(Ionut Arghire – SecurityWeek) – Arkansas City, a small city in Kansas, said its water treatment facility was forced to switch to manual operations while a cybersecurity incident is being resolved.
The incident, described by local media as a cyberattack, was discovered on the morning of September 22 and led to precautionary measures being taken “to ensure plant operations remained secure”, the city announced in an incident notice.
According to city manager Randy Frazer, the water supply has not been affected and the incident has not caused disruption to service.
“Despite the incident, the water supply remains completely safe, and there has been no disruption to service. Out of caution, the water treatment facility has switched to manual operations while the situation is being resolved,” Frazer said.
He also noted that the city has full control of the situation and reassured residents that the drinking water is safe.
Arkansas City says it has notified the relevant authorities of the incident and that they are working with cybersecurity experts to address the issue and return the facility’s operations to normal.
“Enhanced security measures are currently in place to protect the water supply, and no changes to water quality or service are expected for residents,” the city said.
While the city’s notification does not share further details on the incident, it appears that the water treatment plant might have fallen victim to a ransomware attack.
Switching to manual operations suggests that systems were shut down to contain the attack, which is the typical response to incidents involving ransomware.
SecurityWeek has emailed Arkansas City for additional information on the incident and will update this article as soon as a reply arrives.
US water facilities in the US have been facing increasing cyber threats in recent years, and the government has been taking steps to increase the water sector’s resilience to cyberattacks.
Water Treatment Facility in Arkansas City Switches to Manual Mode After Suspected Cyberattack
Arkansas City said a cybersecurity issue at its Water Treatment Facility on September 22, 2024 forced the facility to switch to manual operations.
Russian Sandworm Hackers Target Ukraine’s Power Grid in Coordinated Cyber-Physical Attack
Russia’s Sandworm hackers disrupted power in Ukraine using a novel attack against operational technology (OT) coordinated with missile strikes.
Yokogawa to Sell Unidirectional Gateways from Waterfall Security Solutions Under New Partnership
Yokogawa will offer Unidirectional Gateway cybersecurity products from Waterfall Security Solutions under a new collaboration
2023 Full Day ICS Cybersecurity Training Courses
Conference attendees can register for optional full-day ICS cybersecurity training sessions that take place on Monday, October 24th, 2022.
Researchers Use IoT and IT to Deliver Ransomware Attack Against OT
Critical industries must prepare themselves for a new wave of ransomware attacks specifically targeting OT
Device Security Firm Armis Names Sachin Shah as CTO for OT and ICS
Sachin Shah named CTO at device security firm Armis
OT Network Security Firm Waterfall Security Opens Singapore Office
OT cybersecurity firm Waterfall Security Solutions has opened an office in Singapore to support industrial customers in the APAC region