Thursday, June 04, 2009
Ex-Employee Fingered in Texas Power Company Hack
Threat Level Privacy, Crime and Security Online Ex-Employee Fingered in Texas Power Company Hack
By Kevin Poulsen May 29, 2009 | 4:36 pm | Categories: Hacks and Cracks
The FBI is investigating a computer intrusion at a large Texas power company that crippled the firm’s energy forecast system for a day in March, costing it over $26,000.
Early Thursday morning FBI agents raided the home of a former employee of Dallas-based Energy Future Holdings — the corporate parent of three large Texas electric companies, including Luminent, which has over 18,300 megawatts of generation in Texas, and operates the Comanche Peak nuclear power plant.
The ex-employee, Dong Chul Shin, was fired from the company March 3 for performance reasons, and escorted off the premises, according to court records. But the company failed to immediately shut off his VPN access. That afternoon, someone using Shin’s account began logging onto the corporate network, e-mailing out proprietary data to a personal Yahoo account linked to Shin, and modifying and deleting files, according to a search warrant affidavit by Dallas FBI agent Robert Smith.
The Comanche Peak nuclear power plant in Texas.
Company logs showed that the VPN connection originated at Shin’s home IP address, Smith writes.
While logged into the VPN, the intruder sent an e-mail to the engineering group operating the Comanche Peak nuclear reactor. The message asked questions about the safety of the reactor, in particular wondering what would happen if the load were to be “increased to 99.7 percent of capacity.” While at EFH, Smith notes, “Shin was responsible for programming the models which controlled the management of EFH power generation facilities, including Comanche Peak.”
No charges have apparently been filed, but the FBI is treating the case as a suspected violation of federal computer crime laws, including a rarely-used statute prohibiting breaking into a computer and creating “a threat to public health or safety.”
But the damage noted in the affidavit appears to be purely financial. One of the files that was tampered with, “Hourly Capacity Supplied — 2009 upload.xls,” is described as an “input file to determine the power generation required by the RFH system components.” The net result of the tampering was that “the EFH management system was rendered inoperable, resulting in EFH being unable to accurately forecast the parameters necessary to operate the business on March 4, 2009.”
That kind of sabotage would harm the company’s efforts to sell its electricity in Texas’ power market for that day, but it wouldn’t threaten plant safety, or cause an outage, says control system cyber security expert Joe Weiss. “The people in Texas aren’t going to see their lights flicker as a result of this,” says Weiss. “This is an economic issue.”
When he was terminated, Shin allegedly promised to return his company-issue laptop the next day. But he failed to deliver until a corporate security agent showed up at his front porch on March 5 to retrieve the computer.
The company reported the sabotage to the FBI on March 6, estimating over $26,000 in losses. EFH did not return a phone call Friday. Threat Level couldn’t locate a phone number for Shin, and he did not respond to an e-mail query — possibly because the FBI seized all his computer gear, including over two dozen PCs and laptops, various thumb drives, DVDs, CDs, an iPod and a Wii.
Cyber security professionals and government agencies have long warned that intruders could tamper with the computerized control systems that operate portions of the North American electric grid, though so far no confirmed cases of such sabotage have surfaced. In March, though, a Los Angeles federal grand jury indicted a disgruntled tech employee on allegations of temporarily disabling a computer system detecting pipeline leaks for three oil derricks off the Southern California coast. In 2003, the Slammer worm penetrated the operations network at Ohio’s Davis-Besse nuclear power plant, disabling a safety monitoring system for nearly five hours.
By Kevin Poulsen May 29, 2009 | 4:36 pm | Categories: Hacks and Cracks
The FBI is investigating a computer intrusion at a large Texas power company that crippled the firm’s energy forecast system for a day in March, costing it over $26,000.
Early Thursday morning FBI agents raided the home of a former employee of Dallas-based Energy Future Holdings — the corporate parent of three large Texas electric companies, including Luminent, which has over 18,300 megawatts of generation in Texas, and operates the Comanche Peak nuclear power plant.
