The U.S. Environmental Protection Agency (EPA) is initiating a “Water Sector Cybersecurity Task Force” to address cybersecurity threats facing the water sector. EPA Administrator Michael Regan and National Security Advisor Jake Sullivan emphasized the critical need to safeguard water and wastewater systems against cyberattacks that could disrupt access to clean drinking water. Threat actors like Cyber Av3ngers and Volt Typhoon have targeted the nation’s water systems, prompting urgent action to bolster cybersecurity practices.
The task force aims to enhance collaboration and develop strategies to mitigate vulnerabilities in water systems, particularly as they often lack the resources and technical capacity for robust cybersecurity measures. The formation of the task force coincides with the release of a fact sheet from the U.S. Cybersecurity and Infrastructure Security Agency (CISA), urging critical infrastructure entities to defend against threats posed by groups like Volt Typhoon. CISA emphasized the importance of implementing secure-by-design principles, safeguarding supply chains, and raising awareness of social engineering tactics.
The EPA’s initiative underscores the growing recognition of cybersecurity risks facing critical infrastructure sectors like water and wastewater. SentinelOne, a cybersecurity firm, highlighted China’s offensive media strategy aimed at shaping global perceptions of U.S. hacking operations. While China propagates unsubstantiated narratives, the task force’s establishment reflects a proactive approach to fortify defenses and mitigate cyber threats to vital water systems.
