Grid Security Now!

Grid Security Now!

Michael Mabee – Author of The Civil Defense Book

Menu
  • Home
  • Library
    • Grid Security Library
      • Government Documents on Grid Security
      • OE-417 Electric Disturbance Events Database
      • CIP Violation Database
      • Grid Protection Posts
      • Video (EMP and Grid Security)
      • What is the Electric Grid and How is it Regulated?
    • Civil Defense Library
      • Civil Defense Posts
      • Video (Preparedness)
      • Civil Defense Checklists
  • Fund The Fight!
  • Take Action!
  • About Me
    • About Michael
    • My Book
    • Michael in the Press
    • Subscribe to Mike’s Blog
    • Interviews
    • My Friends
    • Contact Me
Menu
Senate Cybersecurity Hearing

Senate Cybersecurity Hearing: “The Russians are already in the grid!”

Posted on February 16, 2019February 18, 2019 by Michael Mabee
Share the knowledge...Tweet about this on Twitter
Twitter
Share on Facebook
Facebook
Share on LinkedIn
Linkedin
Pin on Pinterest
Pinterest
Share on Reddit
Reddit
Email this to someone
email
Print this page
Print

Cybersecurity hearing reveals that little has been done in past decade


Senate Cybersecurity Hearing

On February 14, 2019 The Senate Committee on Energy and Natural Resources held a hearing entitled: “Hearing to Consider the Status and Outlook for Cybersecurity Efforts in the Energy Industry.”

Unfortunately, the testimony from the people who are supposed to be protecting the electric grid was not confidence inspiring. It confirms what I have been reporting: the regulatory failure in our electric grid. I can boil it down very simply (Senator Martha McSally said something very similar to what I am about to say at 1 hour and 36 minutes).

Timeline of a Looming Cybersecurity Disaster

Here’s my point – a simple timeline with two dates:

Ten years ago, on April 8, 2009 the Wall Street Journal disclosed in an article entitled “Electricity Grid in U.S. Penetrated By Spies”:

Cyberspies have penetrated the U.S. electrical grid and left behind software programs that could be used to disrupt the system, according to current and former national-security officials.

The spies came from China, Russia and other countries, these officials said, and were believed to be on a mission to navigate the U.S. electrical system and its controls. The intruders haven’t sought to damage the power grid or other key infrastructure, but officials warned they could try during a crisis or war.

“The Chinese have attempted to map our infrastructure, such as the electrical grid,” said a senior intelligence official. “So have the Russians.”

On January 10, 2019 – 10 years later – the Wall Street Journal published an article entitled “America’s Electric Grid Has a Vulnerable Back Door—and Russia Walked Through It.” The article reports:

A reconstruction of the hack reveals a glaring vulnerability at the heart of the countryʼs electric system. Rather than strike the utilities head on, the hackers went after the systemʼs unprotected underbelly—hundreds of contractors and subcontractors like All-Ways who had no reason to be on high alert against foreign agents. From these tiny footholds, the hackers worked their way up the supply chain. Some experts believe two dozen or more utilities ultimately were breached.

Have FERC and NERC Addressed Cybersecurity?

So in the last 10 years, have the Federal Energy Regulatory Commission (FERC) and the North American Electric Reliability Corporation (NERC) – the purported “regulators” of the grid – made us safer? Is the regulatory scheme of the electric grid working? The answer is clearly no.

Although FERC Chairman Neil Chatterjee and NERC President and Chief Executive Officer James B. Robb try to woo us into a false sense of security with all their lip service on partnership and collaboration, the only people they have made safer are the Russian and Chinese hackers – who are still freely roaming though the electric grid after a decade.

So what exactly have you guys been doing?

A great example of this regulatory incompetence is Senator Angus King’s questioning of NERC boss James B. Robb starting at 1 hour and 30 minutes. Here is the video clip of this part:

This exchange between Senator King and Mr. Robb is telling:

Sen. King:  “Okay let me ask another question. Do any of our utilities have Kaspersky, Huawei, or ZTE equipment in their system?”

Mr. Robb: “We issued a NERC alert.”

Sen. King: “I didn’t ask you if you issued an alert. I asking you do any of our utilities have ZTE, Huawei, or Kaspersky equipment or software in their system?”

Mr. Robb: “Not to my knowledge.”

Sen. King: “Not to your knowledge. Have you surveyed any of the utilities to determine that? ”

Mr. Robb: “Uhhh, I don’t believe we have.”

Sen. King: “I think that would be a good idea don’t you?” 

Mr. Robb: “I’ll take that on.”

(NERC Chief James Robb looks like a deer in the headlights during this exchange.)

To me, Senator King nails it: “The Russians are already in the grid.”


