Hackers attack major energy companies through their subcontractors

Fuel Fix:
Sloppy security policies are leaving even large energy companies vulnerable to cyberattacks routed through their subcontractors, according to a report released Wednesday by Houston-based security firm Alert Logic.

While the largest companies in the energy industry have taken steps to protect themselves from intruders, they have failed to insist on the same vigilance from their subcontractors, according to the report.

“To put it nicely, I’d say it’s not a mature process,” said Stephen Coty, director of threat research for Alert Logic. “I don’t think that they hold their contractors up to the same standards that they do their employees. I think that’s a growth issue, or understanding the risks.”

Malware offshore: Danger lurks where the chips fail

Alert Logic has reason to worry. Its energy industry customers are targeted more often than its customers in any other industry and faced nearly 9,000 threats between Jan. 1 and May 23, the company said. Nearly half of those attacks were the result of malware, which can be loaded onto computers through contaminated links in emails or on USB drives. Thirty-one percent of the threats were brute force attacks, in which hackers repeatedly attempt to crack passwords, the report said.

“That’s higher than any other industry that’s going on out there,” Coty said. “The only thing that might even come close to this would be financial.”

It’s not hard to understand why, Coty said.

“People are wanting to know where they’re drilling, what their secrets are, what’s the formula (for hydraulic fracturing fluids),” Coty said. “This is all data that people are interested in … even a major company overseas want to know those formulas.”

The U.S. Department of Homeland Security reported in January that the energy industry received 41 percent of all reported cyber attacks in 2012, more than any other industry.
...
There is more.

I think Iran is behind some of these attacks, particularly the malicious attempts to shut down operations.  Data thieves make up another category.  Companies need to develop a way to trace the return address on teh hackers and deal with them through the legal system if they can be reached, or by other means if they cannot.

Comments

Post a Comment

Popular posts from this blog

Should Republicans go ahead and add Supreme Court Justices to head off Democrats

Washington Post: Some Democrats eye adding more justices to the Supreme Court to change its ideological bent The once-remote idea has gained the attention of liberals angered by the GOP push to remake the federal courts. Probably the easy way to defeat this court-packing scheme is for Trump to propose doing the same thing now.  It would lead to Democrat denunciations and claims that it would be wrong, thereby blowing up any attempt by them in the unfortunate event of Democrats winning a presidential election.
Read more

29 % of companies say they are unlikely to keep insurance after Obamacare

Conn Carroll: A new survey of 368 midsize to large companies found that 29% of them are considering terminating their active employee health care plans when Obamacare is full implemented in 2014. Only 71% of employers surveyed said they did not expect to drop their health coverage, while 20% said they did not know and 9% said they were planning to exit. The latest survey, conducted by Towers Watson, echoes an ealier survey by McKinsey & Co. finding that 30% of private-sector employers were planning to drop their employee health insurance coverage by 2014. When the Congressional Budget Office crunched Obamacare's spending numbers, they estimated that only 7% of employees currently covered by employer-sponsored plans would lose their plans. ... This means the cost of the health care fiasco will be hundreds of billions more than estimated by the CBO and Congressional Democrat. It is also clear that Obama's pledge that you could keep your health care plan if you wanted t
Read more

Bin Laden's concern about Zarqawi's remains

James Robbins: ... Bin Laden suggests that President Bush should allow Zarqawi’s body to be returned to his family in Jordan, but this is a matter that is up to the Jordanian government, which so far has not shown much interest in facilitating a homecoming. Bin Laden mocks King Abdullah II, calling him a Coalition minion, and asking “w hat scares you about Abu Musab after he’s dead? You know that his funeral, if allowed to happen, would be a huge funeral showing the extent of sympathy with the mujahedin.” A large crowd would definitely turn out, though most people would be on hand to demonstrate their anger and disgust. Last November’s hotel bombings in Amman , masterminded by Zarqawi, are still fresh in people’s memory, and mentioning them to Jordanians has the same visceral impact as memory of the 9/11 attacks does here. Jordan has adopted a zero-tolerance policy towards those who choose to mourn the country’s least favorite son, and four opposition members of parliament who paid con
Read more