The ex-employee, Dong Chul Shin, was fired from the company March 3 for performance reasons, and escorted off the premises, according to court records. But the company failed to immediately shut off his VPN access. That afternoon, someone using Shin’s account began logging onto the corporate network, e-mailing out proprietary data to a personal Yahoo account linked to Shin, and modifying and deleting files, according to a search warrant affidavit by Dallas FBI agent Robert Smith.
The Comanche Peak nuclear power plant in Texas.
Company logs showed that the VPN connection originated at Shin’s home IP address, Smith writes.
While logged into the VPN, the intruder sent an e-mail to the engineering group operating the Comanche Peak nuclear reactor. The message asked questions about the safety of the reactor, in particular wondering what would happen if the load were to be “increased to 99.7 percent of capacity.” While at EFH, Smith notes, “Shin was responsible for programming the models which controlled the management of EFH power generation facilities, including Comanche Peak.”
No charges have apparently been filed, but the FBI is treating the case as a suspected violation of federal computer crime laws, including a rarely-used statute prohibiting breaking into a computer and creating “a threat to public health or safety.”
But the damage noted in the affidavit appears to be purely financial. One of the files that was tampered with, “Hourly Capacity Supplied — 2009 upload.xls,” is described as an “input file to determine the power generation required by the RFH system components.” The net result of the tampering was that “the EFH management system was rendered inoperable, resulting in EFH being unable to accurately forecast the parameters necessary to operate the business on March 4, 2009.”
That kind of sabotage would harm the company’s efforts to sell its electricity in Texas’ power market for that day, but it wouldn’t threaten plant safety, or cause an outage, says control system cyber security expert Joe Weiss. “The people in Texas aren’t going to see their lights flicker as a result of this,” says Weiss. “This is an economic issue.”
When he was terminated, Shin allegedly promised to return his company-issue laptop the next day. But he failed to deliver until a corporate security agent showed up at his front porch on March 5 to retrieve the computer.
The company reported the sabotage to the FBI on March 6, estimating over $26,000 in losses. EFH did not return a phone call Friday. Threat Level couldn’t locate a phone number for Shin, and he did not respond to an e-mail query — possibly because the FBI seized all his computer gear, including over two dozen PCs and laptops, various thumb drives, DVDs, CDs, an iPod and a Wii.
Cyber security professionals and government agencies have long warned that intruders could tamper with the computerized control systems that operate portions of the North American electric grid, though so far no confirmed cases of such sabotage have surfaced. In March, though, a Los Angeles federal grand jury indicted a disgruntled tech employee on allegations of temporarily disabling a computer system detecting pipeline leaks for three oil derricks off the Southern California coast. In 2003, the Slammer worm penetrated the operations network at Ohio’s Davis-Besse nuclear power plant, disabling a safety monitoring system for nearly five hours.
# posted by raveneye @ 9:59 AM 
Comments:
<< Home
[u][b]Xrumer[/b][/u]
[b]Xrumer SEO Professionals
As Xrumer experts, we secure been using [url=http://www.xrumer-seo.com]Xrumer[/url] for the benefit of a wish immediately now and remember how to harness the massive power of Xrumer and turn it into a Banknotes machine.
We also provender the cheapest prices on the market. Diverse competitors will charge 2x or temperate 3x and a a pile of the opportunity 5x what we responsibility you. But we feel in providing prominent service at a debilitated affordable rate. The whole point of purchasing Xrumer blasts is because it is a cheaper surrogate to buying Xrumer. So we focusing to keep that thought in cognizant and outfit you with the cheapest rate possible.
Not just do we cause the greatest prices but our turnaround time payment your Xrumer posting is wonderful fast. We compel secure your posting done before you discern it.
