On December 23, 2015, the first ever cyber-attack that resulted in the physical loss of power to a customer occurred in Ukraine. Initial reports suggested that a total of 5 independent electric utilities were compromised.
- Remotely changed firmware running on assets
- Programming the uninterruptible power supplies (UPS) which provide backup power to the control center to shutdown power to the center once attacked was launched.
- Wiper virus that started to erase machines
- Locked out the HMI screen of Control Center Operators
- R. Lee, M. Assante, and T. Conway, “Analysis of the Cyber Attack on the Ukrainian Power Grid, Defense Use Case,” E-ISAC, Electricity Information Sharing and Analysis Center, Washington, DC, March 2016.