The Department of Homeland Security (DHS) said state-sponsored Russian actors could have infiltrated electric utilities across the U.S., causing blackouts and that the attack might be ongoing.
The Russian actors, under the shadowy groups Dragonfly or Energetic Bear, were able to break into electric networks with relative ease, The Wall Street Journal reports.
“They got to the point where they could have thrown switches” and affect the flow of power, said DHS Chief of Industrial-Control-System Analysis, Jonathan Homer.
The DHS warned that American utilities were vulnerable to Russian meddling since at least December of 2014, The Daily Caller News Foundation reported. A Freedom of Information Act request showed that hackers from the nation also successfully infiltrated the Department of Energy’s (DOE) computer system more than 150 times between 2010 and 2014.
“They’ve been intruding into our networks and are positioning themselves for a limited or widespread attack,” said former deputy assistant secretary of defense, Michael Carpenter. “They are waging a covert war on the West.”
Russia, The WSJ reported, denied the attacks on the infrastructure.
By using a trick called “spearhead phishing” or simply “phishing,” the Russians sent emails asking for login information disguised as a request to reset passwords from key officials with the clearance to, eventually, hack the electric grid remotely.
The Russian hackers familiarized themselves with how the facilities worked normally in order to “take the normal and make it abnormal” in order to cause disruptions, Homer said.