TechHub: 6 Steps to Protect Backup Power Supplies from Cyber Threats

Tags

industrial cybersecurity

Power plant. Source: Pixabay

An internet-connect UPS, or Uninterruptible Power Supply, is one of the common types of IoT device on the market today.

Industrial organizations worldwide put a high value on availability, so they invest in monitoring electricity consumption and preparing for power outages. APC, owned by Schneider Electric, says it has sold more than 20 million UPS devices globally, and that’s just one leading brand.

In March, the Cybersecurity Infrastructure Security Agency released an alert that says it’s aware of cybersecurity attacks on Internet-connected UPS devices. It outlined how industrial organizations can protect UPS devices.

It’s important to note the recommendations are applicable to IoT devices in general, and the steps align with how GrayMatter performs comprehensive cybersecurity assessments for industrial clients with enterprise-level, highly distributed device networks.

What Industrial Organizations Can Do

Identify All Networked UPS and Emergency Power Systems
Remove/Disable Internet-Accessible Management Interfaces (When Possible)
Put Internet-Connected UPS Devices Behind a Virtual Private Network (VPN)
Enable Multi-Factor Authentication
Ensure Factory-Default Passwords Are Not In Use
Implement Strong Passwords to Mitigate Brute-Force Attacks

Patching specific vulnerabilities can also come into play.

Armis researchers recently found a trio of zero-day vulnerabilities (dubbed TLStorm) could allow an unauthenticated user to remotely control smart-UPS devices from APC.

A zero-day exploit refers to a new vulnerability, at first known only to the bad actor or actors trying to exploit it. The term itself derives from the fact that software developers have zero days remaining to fix or patch the vulnerability because it's already compromised.

The TLSTorm exploit could allow someone to “disable, disrupt or destroy” an APC device or a device connected to it. APC/Schneider Electric has made information about a patch available. APC is a leading vendor of UPS devices used by industrial facilities.

GrayMatter’s OT Cybersecurity Assessment can help industrial clients identify potentially vulnerable UPS and other connected devices. Contact GrayMatter to learn more or schedule a cybersecurity briefing.

Cookie	Duration	Description
cookielawinfo-checbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.