Hacker trends From a smart grid perspective Erwin Kooi Alliander IT ...
Transcript of Hacker trends From a smart grid perspective Erwin Kooi Alliander IT ...
![Page 1: Hacker trends From a smart grid perspective Erwin Kooi Alliander IT ...](https://reader031.fdocuments.us/reader031/viewer/2022020314/584a3fa21a28ab0b678c7122/html5/thumbnails/1.jpg)
Hacker trendsFrom a smart grid perspective
Erwin KooiAlliander IT security manager
![Page 2: Hacker trends From a smart grid perspective Erwin Kooi Alliander IT ...](https://reader031.fdocuments.us/reader031/viewer/2022020314/584a3fa21a28ab0b678c7122/html5/thumbnails/2.jpg)
Hacker Trends (from a Smart Grid perspective)
< 2014 in general
< 2014 in smart grid
Trends
“Where do we go from here”
< 2014 in general
< 2014 in smart grid
Trends
“Where do we go from here”
![Page 3: Hacker trends From a smart grid perspective Erwin Kooi Alliander IT ...](https://reader031.fdocuments.us/reader031/viewer/2022020314/584a3fa21a28ab0b678c7122/html5/thumbnails/3.jpg)
“Hacker” trends
![Page 4: Hacker trends From a smart grid perspective Erwin Kooi Alliander IT ...](https://reader031.fdocuments.us/reader031/viewer/2022020314/584a3fa21a28ab0b678c7122/html5/thumbnails/4.jpg)
< 2014 in general – researchers
![Page 5: Hacker trends From a smart grid perspective Erwin Kooi Alliander IT ...](https://reader031.fdocuments.us/reader031/viewer/2022020314/584a3fa21a28ab0b678c7122/html5/thumbnails/5.jpg)
< 2014 in general – researchers
![Page 6: Hacker trends From a smart grid perspective Erwin Kooi Alliander IT ...](https://reader031.fdocuments.us/reader031/viewer/2022020314/584a3fa21a28ab0b678c7122/html5/thumbnails/6.jpg)
< 2014 in general – activists
![Page 7: Hacker trends From a smart grid perspective Erwin Kooi Alliander IT ...](https://reader031.fdocuments.us/reader031/viewer/2022020314/584a3fa21a28ab0b678c7122/html5/thumbnails/7.jpg)
< 2014 in general – activists
![Page 8: Hacker trends From a smart grid perspective Erwin Kooi Alliander IT ...](https://reader031.fdocuments.us/reader031/viewer/2022020314/584a3fa21a28ab0b678c7122/html5/thumbnails/8.jpg)
< 2014 in general – activists
123456
![Page 9: Hacker trends From a smart grid perspective Erwin Kooi Alliander IT ...](https://reader031.fdocuments.us/reader031/viewer/2022020314/584a3fa21a28ab0b678c7122/html5/thumbnails/9.jpg)
< 2014 in general – criminals
![Page 10: Hacker trends From a smart grid perspective Erwin Kooi Alliander IT ...](https://reader031.fdocuments.us/reader031/viewer/2022020314/584a3fa21a28ab0b678c7122/html5/thumbnails/10.jpg)
< 2014 in general – criminals
![Page 11: Hacker trends From a smart grid perspective Erwin Kooi Alliander IT ...](https://reader031.fdocuments.us/reader031/viewer/2022020314/584a3fa21a28ab0b678c7122/html5/thumbnails/11.jpg)
< 2014 in general – governments
BLARNEY
BOUNDLESS INFORMANT
BULLRUN
CULTWEAVE
DEWSWEEPER
EGOTISTICAL GIRAFFE
EVILOLIVE
FALLOUT
FOXACIDGENIE IVY BELLS
MONEYROCKETSHIFTINGSHADOWYACHTSHOP
KLONDIKE
MESSIAH
MOONLIGHTPATH
OCEANARIUM
RENOIR
SHELLTRUMPET
STONE GHOST STORMBREW
TRAFFICTHIEFWHITETAMALE
![Page 12: Hacker trends From a smart grid perspective Erwin Kooi Alliander IT ...](https://reader031.fdocuments.us/reader031/viewer/2022020314/584a3fa21a28ab0b678c7122/html5/thumbnails/12.jpg)
< 2014 in general – governments
![Page 13: Hacker trends From a smart grid perspective Erwin Kooi Alliander IT ...](https://reader031.fdocuments.us/reader031/viewer/2022020314/584a3fa21a28ab0b678c7122/html5/thumbnails/13.jpg)
< 2014 in general – no attribution
Rise is spyware
Rise in non-networked malware
Rise in BGP redirects
MaaS (Malware as a Service)
Rise is spyware
Rise in non-networked malware
Rise in BGP redirects
MaaS (Malware as a Service)
