December 2015 Ukraine power grid cyber attack

The December 2015 Ukraine power grid cyber attack took place on 23 December 2015 and is a considered to be the first known successful cyber attack on a power grid. Hackers were able to successfully compromise information systems of three energy distribution companies in Ukraine and temporary disrupt electricity supply to the end consumers.

Most affected were consumers of «Prykarpattyaoblenergo» (Ukrainian: Прикарпаттяобленерго; servicing Ivano-Frankivsk Oblast): 30 substations were switched off, about 230 thousands people were left without electricity for a period from 1 to 6 hours.[1]

At the same time consumers of two other energy distribution companies, «Chernivtsioblenergo» (Ukrainian: Чернівціобленерго; servicing Chernivtsi Oblast) and «Kyivoblenergo» (Ukrainian: Київобленерго; servicing Kyiv Oblast) were also affected by a cyber attack, but at the smaller scale. According to representatives of one the companies, attacks were conducted from computers with IP addresses allocated to the Russian Federation.[2]

Cyber attack was complex and consisted of the following steps:[2]

In total, up to 73 mWh of electricity was not supplied (or 0.015% of daily electricity consumption in Ukraine).[2]

Cyber attacks on the energy distribution companies took place during an on-going Russia-ukrainian war and is attributed to a russian advanced persistent threat group known as "Sandworm".[3]

See also

References

Further reading

External links


This article is issued from Wikipedia - version of the 11/20/2016. The text is available under the Creative Commons Attribution/Share Alike but additional terms may apply for the media files.