MadIoT PoC Attacks Leverage IoT Devices to Take Out Power Grids

The attacks could bypass critical infrastructure and target power grids through IoT botnets.
Cyber-criminals may soon be able to target entire power grids without using Stuxnet like malware to infiltrate critical infrastructure.
Princeton University researchers developed a series of proof-of-concept attacks which would allow threat actors to target power grids using IoT botnets comprised of high wattage devices such as air conditioners and heaters, according to the BlackIoT: IoT Botnet of High Wattage Devices Can Disrupt the Power Grid report.
Dubbed manipulation of demand via IoT (MadIoT) attacks, researchers developed attacks which could cause sudden generation tripping, disrupt grid re-starts, line failures and cascades, and increase demand from the systems, all of which could result in outages or even blackouts.
Threat actors could, for example, simultaneously turn on or off several high-wattage IoT devices which can result in frequency instability resulting in an imbalance between the supply and demand.
Cyber-criminals could even use these attacks to increase operating costs of a target by manipulating energy consumption to benefit certain energy providers.
To defend against such attacks, researchers recommend grid operators prepare for such attacks by ensuring their systems can handle the drastic load changes these attacks could bring and that IoT device manufactures do more to prevent potential compromises and conduct more research on IoT vulnerabilities.
Source: scmagazineuk

Latest Jobs
-
- Outside IR 35 CONTRACT SC CLEARED Cyber Security Operations Analyst SPLUNK ES- UK REMOTE- £500 a day.
- N/A
- 500
-
6 month contract Outside IR35 Operational Cyber Security Analyst. Hands on Splunk Security Enterprise and Security clearance is required As is someone that holds SC clearance. SOC and Vulnerability management experience. Vulnerability Analysis / Management - Tenable
-
- SailPoint Consultant
- Sweden
- Upto €80,000
-
SailPoint Consultant is need for this rapidly expanding global business, The business is currently in the middle of a SailPoint Deployment, they require an experienced Consultant who is able to help them on this Journey You will be responsible for helping to configure and deploy SailPoint as well as on board applications onto the platform You will also work with the business to understand workflow and process to help align the way the business works to ensure that the business gets the most from the deployment We are looking for an experienced SailPoint consultant who has experience with both Deployment and BAU work and is interested in joining a business which is at the start of an interesting IAM Journey
-
- SOC Manager Security Operations. SIEM, Threat / Vulnerability, IR, SOC Service- Exclusive
- United Kingdom
- 90,000+
-
SOC Manager- SIEM, Threat / Vulnerability, Incident response. Exclusive Project. Management and on growth growth of Security Operations Centre capability. Managing and maturing the team, technical services line and fronting client engagements where needed. An in-depth technical background is essential, experience across SOC SIEM/ Threat Hunting (IR) tools, processes, techniques, operational is a MUST. The role will include, but not limited to; evolving the technical process, building operational capability, managing and hiring team, involved at a high level overviewing policy/playbooks, fine turning of the go-to-market collateral etc.
-
- Contact 12 month- Security Operations- Tanium Engineer / Analyst.
- United Kingdom
- Dependent on experience
-
Security Operations engineer / Analyst with Tanium for a 12 month contract. Experience configuring using, managing, supporting troubleshooting Tanium's suite of end point solutions is essential. The opportunity is due to a client expanding its international capability to a follow the sun model. To be involved in spinning up a European capability. Based in the UK. English essential and ideally being fluent in French.