We also provide you with a ample log of loaded posts on manifold forums. So that you can catch a glimpse of also in behalf of yourself the power of Xrumer and how we hold harnessed it to benefit your site.[/b]
[b]Search Engine Optimization
Using Xrumer you can think to see thousands upon thousands of backlinks for your site. Many of the forums that your Site you settle upon be posted on have exalted PageRank. Having your association on these sites can really expropriate establish up some cover rank endorse links and really as well your Alexa Rating and Google PageRank rating via the roof.
This is making your put more and more popular. And with this inflate in reputation as well as PageRank you can envisage to witness your milieu really filthy expensive in those Search Motor Results.
Transport
The amount of conveyance that can be obtained by harnessing the power of Xrumer is enormous. You are publishing your site to tens of thousands of forums. With our higher packages you may still be publishing your site to HUNDREDS of THOUSANDS of forums. Visualize 1 collection on a all the rage forum disposition almost always enter 1000 or so views, with announce ' 100 of those people visiting your site. At once create tens of thousands of posts on fashionable forums all getting 1000 views each. Your see trade liking go at the end of one's tether with the roof.
These are all targeted visitors that are interested or singular far your site. Envision how innumerable sales or leads you can fulfil with this considerable gang of targeted visitors. You are truly stumbling upon a goldmine primed to be picked and profited from.
Remember, Transport is Money.
[/b]
GET YOUR CHEAP ERUPTION TODAY:
http://www.xrumer-seo.com
[b]Xrumer SEO Professionals
As Xrumer experts, we secure been using [url=http://www.xrumer-seo.com]Xrumer[/url] for the benefit of a wish immediately now and remember how to harness the massive power of Xrumer and turn it into a Banknotes machine.
We also provender the cheapest prices on the market. Diverse competitors will charge 2x or temperate 3x and a a pile of the opportunity 5x what we responsibility you. But we feel in providing prominent service at a debilitated affordable rate. The whole point of purchasing Xrumer blasts is because it is a cheaper surrogate to buying Xrumer. So we focusing to keep that thought in cognizant and outfit you with the cheapest rate possible.
Not just do we cause the greatest prices but our turnaround time payment your Xrumer posting is wonderful fast. We compel secure your posting done before you discern it.
We also provide you with a ample log of loaded posts on manifold forums. So that you can catch a glimpse of also in behalf of yourself the power of Xrumer and how we hold harnessed it to benefit your site.[/b]
[b]Search Engine Optimization
Using Xrumer you can think to see thousands upon thousands of backlinks for your site. Many of the forums that your Site you settle upon be posted on have exalted PageRank. Having your association on these sites can really expropriate establish up some cover rank endorse links and really as well your Alexa Rating and Google PageRank rating via the roof.
This is making your put more and more popular. And with this inflate in reputation as well as PageRank you can envisage to witness your milieu really filthy expensive in those Search Motor Results.
Transport
The amount of conveyance that can be obtained by harnessing the power of Xrumer is enormous. You are publishing your site to tens of thousands of forums. With our higher packages you may still be publishing your site to HUNDREDS of THOUSANDS of forums. Visualize 1 collection on a all the rage forum disposition almost always enter 1000 or so views, with announce ' 100 of those people visiting your site. At once create tens of thousands of posts on fashionable forums all getting 1000 views each. Your see trade liking go at the end of one's tether with the roof.
These are all targeted visitors that are interested or singular far your site. Envision how innumerable sales or leads you can fulfil with this considerable gang of targeted visitors. You are truly stumbling upon a goldmine primed to be picked and profited from.
Remember, Transport is Money.
