Last summer, energy companies discovered they were primary targets of the "Energetic Bear" computer virus, so named because it is believed the cyberattack originated in Russia or the Eastern European block. The nefarious tactic involved first infecting a legitimate and trusted website commonly used by the target companies, which would then click on a link that downloaded the malware into their corporate industrial control sys- terns (ICS). Once inside, the hack- ers could poke around the ICS at will undetected and download any intellectual property or sensitive data, such as passwords. Worse, it could completely sabotage the infected systems, potentially disrupting the power grid, pipeline transportation and production.
展开▼