Hearing: Senate Committee on Energy and Natural Resources

Hearing to Consider the Status and Outlook for Cybersecurity Efforts in the Energy Industry

To View Webcast Click Here

Opening Remarks

  • Sen. Lisa Murkowski Chairman Senate Committee on Energy and Natural Resources 02.14.19 – Murkowski’s Opening Statement (as Delivered).pdf (324.1 KBs)
  • Sen. Joe Manchin Ranking Member Senate Committee on Energy and Natural Resources 02.14.19 – Manchin’s Opening Remarks (as Prepared).pdf (278.4 KBs)

Witness Panel 1

  • The Honorable Neil Chatterjee Chairman Federal Energy Regulatory Commission Chatterjee Testimony 2-14-19 SENR Cmte Hrg.pdf (105.7 KBs)
  • The Honorable Karen Evans Assistant Secretary for Cybersecurity, Energy Security, and Emergency Response U.S. Department of Energy Evans Testimony 2-14-19 SENR Cmte Hrg.pdf (175.0 KBs)
  • Major William J. Keber Executive Officer West Virginia National Guard Critical Infrastructure Protection Battalion Keber Testimony 2-14-19 SENR Cmte Hrg.pdf (49.9 KBs)
  • Mr. James B. Robb President and Chief Executive Officer North American Electric Reliability Corporation Robb Testimony 2-14-19 SENR Cmte Hrg.pdf (138.2 KBs)
  • Mr. David Edward Whitehead Chief Operating Officer Schweitzer Engineering Laboratories, Inc. Whitehead Testimony 2-14-19 SENR Cmte Hrg.pdf (94.6 KBs)

Permalink: https://www.energy.senate.gov/public/index.cfm/2019/2/hearing-to-consider-the-status-and-outlook-for-cybersecurity-efforts-in-the-energy-industry

Related Files

  • Witness List 2-14-19 SENR Cmte Hrg.pdf (26.8 KBs)

C-SPAN Audio of Hearing

Below is an audio version of the hearing from C-SPAN – it starts right away, so the times are different than the archived webcast.

Share the knowledge...Tweet about this on Twitter
Twitter
Share on Facebook
Facebook
Share on LinkedIn
Linkedin
Pin on Pinterest
Pinterest
Share on Reddit
Reddit
Email this to someone
email
Print this page
Print

News

  • A Billion Reasons We Do Not Have Grid Security
  • Money Talks, Grid Security Walks
  • Critical Infrastructure Attacks Expose Regulatory Failures
  • Lawsuit: The Federal Government Must Secure The Grid
  • COVERUP UPDATE: CIP Violation Database and FOIAs
  • Securing America with Frank Gaffney: Threats to the Electric Grid
  • FERC: Who Will Be Responsible For All The Deaths If The Grid Goes Down?
  • Federal Energy Regulatory Commission Lays Down On The Job!
  • EMP Progress Report – A National Disgrace
  • EMP Ignorance Is Bliss – Dr. Peter Vincent Pry
  • China: EMP Threat – A New Report by Dr. Peter Pry
  • FERC Denies Grid Physical Security Complaint, BUT…
  • Secure the Grid Coalition Opposes Senate Bill S.3688
  • Electric Industry Lobbyist’s China Ties Questioned
  • Supply Chain Cybersecurity Complaint Filed with FERC
  • Executive Order 13920: Securing the United States Bulk-Power System
  • Electric Industry Wants to Defer Implementation of Cybersecurity
  • Electric Sector Protests Effective Grid Physical Security
  • Emergency Preparedness: Souhegan and Derry CERT
  • Coronavirus: Don’t Panic, Prepare!
  • New Hampshire Rep. David Testerman on Grid Physical Security
  • Former CIA Director James Woolsey on Grid Physical Security
  • Loopholes in Grid Physical Security Identified
  • FEMA’s Strategic Plan and the NDAA: A Perfect Fit
  • Greg Allison and Michael Mabee Talk Grid Security On YouTube
  • Complaint Filed About Inadequate Electric Grid Physical Security
  • Is the Tail Wagging The Dog in Grid Security?
  • Video: EMP Threat (KSNV News Las Vegas)
  • Why Thomas Popik should be a FERC Commissioner
  • “Wired for Greed: The Shocking Truth About America’s Electric Utilities”

Fund The Fight!


Subjects

Search Website

Subscribe for Updates!

Follow me on Twitter

Tweets by CivilDefenseBK

Click To Get Prepared!

The Civil Defense Book: Emergency Preparedness for a Rural or Suburban Community
The Civil Defense Book Get it now!

Subscribe for updates

Follow Me On Facebook

The Civil Defense Book

2 days ago

The Civil Defense Book
Russia, Iran and China exploit Capitol Hill riot to push information operations, US intel concludeswww.cyberscoop.com/capitol-riot-russia-china-iran-biden-inauguration/ ...

Russia, Iran and China exploit Capitol Hill riot to push information operations, US intel concludes - CyberScoop

www.cyberscoop.com

As America reels from the deadly Capitol Hill insurrection, Russia, Iran and China are using their state media mouthpieces to exploit U.S. divisions and further their interests ahead of Joe Biden’s inauguration, according to a new U.S. intelligence analysis obtained by CyberScoop. The Jan. 14 inte...
View on Facebook
· Share

Share on Facebook Share on Twitter Share on Linked In Share by Email

The Civil Defense Book

4 days ago

The Civil Defense Book
Kim Jong Un Offers a Rare Sneak Peek at North Korea’s Weapons Program: Leader says Pyongyang is developing military drones, a nuclear-powered submarine and surveillance satellites. apple.news/AEW8HnWOTS0Wk23aOI9fZ1g ...

Kim Jong Un Offers a Rare Sneak Peek at North Korea’s Weapons Program — The Wall Street Journal

apple.news

As President-elect Joe Biden prepares to take office, Kim Jong Un offered details on Pyongyang’s pipeline of military hardware during a rare Workers’ Party Congress meeting that ended this week.
View on Facebook
· Share

Share on Facebook Share on Twitter Share on Linked In Share by Email

Fund The fight!


©2021 Grid Security Now! | Theme by SuperbThemes