A hacker tried to use the vulnerable and unsecured infrastructure controls of water supply servers at Oldsmar, Florida to contaminate the water supply in the city.
He hijacked a remote access system to increase the amount of sodium hydroxide in the water to a potentially deadly level.
The officers at the plant disabled the remote access before any tragedy could take place and now planning to secure the systems from any such incident in the future.
TPRM report: https://scoringcyber.rankiteo.com/company/city-of-oldsmar-florida
"id": "cit163428222",
"linkid": "city-of-oldsmar-florida",
"type": "Vulnerability",
"date": "02/2021",
"severity": "100",
"impact": "6",
"explanation": "Attack threatening the economy of a geographical region"{'affected_entities': [{'industry': 'Public Utilities',
'location': 'Oldsmar, Florida',
'name': 'City of Oldsmar',
'type': 'Government'}],
'attack_vector': 'Remote Access System Hijacking',
'description': 'A hacker attempted to contaminate the water supply in '
'Oldsmar, Florida by increasing the amount of sodium hydroxide '
'to a dangerous level through a vulnerable remote access '
'system. The attempt was thwarted by plant officers before any '
'harm could occur.',
'impact': {'operational_impact': 'Potential Water Contamination',
'systems_affected': 'Water Supply Servers'},
'initial_access_broker': {'entry_point': 'Remote Access System',
'high_value_targets': 'Water Supply Servers'},
'lessons_learned': 'Importance of securing remote access systems',
'post_incident_analysis': {'corrective_actions': 'Secure Remote Access '
'Systems',
'root_causes': 'Unsecured Infrastructure Controls'},
'recommendations': 'Implement robust security measures for infrastructure '
'controls',
'response': {'containment_measures': 'Remote Access Disabled',
'remediation_measures': 'Planning to Secure Systems'},
'threat_actor': 'Unknown Hacker',
'title': 'Cyber Attack on Oldsmar Water Supply',
'type': 'Cyber Attack',
'vulnerability_exploited': 'Unsecured Infrastructure Controls'}