PCMag editors select and review products independently. If you buy through affiliate links, we may earn commissions, which help support our testing.

PCMag UK

Police: Hacker Breached Florida Treatment Plant to Poison the Water Supply

The unknown perpetrator tried to poison the water supply last Friday by raising the sodium hydroxide levels from 100 parts per million to 11,100 parts per million, according to Florida police.

Michael Kan
 & Michael Kan Principal Reporter

Our team tests, rates, and reviews more than 1,500 products each year to help you make better buying decisions and get more from technology.

Our Expert
LOOK INSIDE PC LABS HOW WE TEST
65 EXPERTS
43 YEARS
41,500+ REVIEWS

(Photo by Joe Raedle/Getty Images)


A hacker remotely accessed a water treatment plant in Florida and tried to poison the water supply, according to local police. 

The intrusion occurred at a water treatment plant in Oldsmar, Florida, which is home to about 15,000 people, according to Pinellas County Sheriff Bob Gualtieri. Last Friday, an operator at the facility noticed some suspicious activity: an unknown user had remotely gained access to a computer system that controls chemical processes at the plant.

The mysterious culprit spent three to five minutes accessing various functions on the computer, including one that controls how much sodium hydroxide, also known as lye, is added to the water. 

“The hacker changed the sodium hydroxide from about one hundred parts per million to 11,100 parts per million,” according to Gualtieri, who noted that sodium hydroxide is a main ingredient in liquid drain cleaners. Indeed, the CDC lists it as a highly corrosive substance.

Recommended by Our Editors

Apple Patches 3 iOS Flaws Hackers May Be Actively Exploiting
Apple Patches 3 iOS Flaws Hackers May Be Actively Exploiting
Police Arrest 2 Romanians for Helping Hackers Beat Antivirus Programs
Police Arrest 2 Romanians for Helping Hackers Beat Antivirus Programs
Google: North Korean Hackers Are Posing as Cybersecurity Researchers to Phish Victims
Google: North Korean Hackers Are Posing as Cybersecurity Researchers to Phish Victims

"So this is somebody who is trying—it appears on the surface—to do something bad," he added. "This isn't just we're putting in a little bit of chlorine or fluoride here."

The hacker then exited the system. Fortunately, the plant operator subsequently returned the sodium hydroxide levels to normal. In addition, the plant itself had “redundancies in place,” such as pH monitoring, ensuring the tainted water would have never reached the main pipelines without detection, according to city officials. 

As a result, local citizens were never in real danger. Nevertheless, the intrusion is raising alarm bells. On Monday, the sheriff’s office and city officials held a press briefing on the hack to warn other neighboring municipalities to be on guard against cyberattacks on industrial systems. 

According to the county's sheriff, the hacker gained access via an unnamed remote software program that allows employees to troubleshoot IT problems. The same program also includes some screen-monitoring capabilities. As a result, the operator who first noticed the intrusion initially suspected the remote access belonged to another worker. 

It’s unclear who the hacker was, and whether the intrusion was launched from a computer in the US or abroad. However, Gualtieri said he’s investigating the matter with the help of the FBI and the US Secret Service. 

In the press briefing, the city of Oldsmar didn’t directly address why the water treatment’s plant computers needed to be connected to the internet. But city officials say they’ve disabled the remote software program that was exploited to carry out the hack. They're also considering upgrades to prevent another breach from occurring. 

About Our Expert

Michael Kan

Michael Kan

Principal Reporter

My Experience

I've been a journalist for over 15 years. I got my start as a schools and cities reporter in Kansas City and joined PCMag in 2017, where I cover satellite internet services, cybersecurity, PC hardware, and more. I'm currently based in San Francisco, but previously spent over five years in China, covering the country's technology sector.

Since 2020, I've covered the launch and explosive growth of SpaceX's Starlink satellite internet service, writing 600+ stories on availability and feature launches, but also the regulatory battles over the expansion of satellite constellations, fights with rival providers like AST SpaceMobile and Amazon, and the effort to expand into satellite-based mobile service. I've combed through FCC filings for the latest news and driven to remote corners of California to test Starlink's cellular service.

I also cover cyber threats, from ransomware gangs to the emergence of AI-based malware. In 2024 and 2025, the FTC forced Avast to pay consumers $16.5 million for secretly harvesting and selling their personal information to third-party clients, as revealed in my joint investigation with Motherboard.

I also cover the PC graphics card market. Pandemic-era shortages led me to camp out in front of a Best Buy to get an RTX 3000. I'm now following how the AI-driven memory shortage is impacting the entire consumer electronics market. I'm always eager to learn more, so please jump in the comments with feedback and send me tips.

The Best Tech I've Had:

  • My first video game console: a Nintendo Famicom
  • I loved my Sega Saturn despite PlayStation's popularity.
  • The iPod Video I received as a gift in college
  • Xbox 360 FTW
  • The Galaxy Nexus was the first smartphone I was proud to own.
  • The PC desktop I built in 2013, which still works to this day.

Read the latest from Michael Kan

Read full bio