The U.S. Environmental Protection Agency (EPA) has issued an enforcement warning regarding serious cyber threats and vulnerabilities in community drinking water systems
The EPA, along with other security agencies, is actively working to address security weaknesses, such as default passwords and single logins found in many inspected water systems. The agency stresses the need for continued inspection and enforcement of cybersecurity measures outlined in the Safe Drinking Water Act. Recommendations include reducing internet exposure, conducting cybersecurity assessments, changing default passwords, and developing incident response plans. The EPA is collaborating with federal and state partners to address the increasing frequency and severity of cyber threats to water systems, urging water operators to take necessary steps to enhance cybersecurity. A task force is being established to develop short-term strategies and plans to bolster the resilience of water and sewer systems nationwide, with the EPA providing support and expertise in cybersecurity to the water industry. https://cybersecuritynews.com/epa-warns-of-cyber-attacks-vulnerabilities/