In response to “multiple” cyber threat vectors, the Biden administration has asked governors of all 50 states to generate cybersecurity plans within 90 days (approximately July 1, 2024) to protect local water and wastewater...more
4/3/2024
/ Biden Administration ,
Cyber Threats ,
Cybersecurity ,
Cybersecurity Framework ,
Data Protection ,
Drinking Water ,
Information Technology ,
Infrastructure ,
Popular ,
Risk Management ,
Threat Management ,
Wastewater ,
Water
In one of the most clear-eyed and sobering assessments of the cyberthreat China poses to our nation’s critical infrastructure, the country’s foremost cybersecurity leaders recently testified that the Chinese Communist Party...more
2/9/2024
/ China ,
Critical Infrastructure Sectors ,
Cyber Attacks ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Data Security ,
Hackers ,
Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) ,
Information Technology ,
National Security ,
Network Security ,
Popular ,
Risk Management ,
Software ,
Vulnerability Assessments
Despite efforts to stem increasing cyber threats to water systems around the nation, on October 13, 2023, the United States Environmental Protection Agency (EPA) withdrew cybersecurity mandates put in place by the Biden...more
10/16/2023
/ Biden Administration ,
Cybersecurity ,
Drinking Water ,
Environmental Policies ,
Environmental Protection Agency (EPA) ,
Infrastructure ,
Safe Drinking Water Act ,
Vulnerability Assessments ,
Wastewater ,
Water ,
Water Supplies
The Environmental Protection Agency’s (EPA) rush to push billions of dollars of grant assistance to recipients has created the potential for devastating cyberattacks and intellectual property theft on water/wastewater...more
Public Water Systems (PWS) are now required to conduct cyber defense check-ups at the same time they conduct their routine “sanitary surveys,” according to a new requirement issued by the Environmental Protection Agency on...more
During the past couple of years, multiple warnings of imminent cyberattacks have seemingly gone unheeded by critical infrastructure owners and operators. Is embracing a fantasy that they won’t be attacked potentially a...more
While acknowledging that voluntary approaches to cybersecurity compliance have produced some important improvements, the Biden administration says those improvements have been mostly incomplete and inadequate, particularly in...more
In a recent report, Microsoft cataloged the past year’s cybersecurity threats they saw plaguing the U.S. What they found is as disturbing as it is unsurprising. China, Russia, Iran and affiliated groups are all becoming far...more
On October 18, 2022, the Transportation Security Administration (TSA) issued Security Directive 1580-21-01A, intended to make the nation’s rail system more cyber secure by promoting lines of communication and improving...more
$1Bn is now available to state, local and tribal (SLT) entities to shore up their cybersecurity vulnerabilities under the State and Local Cybersecurity Grant Program (SLCGP) announced on Friday, September 16th by the U.S....more
A proposed $1M civil penalty against Colonial Pipeline for its procedural failures during a ransomware attack could indicate what’s in store for critical infrastructure operators who fail to keep employees up to date on how...more
5/13/2022
/ Critical Infrastructure Sectors ,
Cyber Attacks ,
Cybersecurity ,
Cybersecurity Information Sharing Act (CISA) ,
Employee Training ,
National Security ,
PHMSA ,
Pipelines ,
Popular ,
Ransomware ,
Risk Management ,
Russia
In 2010, Congress held hearings that sought to understand how the Department of Homeland Security was enforcing cybersecurity regulations on “covered” critical infrastructure (CI) providers. Congress learned that DHS was...more
The United States is facing a very real cybersecurity threat. As Russia intensifies actions in Ukraine, economic sanctions are sure to follow. In response, experts expect Russia to launch cyberattacks against high-value...more
On January 20th, the Federal Energy Regulatory Commission (FERC) issued a new Notice of Proposed Rulemaking (NOPR) that would direct the North American Electric Reliability Corporation to strengthen cybersecurity standards to...more
According to a January 27, 2022 statement from the White House:
"Today, the Biden-Harris Administration announced it will extend the Industrial Control Systems (ICS) Cybersecurity Initiative to the water sector. ...more
Cyberattacks on organizations worldwide surged 40% in 2021. September 2021 broke records for the number of weekly cyberattacks, topping all other months since January 2020. Currently, one out of every 61 organizations...more
10/25/2021
/ Continuing Legal Education ,
Critical Infrastructure Sectors ,
Cyber Attacks ,
Cyber Incident Reporting ,
Cybersecurity ,
Cybersecurity Information Sharing Act (CISA) ,
Data Breach ,
Data Security ,
Federal Funding ,
Noncompliance ,
Popular ,
Proposed Legislation ,
Proposed Regulation ,
Ransomware ,
State and Local Government ,
Tribal Governments ,
Utilities Sector ,
Water ,
Webinars
As we reported on September 9th, meaningful and robust federal cybersecurity legislation is nearly across the finish line. Since then, further developments indicate that reporting mandates are imminent. On September 21st, the...more
In the wake of several recent high-profile cyber and ransomware attacks on critical infrastructure, Committees in both the House and Senate are drafting at least three separate pieces of legislation that would require victims...more
As we begin to better understand the main components of the Infrastructure Investment and Jobs Act that the US Senate is working to pass this week, it is clear that public-private partnerships ("P3s") are a favored funding...more
The President unveiled details of his historic infrastructure plan this morning, proposing the largest infrastructure investment in U.S. history. ...more
Like that famous movie line, “Show me the money!,” Congress is sending money directly to certain community projects in a practice known as earmarking. The money and earmarking spigot in Washington, DC is about to turn on...more
In light of the major cybersecurity breach of the SolarWinds Orion software by malicious actors, the Water Information Sharing and Analysis Center (WaterISAC) recently issued a series of advisories providing guidance for...more
If you were unable to attend our recent webinar “Flood or Drought? A Discussion of the Election’s Potential Legislative Impacts on the Water Sector”, please check out the several key take-aways from the presentation...more
President-elect Joe Biden’s victory over Donald Trump could mean big changes for federal treatment of issues affecting water service providers, as well as how such issues are addressed in California, where Governor Newsom...more
President-elect Joe Biden’s victory over Donald Trump could mean big changes for federal treatment of issues affecting water service providers, as well as how such issues are addressed in California, where Governor Newsom...more
11/17/2020
/ Biden Administration ,
Congressional Committees ,
Continuing Legal Education ,
Coronavirus/COVID-19 ,
Drought ,
Election Results ,
Flood Management ,
Governor Newsom ,
Legislative Agendas ,
Public Health ,
Public Policy ,
State Water Boards ,
Water ,
Water Management ,
Water Supplies ,
Webinars