The Cucamonga Valley Water District (CVWD) in the Inland Empire, California, is currently grappling with the aftermath of a ransomware attack that severely disrupted its phone payment system. The cyber attack, which occurred on August 15, 2024, rendered the district’s phone payment capabilities inoperative, preventing customers from making payments via this method. The disruption was significant, affecting many residents who rely on phone transactions to manage their water bills. However, the district reported that by August 26, 2024, the issue was resolved, and phone payment services were restored.
Fortunately, the ransomware attack did not impact CVWD’s core water distribution operations or its customer database, as these systems are maintained on separate networks from the compromised phone system. CVWD serves approximately 190,000 customers across a 47-square-mile area, including the cities of Rancho Cucamonga, Upland, Fontana, and Ontario. The district emphasized that its essential water distribution services continued uninterrupted during the incident, despite the challenges faced with the payment system.
In response to the attack, CVWD has taken several steps to address the situation. The district promptly notified federal authorities about the cyber attack and engaged in an investigation to determine the extent of the breach. While CVWD has not disclosed whether a ransom was paid or identified the perpetrators, the district has committed to informing customers if their personal information is found to have been compromised. This breach marks the second known cyber incident involving CVWD’s payment systems, following a similar breach in 2019 where payment details might have been exposed.
The attack on CVWD is part of a broader pattern of cybersecurity threats targeting critical infrastructure across the United States. Recent federal warnings have highlighted the increasing risks posed by foreign cyber actors, such as the Iranian Islamic Revolutionary Guard Corps and China’s Volt Typhoon, who have been targeting water systems and other critical infrastructure. The incident at CVWD underscores the urgent need for enhanced cybersecurity measures to protect public services from evolving and sophisticated cyber threats. As the district continues to address the fallout from this attack, it remains committed to bolstering its security protocols and ensuring the continued safety and reliability of its services for the community.
Reference:
