Grid Security Now!

Grid Security Now!

Michael Mabee – Author of The Civil Defense Book

Menu
  • Home
  • Library
    • Grid Security Library
      • Government Documents on Grid Security
      • OE-417 Electric Disturbance Events Database
      • CIP Violation Database
      • Database of Chinese Transformers and Equipment in the U.S. Electric Grid
      • Why Haven’t We Secured the Grid?
      • What is the Electric Grid and How is it Regulated?
      • Grid Protection Posts
      • Video (EMP and Grid Security)
    • Civil Defense Library
      • The cavalry is not coming
      • Civil Defense Posts
      • Video (Preparedness)
      • Civil Defense Checklists
  • Fund The Fight!
  • Take Action!
  • About Me
    • About Michael
    • Michael in the Press
    • Interviews – Michael Mabee
    • Subscribe to Mike’s Blog
    • My Friends
    • Contact Me
  • My Book
Menu
Senate Cybersecurity Hearing

Senate Cybersecurity Hearing: “The Russians are already in the grid!”

Posted on February 16, 2019February 18, 2019 by Michael Mabee
Share the knowledge...Tweet about this on Twitter
Twitter
Share on Facebook
Facebook
Share on LinkedIn
Linkedin
Pin on Pinterest
Pinterest
Share on Reddit
Reddit
Email this to someone
email
Print this page
Print

Cybersecurity hearing reveals that little has been done in past decade


Senate Cybersecurity Hearing

On February 14, 2019 The Senate Committee on Energy and Natural Resources held a hearing entitled: “Hearing to Consider the Status and Outlook for Cybersecurity Efforts in the Energy Industry.”

Unfortunately, the testimony from the people who are supposed to be protecting the electric grid was not confidence inspiring. It confirms what I have been reporting: the regulatory failure in our electric grid. I can boil it down very simply (Senator Martha McSally said something very similar to what I am about to say at 1 hour and 36 minutes).

Timeline of a Looming Cybersecurity Disaster

Here’s my point – a simple timeline with two dates:

Ten years ago, on April 8, 2009 the Wall Street Journal disclosed in an article entitled “Electricity Grid in U.S. Penetrated By Spies”:

Cyberspies have penetrated the U.S. electrical grid and left behind software programs that could be used to disrupt the system, according to current and former national-security officials.

The spies came from China, Russia and other countries, these officials said, and were believed to be on a mission to navigate the U.S. electrical system and its controls. The intruders haven’t sought to damage the power grid or other key infrastructure, but officials warned they could try during a crisis or war.

“The Chinese have attempted to map our infrastructure, such as the electrical grid,” said a senior intelligence official. “So have the Russians.”

On January 10, 2019 – 10 years later – the Wall Street Journal published an article entitled “America’s Electric Grid Has a Vulnerable Back Door—and Russia Walked Through It.” The article reports:

A reconstruction of the hack reveals a glaring vulnerability at the heart of the countryʼs electric system. Rather than strike the utilities head on, the hackers went after the systemʼs unprotected underbelly—hundreds of contractors and subcontractors like All-Ways who had no reason to be on high alert against foreign agents. From these tiny footholds, the hackers worked their way up the supply chain. Some experts believe two dozen or more utilities ultimately were breached.

Have FERC and NERC Addressed Cybersecurity?

So in the last 10 years, have the Federal Energy Regulatory Commission (FERC) and the North American Electric Reliability Corporation (NERC) – the purported “regulators” of the grid – made us safer? Is the regulatory scheme of the electric grid working? The answer is clearly no.

Although FERC Chairman Neil Chatterjee and NERC President and Chief Executive Officer James B. Robb try to woo us into a false sense of security with all their lip service on partnership and collaboration, the only people they have made safer are the Russian and Chinese hackers – who are still freely roaming though the electric grid after a decade.

So what exactly have you guys been doing?

A great example of this regulatory incompetence is Senator Angus King’s questioning of NERC boss James B. Robb starting at 1 hour and 30 minutes. Here is the video clip of this part:

This exchange between Senator King and Mr. Robb is telling:

Sen. King:  “Okay let me ask another question. Do any of our utilities have Kaspersky, Huawei, or ZTE equipment in their system?”

Mr. Robb: “We issued a NERC alert.”

Sen. King: “I didn’t ask you if you issued an alert. I asking you do any of our utilities have ZTE, Huawei, or Kaspersky equipment or software in their system?”

Mr. Robb: “Not to my knowledge.”

Sen. King: “Not to your knowledge. Have you surveyed any of the utilities to determine that? ”

Mr. Robb: “Uhhh, I don’t believe we have.”

Sen. King: “I think that would be a good idea don’t you?” 

Mr. Robb: “I’ll take that on.”

(NERC Chief James Robb looks like a deer in the headlights during this exchange.)

To me, Senator King nails it: “The Russians are already in the grid.”


Hearing: Senate Committee on Energy and Natural Resources

Hearing to Consider the Status and Outlook for Cybersecurity Efforts in the Energy Industry

To View Webcast Click Here

Opening Remarks

  • Sen. Lisa Murkowski Chairman Senate Committee on Energy and Natural Resources 02.14.19 – Murkowski’s Opening Statement (as Delivered).pdf (324.1 KBs)
  • Sen. Joe Manchin Ranking Member Senate Committee on Energy and Natural Resources 02.14.19 – Manchin’s Opening Remarks (as Prepared).pdf (278.4 KBs)

Witness Panel 1

  • The Honorable Neil Chatterjee Chairman Federal Energy Regulatory Commission Chatterjee Testimony 2-14-19 SENR Cmte Hrg.pdf (105.7 KBs)
  • The Honorable Karen Evans Assistant Secretary for Cybersecurity, Energy Security, and Emergency Response U.S. Department of Energy Evans Testimony 2-14-19 SENR Cmte Hrg.pdf (175.0 KBs)
  • Major William J. Keber Executive Officer West Virginia National Guard Critical Infrastructure Protection Battalion Keber Testimony 2-14-19 SENR Cmte Hrg.pdf (49.9 KBs)
  • Mr. James B. Robb President and Chief Executive Officer North American Electric Reliability Corporation Robb Testimony 2-14-19 SENR Cmte Hrg.pdf (138.2 KBs)
  • Mr. David Edward Whitehead Chief Operating Officer Schweitzer Engineering Laboratories, Inc. Whitehead Testimony 2-14-19 SENR Cmte Hrg.pdf (94.6 KBs)

Permalink: https://www.energy.senate.gov/public/index.cfm/2019/2/hearing-to-consider-the-status-and-outlook-for-cybersecurity-efforts-in-the-energy-industry

Related Files

  • Witness List 2-14-19 SENR Cmte Hrg.pdf (26.8 KBs)

C-SPAN Audio of Hearing

Below is an audio version of the hearing from C-SPAN – it starts right away, so the times are different than the archived webcast.

Share the knowledge...Tweet about this on Twitter
Twitter
Share on Facebook
Facebook
Share on LinkedIn
Linkedin
Pin on Pinterest
Pinterest
Share on Reddit
Reddit
Email this to someone
email
Print this page
Print

News

  • 60 Minutes – How secure is America’s electric grid?
  • COVERUP UPDATE: CIP Violation Database and FOIA Lawsuit
  • Q: How Did We Become So Vulnerable?
  • Rate Recovery: How Electric Customers Fund Industry Lobbying
  • Energy Sector Supply Chain Review – U.S. Department of Energy
  • Criminally Negligent Homicide in February 2021 Texas Blackout Deaths?
  • Chinese Transformer Threat Now Confirmed by Two Administrations
  • Secretary of Energy Advisory Board: Comments of Michael Mabee
  • Electricity Advisory Committee: Comments of Michael Mabee
  • How the electric utility industry torpedoed grid security
  • Chinese Transformer Complaint Filed with U.S. Government
  • U.S. Electric Grid Imports More Chinese Transformers in 2020 and 2021
  • Recent Grid Threats: Frank Gaffney and Michael Mabee Break It Down
  • Secret Penalties: The Electric Grid Is Making You Pay Their Fines
  • Government Misses the Boat on Grid Security – Again
  • Critical Electric Infrastructure – The Government Must Step Up
  • FERC Dismisses Texas Grid Collapse Complaint
  • FERC Office of Public Participation: End the Electric Industry Coverup
  • Testimony of Michael Mabee on SB 1606 – All Hazards Grid Security
  • Federal Complaint Filed on Texas Grid Collapse
  • We Are Plugged In To Life Support
  • Texas Blackout: The Unacceptable Outcome of a Foreseeable Event
  • Chinese Transformers in the Electric Grid: Lights Out For NYC?
  • Message to Governor Jennifer Granholm and the Department of Energy
  • Chinese Transformers in the Electric Grid
  • The U.S. Has 300 Chinese Large Power Transformers
  • Senator Murkowski Questions Cybersecurity Order Suspension
  • Grid Supply Chain Cybersecurity Order “Suspended”
  • A Billion Reasons We Do Not Have Grid Security
  • Money Talks, Grid Security Walks

Fund The Fight!


Subjects

Search Website

Subscribe for Updates!

Follow me on Twitter

Tweets by CivilDefenseBK

Click To Get Prepared!

The Civil Defense Book: Emergency Preparedness for a Rural or Suburban Community
The Civil Defense Book Get it now!

Subscribe for updates

Follow Me On Facebook

The Civil Defense Book

2 days ago

The Civil Defense Book
Here Comes the Sun—to End Civilizationwww.wired.com/story/sun-storm-end-civilization/ ... See MoreSee Less

Here Comes the Sun—to End Civilization

www.wired.com

Every so often, our star fires off a plasma bomb in a random direction. Our best hope the next time Earth is in the crosshairs? Capacitors.
View on Facebook
· Share

Share on Facebook Share on Twitter Share on Linked In Share by Email

The Civil Defense Book

2 weeks ago

The Civil Defense Book

The Civil Defense Book updated their address.

www.facebook.com

View on Facebook
· Share

Share on Facebook Share on Twitter Share on Linked In Share by Email

Fund The fight!


©2022 Grid Security Now! | Theme by SuperbThemes