In a startling revelation, American Water Works, the nation's largest regulated water and wastewater utility, confirmed a cyberattack on its systems.
The breach, reported on Monday, October 7, affected over 14 million customers across 14 states and 18 military installations, marking a significant incident in the realm of cybersecurity.
According to Straight Arrow News, the company, headquartered in Camden, New Jersey, detected unauthorized activity within its computer networks on October 3. This discovery led to immediate protective measures, including the shutdown of certain systems to contain the breach. "Our water and wastewater operations were not affected by the attack," the company assured, emphasizing the continued safety of its core services.
In response to the breach, American Water paused its billing systems as a precautionary measure. The company reassured customers, stating they would not incur late fees while the systems remain offline. Currently, the company is collaborating with third-party cybersecurity experts and law enforcement to investigate the incident and ascertain its full extent.
In a regulatory filing, American Water acknowledged the uncertainty surrounding the full impact of the breach. However, the company expressed confidence that the incident would not materially affect its financial condition or operations. The company's expansive operations include more than 500 water and wastewater systems in approximately 1,700 communities.
This cyberattack on American Water Works comes amid heightened concerns from U.S. officials regarding vulnerabilities in critical infrastructure. Recent warnings from U.S. authorities have highlighted the risk of foreign actors, including Chinese intelligence services, targeting sectors such as water treatment facilities and broadband providers.
While American Water has yet to disclose the source of the attack, the incident underscores the growing concerns about cybersecurity threats to essential utilities. It serves as a stark reminder of the need for robust cybersecurity measures to protect our nation's critical infrastructure.
Login