[/b]
GET YOUR CHEAP ERUPTION TODAY:
http://www.xrumer-seo.com
# posted by 
: 6:51 AM
: 6:51 AM
[B]NZBsRus.com[/B]
No More Slow Downloads Using NZB Files You Can Quickly Search High Quality Movies, PC Games, MP3 Albums, Software and Download Them @ Dashing Rates
[URL=http://www.nzbsrus.com][B]Newsgroup[/B][/URL]
No More Slow Downloads Using NZB Files You Can Quickly Search High Quality Movies, PC Games, MP3 Albums, Software and Download Them @ Dashing Rates
[URL=http://www.nzbsrus.com][B]Newsgroup[/B][/URL]
# posted by : 7:28 AM
: 7:28 AM
Confirmation Our Sad Prices at www.Pharmashack.com, The Unrivalled [b][url=http://www.pharmashack.com]Online Chemist's rat on [/url][/b] To [url=http://www.pharmashack.com]Buy Viagra[/url] Online ! You Can also Wax up Acclaimed Deals When You [url=http://www.pharmashack.com/en/item/cialis.html]Buy Cialis[/url] and When You You [url=http://www.pharmashack.com/en/item/levitra.html]Buy Levitra[/url] Online. We Also Be subjected to a Respected Generic [url=http://www.pharmashack.com/en/item/phentermine.html]Phentermine[/url] In move up of the profit of Your Victuals ! We Chevy away Cite contrast [url=http://www.pharmashack.com/en/item/viagra.html]Viagra[/url] and Also [url=http://www.pharmashack.com/en/item/generic_viagra.html]Generic Viagra[/url] !
# posted by : 4:05 PM
: 4:05 PM
Infatuation casinos? ruminate on this latest [url=http://www.realcazinoz.com]casino[/url] advisor and confine a down attack to blows up online casino games like slots, blackjack, roulette, baccarat and more at www.realcazinoz.com .
you can also boot the pail our contrary [url=http://freecasinogames2010.webs.com]casino[/url] be up against at http://freecasinogames2010.webs.com and subjugate owner folding spondulix !
another late-model [url=http://www.ttittancasino.com]casino spiele[/url] livelihood is www.ttittancasino.com , because german gamblers, sprig in unconstrained online casino bonus.
you can also boot the pail our contrary [url=http://freecasinogames2010.webs.com]casino[/url] be up against at http://freecasinogames2010.webs.com and subjugate owner folding spondulix !
another late-model [url=http://www.ttittancasino.com]casino spiele[/url] livelihood is www.ttittancasino.com , because german gamblers, sprig in unconstrained online casino bonus.
# posted by : 6:13 PM
: 6:13 PM
Someone deleted several links from badongo and netload servers.
From now, we will use www.tinyurlalternative.com as our main [url=http://www.tinyurlalternative.com]url shortener[/url], so every link will be there and visible for everyone.
You can pick out from many great [url=http://kfc.ms]short url[/url] names like:
kfc.ms easysharelink.info jumpme.info megauploadlink.info megavideolink.info mygamelink.info myrapidsharelink.info mytorrentlink.info myurlshortener.com mywarezlink.info urlredirect.info urlshrinker.info weblinkshortener.com youtubelink.info and many others.
They include above 60 different ready domains and the [url=http://myurlshortener.com]url shortener[/url] service work well for free without any registration needed.
So we think it is good notion and suggest you to use [url=http://urlredirect.info]url redirect[/url] service too!
Thank you.
Post a Comment
From now, we will use www.tinyurlalternative.com as our main [url=http://www.tinyurlalternative.com]url shortener[/url], so every link will be there and visible for everyone.
You can pick out from many great [url=http://kfc.ms]short url[/url] names like:
kfc.ms easysharelink.info jumpme.info megauploadlink.info megavideolink.info mygamelink.info myrapidsharelink.info mytorrentlink.info myurlshortener.com mywarezlink.info urlredirect.info urlshrinker.info weblinkshortener.com youtubelink.info and many others.
They include above 60 different ready domains and the [url=http://myurlshortener.com]url shortener[/url] service work well for free without any registration needed.
So we think it is good notion and suggest you to use [url=http://urlredirect.info]url redirect[/url] service too!
Thank you.
# posted by : 4:04 AM
: 4:04 AM << Home
