In February, an unknown attacker attempted to poison the Oldsmar city water supply in Florida by manipulating the sodium hydroxide levels through a remote access system. The attacker gained unauthorized access to the TeamViewer software used by the water treatment facility. This incident emphasized the potential risks to critical infrastructure from cyber attacks.
Affected vertical: Public utilities, specifically water supply infrastructure.
- Remote Services (T1021): The threat actor exploited remote services to gain unauthorized access to the system controlling chemical levels.
- Privilege Escalation (TA0004): The attacker was able to manipulate system settings, suggesting escalated privileges.