A successful cyberattack on critical national infrastructure such as an energy grid or water supply could be highly destructive, and do serious real-world damage
The UK government’s cyber defense agency warned on Wednesday of an emerging threat to Western critical national infrastructure posed by hackers sympathetic to Russia and its war on Ukraine.
Britain’s National Cyber Security Centre issued an official threat notice to operators of Britain’s electricity, water and other critical systems, telling them to boost their defenses.
“I don’t think we are yet doing enough to protect our infrastructure from the cyber threats emerging from Russia-aligning groups,” the center’s chief, Lindy Cameron, said.
Cabinet Minister Oliver Dowden said the threat comes from hackers sympathetic to Russia though not necessarily directed by the Russian state. He described them as the cyber equivalent of the Wagner Group, the private Russian company with mercenaries fighting in Ukraine.
He said that while the alleged hackers currently lack the capacity to do widespread damage to U.K. systems, the threat is growing.
Russia-aligned “hacktivists” have carried out largely harmless online campaigns that have defaced prominent public websites or knocked them offline.
However, some of those groups have been actively plotting ways to do more real-world damage, Britain’s National Cyber Security Centre (NCSC), part of the GCHQ eavesdropping intelligence agency, said in an alert.
“Some have stated a desire to achieve a more disruptive and destructive impact against western critical national infrastructure, including in the UK,” the NCSC said.
“We expect these groups to look for opportunities to create such an impact, particularly if systems are poorly protected,” said the alert, which was released to press at a two-day conference hosted by the NCSC and GCHQ in Belfast.
Although such groups are ideologically-motivated and align themselves with Russian state interests, they are “not subject to formal state control,” the alert said.
“This makes them less predictable,” it said.
A successful cyberattack on critical national infrastructure such as an energy grid or water supply could be highly destructive, and do serious real-world damage.
The NCSC alert said such attacks, which typically require very high levels of technical skill and resources to carry out, would be “unlikely” to be achieved by hacktivist groups “without external assistance,” but warned that they “may become more effective over time.”
That assistance may already be in place, however.
Among the dozens of highly classified U.S. intelligence documents which were posted online in recent weeks was one marked “Top Secret” that warned a pro-Russia hacking group named “Zarya” had infiltrated networks within Canada’s gas infrastructure.
According to that “Top Secret” document, a copy of which was reviewed by Reuters, the group offered screenshots to officers of Russia’s FSB as proof that they were able to “increase valve pressure, disable alarms, and initiate an emergency shutdown of an unspecified gas distribution station.”
Reuters has not independently verified the documents’ authenticity. A number of countries have questioned the veracity of some of the documents, including Britain, which said there was “a serious level of inaccuracy” in the information.