planet without sacrificing our resources or lifestyles.

The general public only hears of the few options that line the pockets of the few that result in the suffering of the many.

The public information on this website makes it easy for anyone to clearly understand how viable and abundant our future can really be.

We are not activists, treehuggers or politicians... we are EHS professionals who have thoroughly enjoyed everything this planet and its people have offered us and want to extend the quality of life for both.

NOTE: I post articles because I think they are of interest. Doing so doesn’t mean that I necessarily agree with every—or any—opinion in the posted article. And although I often blog about disagreements, it is VERY important to understand that I agreed more with the ideas of President Obama and Dr. Chu than disagreed. (it is just part of democracy, it gives balance and is vital)

Quote of the year:

"If you put the federal government in charge of the Sahara Desert, in five years there'd be a shortage of sand." - Milton Friedman

Word of the year:

"malapropism: the usually unintentionally humorous misuse of a word,"

Freedom isn't free, just ask any soldier.

From me to you - Thanks!

No I don't support the idea of never ending war in our world.

But I do have to support the people who have given me the right and freedom to complain about it.

Please support our veterans by doing anything you can to boost theirs spirits and hope.

AnySoldier.com

Older Posts

Quote of the year 07'... "It's very difficult to make good public policy without good science, and it's even harder to make good public policy with bad science," Union of Concerned Scientists,

Cost of the War in Iraq

(JavaScript Error)

Cost of one life lost: priceless

OSHA 35-Year Milestones

My Companies Websites:

www.neutralsolution.com www.neutralcleaning.com www.neuhomecare.com

SITE DISCLAIMER:

I write a lot of this before I have my coffee.

Getting up every morning before 4am... the only thing that looks good is coffee.

I do not think President Obama regularly drank coffee we he was in senate,

but he may want to try it on his new job.

WARNING: coffee is harmful to the environment, small woodland animals and people who like to maintain status quo

The blog provides information of a general & public nature regarding national or other developments. None of the information contained herein is intended as legal advice or opinions relative to specific matters, facts, situations or issues. Additional facts, information or future developments may affect the subjects addressed in this blog. You should consult with an expert about your particular circumstances before acting on any of this information because it may not be applicable to your situation. This blog contains information and links to sites which are not owned or maintained by myself. I am not responsible for the content, linked sites, and the views expressed on linked sites do not necessarily reflect my views or opinions. The information contained herein is provided for personal, non-commercial, educational, entertainment and informational purposes only and does not constitute a guarantee of information or facts. I make no claims, expressed, implied, or statutory regarding the accuracy, timeliness, completeness, or correctness of any material contained herein. Since the conditions of use are outside my control, the individual visitor is entirely responsible for determining the appropriateness and applicability of all information contained herein.

This website is licensed under a Creative Commons License.

BTW - Thanks nextweb for the feedburner hack ;-)

What are our favorite blog feeds?
----------------------------------------
There is not enough room to list all...but, Here are a few good ones in no particular order.
The best one would be EHS News of course ;-)

Environmental Health & Safety News

Regulatory Compliance News

Environmental News Bits Laura Barnes Rocks!
Environmental Science & Technology - ACS.org
Environmental, Health & Safety

Union of Concerned Scientists (UCS)
SEJ Environmental Journalism Today
Air Resources Board What's New

Environmental Health News

Environment - Reuters News

The Independent - Environment

Guardian Environment Network

NIEHS - National Institute of Environmental Health Sciences

Gristmill

Dot Earth

U.S. EPA News