PCMag editors select and review products independently. If you buy through affiliate links, we may earn commissions, which help support our testing.

PCMag UK

Feds Investigate Cyberattack on US Power Plants

The malware appears to come from several phishing campaigns, according to the FBI and Department of Homeland Security.

Tom Brant
 & Tom Brant Managing Editor

Our team tests, rates, and reviews more than 1,500 products each year to help you make better buying decisions and get more from technology.

Our Expert
LOOK INSIDE PC LABS HOW WE TEST
65 EXPERTS
43 YEARS
41,500+ REVIEWS

Malware that may have originated in Russia has been targeting the computer networks of nuclear power plants and other industrial sites in the US, according to federal officials.

SecurityWatchOne of the targets is the Wolf Creek nuclear power plant near Burlington, Kan., according to a report from the Department of Homeland Security and FBI obtained by the New York Times.

The malware appears to come from several phishing campaigns, according to the report. Hackers created fake resumes for engineering control jobs, laced them with malicious code, and sent them to engineers with access to the critical systems that control industrial infrastructure. They also compromised legitimate websites that engineers were likely to visit, according to the report.

Some attempts also involved man-in-the-middle attacks, in which the hackers redirected the engineers' internet traffic through their own servers, the report said. The attacks occurred in early May, just as President Donald Trump signed an executive order to strengthen the nation's cybersecurity.

The report carried an amber warning, the second highest threat sensitivity rating, according to the Times. But the FBI and DHS still downplayed the threat.

"There is no indication of a threat to public safety, as any potential impact appears to be limited to administrative and business networks," the agencies said in a joint statement to the Times.

Russian hackers are the chief suspects in the attacks, Bloomberg reported, citing US officials who are investigating vulnerabilities in the electrical grid. The attacks bear a resemblance to malware that triggered a power outage in Ukraine last year. Ukrainian officials accused Russia of orchestrating that attack, which Moscow denied.

Russian officials also rejected the notion that the country was behind the recent US attacks. "We don't pay attention to such anonymous fakes," a Kremlin spokesman told Bloomberg.

About Our Expert

Tom Brant

Tom Brant

Managing Editor

I’m a managing editor at PCMag.com focused on PC hardware. Reading this during the day? Then you've caught me testing gear and editing reviews of Wi-Fi routers, printers, laptops, and tons of other personal tech. (Reading this at night? Then I’m probably dreaming about all those cool products.) I’ve covered the consumer tech world as an editor, reporter, and analyst since 2015.

I've covered most major consumer tech events, including CES, Computex, Google I/O, and IFA. I've also appeared on CBS News, in USA Today, and at many other outlets to offer analysis on breaking technology news.

Before I joined the tech-journalism ranks, I wrote on topics as diverse as Borneo's rainforests, Middle Eastern airlines, and Big Data's role in presidential elections. A graduate of Middlebury College, I also have a master's degree in journalism and French Studies from New York University.

The Technology I Use

While most people buy a phone or laptop and stick with it for years, I’m lucky enough to use devices based on Android, iOS, macOS, and Windows daily as part of my job. As a result, I cycle through lots of tech in addition to my IT-issue work laptop. (Yes, that's a ThinkPad.) Personally, I’ve also owned a lot of tech products both cutting-edge and cringeworthy, from the Nintendo GameCube and the original MacBook to the Palm m105 and the CueCat.

Read the latest from Tom Brant

Read full bio