Ukraine Power Outages Caused By Malware, Say Researchers

Illustration for article titled Ukraine Power Outages Caused By Malware, Say Researchers

On December 23rd, a large swathe of Ukraine suffered a massive power outage. This week, it’s come to the light that it could have been the result of destructive malware.

Advertisement

In a blog post, a team from security researchers iSIGHT explains that the attack seems to have used a piece of malware called BlackEnergy which can be used to “plant a KillDisk component onto the targeted computers that would render them unbootable.” It seems such attacks were levelled at three regional power authorities in Ukraine, leaving half of homes in the Ivano-Frankivsk region of Ukraine without electricity.

The malware appears to be spread using Microsoft Office files that contain malicious macros. Hackers simply send out emails with such files contained as attachments, in this case using email addresses spoofed to appear as being sent from the national parliament. The text in the message encourages the recipient to run the macros in the file, in turn installing a version of BlackEnergy on the computer.

From there, the system can install KillDisk malware or make use of a SSH backdoor to provide attackers with remote access. “After having successfully infiltrated a critical system with either of these trojans, an attacker would, again theoretically, be perfectly capable of shutting it down,” write the researchers. “ We can assume with a fairly high amount of certainty that the described toolset was used to cause the power outage in the Ivano-Frankivsk region.”

If these claims are true, it’s fairly worrying that it’s possible to bring about power outages using malicious Microsoft Office files.

[We Live Security via Ars Technica]

Image by Nick Page under Creative Commons license

Advertisement

DISCUSSION

This is exactly how the next big shit will go down. Take out electricity for more than 24h, you stop a city. 48h and there’s riots. 72h, people start to die. A week, even the Reserve/Army/National Guard will have trouble containing. A month, thousands die.

Now expand that to 10 major cities. Now figure 100.

You know, nukes are scary as shit, but this right here is what we should be afraid of. Solar flares, cyberattacks, anything that can compromise our power grid. That’s the one thing that has no backup and can’t be prepared for. And whatever some might say, we can’t possibly survive without it nowadays.