As geopolitical tensions continue to escalate regarding Russia and Ukraine, multiple federal agencies continue emphasizing the importance for all organizations to remain vigilant, implement cybersecurity measures, and be prepared to respond to disruptive cyber attacks.
Specifically, CISA recently published “Shields Up” recommending all organizations—regardless of size—adopt a heightened posture when it comes to cybersecurity and protecting their most critical assets. “Shields Up” includes reminders and emphasizes recommended actions to make near-term progress toward improving cybersecurity and resilience.
According to CISA, while there are not currently any specific credible threats to the U.S. homeland, we are mindful of the potential for the Russian government to consider escalating its destabilizing actions in ways that may impact others outside of Ukraine.
What Actions are Recommended for Water and Wastewater Systems?
Water and wastewater utilities are strongly encouraged to proactively protect against these threats and continue following EPA, WaterISAC, and other federal partner guidance, advisories, and webinars regarding Russian state-sponsored cyber threats. Regardless of the suspected direct targeting of Ukrainian infrastructure, water and wastewater utilities (and other critical infrastructure partners) could experience indiscriminate attacks.
Members can access the joint EPA-WaterISAC webinars here: EPA-WaterISAC Webinar: Cybersecurity Recommendations in Consideration Russian State-Sponsored Cyber Operations Against U.S. Critical Infrastructure. Likewise, water and wastewater system owners and operators should review the CISA Insights and other previously published advisories on the WaterISAC portal (additional links below).
Prior WaterISAC and EPA Webinars and Advisories
- EPA-WaterISAC Webinar: Cybersecurity Recommendations in Consideration Russian State-Sponsored Cyber Operations Against U.S. Critical Infrastructure
- (TLP:AMBER) U.S. EPA-WaterISAC Advisory on Recommendations in Consideration of Russian Cyber Operations
- (TLP:WHITE) Joint Cybersecurity Advisory (AA22-011A) Issued to U.S. Critical Infrastructure for Understanding and Mitigating Russian State-Sponsored Cyber Threats
Additional Resources
- Understanding and Mitigating Russian State-Sponsored Cyber Threats to U.S. Critical Infrastructure (AA22-011A)
- Russia Cyber Threat Overview and Advisories
- Protecting Against Malicious Cyber Activity before the Holidays (White House; 12/16/21)
- Joint Cybersecurity Advisory Ongoing Cyber Threats to U.S. Water and
Wastewater Systems (CISA, FBI, NSA, EPA; 10/14/21) - WaterISAC’s 15 Cybersecurity Fundamentals for Water and Wastewater Utilities
- EPA Cybersecurity Best Practices for the Water Sector
- AWWA Resources on Cybersecurity
- Proactive Preparation and Hardening to Protect Against Destructive Attacks (Mandiant)
- Actions to take when the cyber threat is heightened (NCSC)
WaterISAC Incident Reporting
WaterISAC encourages all utilities that have experienced malicious or suspicious activity to email [email protected], call 866-H2O-ISAC, or use the confidential online incident reporting form. Reporting to WaterISAC helps utilities and stakeholders stay aware of the threat environment of the sector.
