UK Power Outage - The Cyber Effect?

Electric power distribution networks across Britain were struck by an exceptional damaging power outage, with cities, towns, villages and airports, rail and road networks across England and Wales without electricity which affected around 1 million UK citizens.

The power cut happened on Friday 9th August in the early evening at 5pm with blackouts affecting the midlands, the South East, South West, North West and N. East of England, and Wales. 

The UK National Grid said its systems were not to blame and the power cut was caused by the loss of two generators.

Duncan Burt, the Director of Operations, say that the UK’s Grid systems still ‘worked well’ after the ‘incredibly rare event’ of two power stations disconnecting. 

When asked by the BBC he said he did not believe that a cyber-attack or unpredictable wind power generation were to blame, although both US and UK security services have been warning recently that attacks on Critical National Infrastructure are an increasing liability and threat with the ability to seriously disrupt national operations. And increasingly cyber incursions have been reported, attributed to nation-states.

These attacks are with bytes and bots and they are aimed at our energy grids, our infrastructure, and even our private financial and other information.

The US Government has announced a surprising move to secure power grids by using “retro” technologies. It comes after numerous attempts by foreign actors to launch cyberattacks on so-called critical national infrastructure (CNI). Nations have been trying to secure the industrial control systems that power CNI for years. The challenge lies in the fact that these systems were not built with security in mind, because they were not originally meant to be connected to the internet. 

It is with this in mind cyber monitoring should be considerably improved in the UK to be made constant and it requires a new strategy: rather than bringing in new technology and skills, it should use analog and manual technology to isolate the grid's most important control systems. 

Around 300,000 UK Power Networks customers were affected in London and the south east, and Western Power Distribution said around 500,000 people were affected in the Midlands, south west and Wales. Power was restored to them all shortly after 6pm. Northern Powergrid, which serves Yorkshire and the North East, said 110,000 of its customers lost power, while at least 26,000 people were without power in the North West of England, Electricity North West said.

No Answers as to the Cause - So far
The “incredibly rare event” appears to have been triggered after two power stations disconnected from the grid almost at the same time, said a senior official at National Grid, which owns the electricity transmission system in England and Wales.
However, the questions remain as to what caused the massive power-out. And there are questions as to whether it was a planned cyber-attack by a government Hacker group in order to test the effects on the UK. 

These questions are still being asked and it will take some weeks before a full report is completed.

The UK’s energy watchdog Ofgem said it had asked for "an urgent detailed report from National Grid so we can understand what went wrong and decide what further steps need to be taken".

News By CSI:

You Might Also Read:

Improving Electric Power-Grid Security:

America Remains Vulnerable To Cyber Attack:

 

« FBI Turns To Social Media To Track Shooters
US National Security Agency’s Cyber Offensive »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

ON-DEMAND WEBINAR: Gen AI for Security: Adoption strategies with Amazon Bedrock

ON-DEMAND WEBINAR: Gen AI for Security: Adoption strategies with Amazon Bedrock

Watch this webinar and get a comprehensive roadmap for securely adopting generative AI using Amazon Bedrock, a fully managed service that offers a choice of high-performing foundation models (FMs).

BH Consulting

BH Consulting

BH Consulting we are a vendor independent consulting firm providing market leading range of information security services focused on data protection and cybersecurity.

Datto

Datto

Datto delivers a single toolbox of easy to use products and services designed specifically for managed service providers and the businesses they serve.

Electric Imp

Electric Imp

Electric Imp offers an innovative and powerful Internet of Things platform that securely connects devices with advanced cloud computing resources.

Science Applications International Corporation (SAIC)

Science Applications International Corporation (SAIC)

SAIC is a premier technology integrator in the technical, engineering, intelligence, and enterprise information technology markets. Services and solutions include Cybersecurity.

CloudVector

CloudVector

CloudVector's API Detection & Response platform is the only API Threat Protection solution that goes beyond the gateway to provide Shadow API Prevention and Deep API Risk Monitoring and Remediation.

Andreessen Horowitz (a16z)

Andreessen Horowitz (a16z)

Andreessen Horowitz (known as "a16z") is a venture capital firm in Silicon Valley, California that backs bold entrepreneurs building the future through technology.

Automox

Automox

Remediate vulnerabilities 30X faster than the industry norm – and dramatically reduce your risk with simple, fast, and cloud-native endpoint hardening from Automox.

Deduce

Deduce

Deduce use a combination of aggregate historical user data, identity risk intelligence, and proactive alerting to deliver a robust identity and authentication solution.

IDX

IDX

IDX is the leading consumer privacy platform built for agility in the digital age.

E2E Technologies

E2E Technologies

E2E Technologies are a proactive, SLA-beating, managed service provider that busts the common stereotypes surrounding IT.

Allentis

Allentis

Allentis provide adapted solutions to ensure the security and performance of your information system.

Oxford Internet Institute - University of Oxford

Oxford Internet Institute - University of Oxford

The Oxford Internet Institute is a multidisciplinary research and teaching department of the University of Oxford, dedicated to the social science of the Internet.

Picnic

Picnic

Picnic is a gritty, pioneering team of intelligence and cybersecurity specialists focused on solving the security challenge of our time - social engineering.

WithSecure

WithSecure

WithSecure (formerly F-Secure Business) is your reliable cyber security partner, providing outcome-based cyber security that protects and enables operations.

KYND

KYND

KYND has created pioneering cyber risk technology that makes assessing, understanding, and managing business cyber risks easier and quicker than ever before.

Netcraft

Netcraft

Netcraft is a global leader in cybercrime detection and disruption, combining cutting-edge technology with decades of experience to protect organizations of all sizes from digital threats and attacks.