Cyberattack hits US water utility, affecting 14 million customers

Oct 8

Craig Nigrelli Anchor

By Craig Nigrelli (Anchor), William Jackson (Producer), Kaleb Gillespie (Video Editor)

American Water Works, the largest regulated water and wastewater utility in the United States, reported a cyberattack on Monday, Oct. 7. The breach impacted more than 14 million customers across 14 states and 18 military installations.

Bias Distribution Powered by Ground News™

The Camden, a New Jersey-based company, said it detected unauthorized activity within its computer networks on Oct. 3, prompting immediate protective measures, including shutting down certain systems to contain the breach.

Download the SAN app today to stay up-to-date with Unbiased. Straight Facts™.

Point phone camera here

American Water emphasized that its water and wastewater operations were not affected by the attack. However, the company paused its billing systems as a precaution and assured customers they will not face late fees while the systems are offline.

The company is working with third-party cybersecurity experts and law enforcement to investigate the incident and determine its full scope.

In a regulatory filing, American Water said it could not yet predict the full impact of the breach but it does not expect the incident to materially affect its financial condition or operations. The company operates more than 500 water and wastewater systems in about 1,700 communities.

The cyberattack comes as U.S. officials express increasing concern over vulnerabilities in critical infrastructure. Recently, U.S. authorities warned of foreign actors, including Chinese intelligence services, targeting sectors like water treatment facilities and broadband providers.

American Water has not disclosed the source of the attack. The incident, however, adds to growing concerns about cybersecurity threats to essential utilities.

Tags: China, Chinese Foreign Ministry, Cyber attack, cyber crimes, New Jersey, Regulation, Securities and Exchange Commission

[CRAIG NIGRELLI]

THE LARGEST REGULATED WATER AND WASTEWATER UTILITY IN THE UNITED STATES, IS REVEALING IT HAD BEEN TARGETED BY A CYBERATTACK. AMERICAN WATER WORKS, , BASED IN CAMDEN, NEW JERSEY, SERVES MORE THAN 14 MILLION PEOPLE ACROSS 14 STATES AND 18 MILITARY INSTALLATIONS. THE ATTACK, WHICH WAS DISCOVERED ON OCTOBER THIRD, PROMPTED THE COMPANY TO TAKE IMMEDIATE PROTECTIVE MEASURES, INCLUDING SHUTTING DOWN CERTAIN SYSTEMS TO CONTAIN THE BREACH.

WHILE AMERICAN WATER EMPHASIZED THAT ITS WATER AND WASTEWATER OPERATIONS WERE NOT IMPACTED, THE COMPANY TEMPORARILY PAUSED ITS BILLING SYSTEMS. CUSTOMERS HAVE BEEN ASSURED THEY WILL NOT FACE LATE FEES WHILE THE SYSTEMS REMAIN OFFLINE. AN INVESTIGATION INTO THE NATURE AND SCOPE OF THE BREACH IS ONGOING, WITH THE COMPANY WORKING AROUND THE CLOCK ALONGSIDE THIRD-PARTY CYBERSECURITY EXPERTS. THE COMPANY HAS ALSO INFORMED LAW ENFORCEMENT AND IS COOPERATING FULLY WITH AUTHORITIES.

IN A REGULATORY FILING, AMERICAN WATER SAYS THAT IT IS CURRENTLY UNABLE TO PREDICT THE FULL IMPACT OF THE CYBERSECURITY INCIDENT. DESPITE THIS, THE COMPANY DOES NOT EXPECT THE BREACH TO HAVE A MATERIAL EFFECT ON ITS FINANCIAL CONDITION OR OPERATIONS. THE COMPANY MANAGES OVER 500 WATER AND WASTEWATER SYSTEMS IN AROUND 1,700 COMMUNITIES.

THE BREACH COMES AMID HEIGHTENED CONCERNS IN THE U.S. OVER CYBERSECURITY THREATS, PARTICULARLY RELATED TO CRITICAL INFRASTRUCTURE. RECENTLY, U.S. OFFICIALS HAVE EXPRESSED WORRIES ABOUT ATTEMPTS BY FOREIGN ACTORS, INCLUDING CHINESE INTELLIGENCE SERVICES, TO TARGET SECTORS LIKE WATER TREATMENT FACILITIES AND BROADBAND PROVIDERS.

AMERICAN WATER HAS NOT DISCLOSED THE SOURCE OF THE ATTACK. HOWEVER, THE INCIDENT REFLECTS BROADER CONCERNS ABOUT CYBERSECURITY VULNERABILITIES IN KEY UTILITIES, AS CYBER THREATS TO CRITICAL INFRASTRUCTURE CONTINUE TO INCREASE ACROSS THE STATES.

FOR MORE OF OUR UNBIASED — STRAIGHT FACTS REPORTING — DOWNLOAD THE STRAIGHT ARROW NEWS APP OR VISIT US AT SAN – DOT – COM.