The Russians planted malware in our electric grids in at least the October 2014 timeframe. In the mid- 2015 time frame, DHS berated industry for connecting control systems to the Internet and stating that is how the attackers got access. I believe the malware attacks against US critical infrastructure can be traced back years further as were Chinese intrusions. Since there are no NERC CIP requirements to remove malware, there is a good chance the malware is still there. What’s new and why the disclosures now?
Joe Weiss