![Page 14: Hacker trends From a smart grid perspective Erwin Kooi Alliander IT ...](https://reader031.fdocuments.us/reader031/viewer/2022020314/584a3fa21a28ab0b678c7122/html5/thumbnails/14.jpg)
< 2014 in smart grid
2013 Internet-connected PLC Austrian power grid malfunctions
2013 BMW accused of spying on AutoLib charging stations
2012 Smart meters hacked for profit by utility employees
2012 Aramco attack
2010 Stuxnet and derivates
2013 Internet-connected PLC Austrian power grid malfunctions
2013 BMW accused of spying on AutoLib charging stations
2012 Smart meters hacked for profit by utility employees
2012 Aramco attack
2010 Stuxnet and derivates
![Page 15: Hacker trends From a smart grid perspective Erwin Kooi Alliander IT ...](https://reader031.fdocuments.us/reader031/viewer/2022020314/584a3fa21a28ab0b678c7122/html5/thumbnails/15.jpg)
Trends
8 april 2014
![Page 16: Hacker trends From a smart grid perspective Erwin Kooi Alliander IT ...](https://reader031.fdocuments.us/reader031/viewer/2022020314/584a3fa21a28ab0b678c7122/html5/thumbnails/16.jpg)
Trends
![Page 17: Hacker trends From a smart grid perspective Erwin Kooi Alliander IT ...](https://reader031.fdocuments.us/reader031/viewer/2022020314/584a3fa21a28ab0b678c7122/html5/thumbnails/17.jpg)
Trends
Smart grids are not a target
• Most “attacks” are collateral damage or misconfiguration
• Read reports with care (understand the political landscape)…
Potential impact is huge, so “no need for security” is not an option
• Smart grid systems remain vulnerable
• Collateral damage sucks too
• Growing interest by asset owners
Smart grids are not a target
• Most “attacks” are collateral damage or misconfiguration
• Read reports with care (understand the political landscape)…
Potential impact is huge, so “no need for security” is not an option
• Smart grid systems remain vulnerable
• Collateral damage sucks too
• Growing interest by asset owners
, yet
![Page 18: Hacker trends From a smart grid perspective Erwin Kooi Alliander IT ...](https://reader031.fdocuments.us/reader031/viewer/2022020314/584a3fa21a28ab0b678c7122/html5/thumbnails/18.jpg)
“Where do we go from here?” (Marillion)
Build the grid for resilience (a smart grid without smart is still a grid)
This requires also non-cyber measures
This also requires close cooperation
with stakeholders (they need to “climb”)
Not everything needs to be “smart”
Build the grid for resilience (a smart grid without smart is still a grid)
This requires also non-cyber measures
This also requires close cooperation
with stakeholders (they need to “climb”)
Not everything needs to be “smart”
![Page 19: Hacker trends From a smart grid perspective Erwin Kooi Alliander IT ...](https://reader031.fdocuments.us/reader031/viewer/2022020314/584a3fa21a28ab0b678c7122/html5/thumbnails/19.jpg)
“Where do we go from here?”
Don’t be an attractive target, show that you care
Respond to (small) incidents
• Detect them
• Solve them
• Learn from them
Don’t be an attractive target, show that you care
Respond to (small) incidents
• Detect them
• Solve them
• Learn from them
![Page 20: Hacker trends From a smart grid perspective Erwin Kooi Alliander IT ...](https://reader031.fdocuments.us/reader031/viewer/2022020314/584a3fa21a28ab0b678c7122/html5/thumbnails/20.jpg)
“Where do we go from here?”
Be proactive
Know thy systems
Test them often
Demand fixes from your vendors
Expect shorter life cycles for secundary grid components
(cots is indeed cheap)
Be proactive
Know thy systems
Test them often
Demand fixes from your vendors
Expect shorter life cycles for secundary grid components
(cots is indeed cheap)
![Page 21: Hacker trends From a smart grid perspective Erwin Kooi Alliander IT ...](https://reader031.fdocuments.us/reader031/viewer/2022020314/584a3fa21a28ab0b678c7122/html5/thumbnails/21.jpg)
Questions?