Is your automatic tank gauge (ATG) potentially subject to a cyber security breach? The short answer is yes.
Here at UST Training, we strive hard to make sure our customers are safe. Safe environmentally, safe compliance-wise, and in this case, now cyber security safe.
This startling article, which is based on a just-published Department of Defense study, brings in a whole new level of risk concern to the back room of your UST office.
What does that mean and how can it affect the typical Class A/B UST operator? This in-depth but slightly technical document from Bitsight.com tries to answer the question.
Bitsight strongly believes in responsible disclosure of vulnerabilities. For the past six months, Bitsight has been collaborating closely with the U.S. Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA), as well as with affected vendors, in order to mitigate these vulnerabilities. This coordinated effort aims to safeguard critical infrastructure and prevent the dire consequences that could result from successful attacks.
Pro Tip: Make sure your ATG is never directly connected continuously to the Internet.
If this article is too dense, we suggest reading this for immediate considerations: Recommendations to Safeguard ATG Systems
PS. We found this tank gauge printout online the day after we read this article. If you don’t think this could happen to you…..
What could they possibly acquire from hacking that? I’m seriously asking.
I asked the very same question. The answer I got from professional hackers was, sinisterly, general social disruption. If they can do it on one tank monitor, they can do it on a network of thousands.