ukrainian power grid

As we like to reiterate here at Sentryo, industrial digitalization, despite the significant advantages, brings with it vulnerabilities to new forms of cyberattacks. Since 2008, we’ve seen how critical industrial infrastructures have been targeted by malicious cyberattacks (consult the analyses here). Other factors heighten the vulnerabilities of ICS: converging IT and OT systems, geopolitical contexts (such as with the attack on the BTC oil pipeline), the degree of inclination towards IT hygiene, the lack of importance given to cybersecurity, etc.

Two major cyberattacks one year apart

This was the context in which the attacks against the Ukrainian power grid occurred. The first cyberattack took place on December 23, 2015: three power distribution centers were simultaneously attacked. Result: hundreds of thousands of homes in western Ukraine were without power for several hours. One year later in December 2016, a second attack caused a total power blackout in the north of Kiev and the surrounding region. Analyzing these two cyberattacks sheds some light on the vulnerabilities of critical infrastructures such as power grids but also of their means of protection.

An in-depth analysis of the facts

Sentryo’s Security Labs have combed the different reports published on these two incidents and have analyzed the facts and various hypotheses to provide you with a complete, in-depth analysis of these cyberattacks. Download for free our ebook (in English) and delve into a precise and exhaustive report of the cyberattacks, the systems selected as targets and even the types of malware used to wage the attacks.

The perspective of an international expert

By downloading the ebook now, you will also receive the point of view of Vytautas Butrimas, a NATO cybersecurity expert in the energy sector. As author of the preface, he presents his analysis of the Ukrainian cyberattacks and the vulnerabilities of critical industrial infrastructures.

*The opinions expressed by V. Butrimas are intended for NATO, NATO member states, NATO partners, related private and public institutions and people affiliated with such. These opinions do not represent the opinions or the policies of NATO or NATO ENSEC COE or any other institution. The opinions presented in these articles are solely the opinions of the authors.