“Cybersecurity is a constant priority for the Commission and the utilities we regulate,” said PUC Chairman Steve DeFrank. “While we have no indication of specific threats to Pennsylvania utilities at this time, global events serve as an important reminder that critical infrastructure must remain vigilant. By sharing timely information and reinforcing strong cybersecurity practices, the Commission is working proactively with utilities across Pennsylvania to help safeguard the systems that power our homes, businesses, and communities.”
The advisory, distributed to jurisdictional utilities earlier this week, highlights a series of recommended cybersecurity practices intended to help utilities protect essential services such as electricity, natural gas, water, telecommunications, and other systems that Pennsylvanians rely on every day.
The Commission noted that evolving geopolitical developments — including the ongoing conflict involving Iran and the broader potential for retaliatory cyber activity against U.S. infrastructure — underscore the importance of maintaining strong cybersecurity protections across all sectors of critical infrastructure.
The advisory was developed and distributed by the PUC’s Office of Cybersecurity Compliance and Oversight as part of the Commission’s ongoing efforts to monitor emerging threats and share information with the utility community.
Best Practices
Among the key areas highlighted in the advisory are several widely recognized cybersecurity best practices designed to reduce the risk of cyber intrusion or disruption, including:
-- Strengthening network protections by isolating sensitive operational systems from the public internet whenever possible.
-- Improving access security, including the use of strong passwords and phishing-resistant multi-factor authentication for remote access and administrative systems.
-- Addressing known software vulnerabilities by ensuring that critical systems, firewalls, and remote management tools are updated and properly secured.
-- Enhancing monitoring and incident response planning, including reviewing business continuity and disaster recovery plans to ensure utilities can quickly detect and respond to unusual network activity.
The Commission also encouraged utilities to remain alert for sophisticated cyber techniques that rely on legitimate system tools to avoid detection — sometimes referred to as “living off the land” activity — and to closely monitor their systems for unusual behavior that could signal unauthorized access.
Key Resources
As part of the advisory, the PUC recommended that utilities review guidance from the U.S. Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA), including the agency’s “Shields Up” initiative and other cybersecurity resources designed to help critical infrastructure operators strengthen their defensive posture.
Utilities were also reminded of the importance of promptly reporting cyber incidents to appropriate authorities, including the Federal Bureau of Investigation, the Pennsylvania Criminal Intelligence Center, and the PUC in cases where incidents fall within the Commission’s cyber reporting regulations.
“Protecting the systems that deliver essential utility services is critical to public safety and economic stability,” DeFrank added. “The Commission will continue working closely with utilities, law enforcement, and national partners to ensure that Pennsylvania remains prepared to meet the cybersecurity challenges of today and tomorrow.”
Cybersecurity has been a longstanding focus of the Commission’s oversight and collaboration with utilities.
The PUC regularly works with federal partners, industry organizations, and other state regulators to share threat information and strengthen protections for critical infrastructure systems across the country.
Because cyber threats continue to evolve rapidly, the Commission encourages utilities of all sizes to regularly review their cybersecurity practices and remain engaged with state and federal partners on emerging risks.
For more information about cybersecurity resources available to critical infrastructure operators, visit the Cybersecurity and Infrastructure Security Agency at www.cisa.gov.
Click Here for the PUC announcement.
NewsClip:
-- Utility Dive: US Warns Energy Companies To Increase Security In Response To Potential Threats From Iran; Utilities Lack Tools To Guard Grid From Drone AttacksPA Oil & Gas Industry Public Notice Dashboards:
-- PA Oil & Gas Weekly Compliance Dashboard - Feb. 28 to March 6 - Abandoned Conventional Wells Hit 100; Investigating Seismic Event Near Wastewater Injection Well; Well Transfer Violations [PaEN]
-- DEP Investigating Seismic Event Near Penneco Environmental Oil & Gas Wastewater Injection Well In Plum Boro, Allegheny County [PaEN]
-- PA Oil & Gas Industrial Facilities: Permit Notices, Opportunities To Comment - March 7 [PaEN]
-- DEP Invites Comments On Air Quality Permit For MarkWest Harmon Creek Natural Gas Processing Plant In Washington County [PaEN]
-- DEP Accepting Comments On Chapter 105 Permit For 8 Mile, 24-Inch EQT ARO LLC Water Pipeline To Support Shale Gas Development In State Forest Land In Lycoming County [PaEN]
-- DEP Invites Comments On Chapter 105 Permit For A Double 16-Inch Expand Operating LLC Water Pipelines To Support Shale Gas Development In Standing Stone Twp., Bradford County [PaEN]
-- DEP Accepting Comments On Chapter 105 Permit For Double 16-Inch Expand Operating LLC Water Pipelines To Support Shale Gas Development In Forkston, North Branch & Windham Twps., Wyoming County [PaEN]
-- DEP Posted 74 Pages Of Permit-Related Notices In March 7 PA Bulletin [PaEN]
Related Articles This Week:
-- PA Shale Gas & Public Health Conference: Dr. Gary Allison - 75% Of Shale Gas Chemical Disclosure Listings Hide What’s In 200 Million Pounds Of Materials Used In PA Fracking; A Colorado Law Would Fix That [PaEN]
-- Protect PT To Hold Workshops In Plum Boro March 12, Monessen March 19 On How To Protect Your Community From Environmental Threats Caused By Shale Gas Development [PaEN]
-- Environmental Quality Board Meets March 10 On Final Stream Redesignations Package; Report Due On DEP Review Of The Petition To Increase Setbacks From Shale Gas Wells, 4 Other Petitions [PaEN]
-- DCNR House Budget Hearing: House Republicans Propose More Shale Drilling In State Forest Land, Under State Parks; Gas Drilling Has Caused The Loss Of 30,000 Acres Of Core State Forest Land So Far [PaEN]
-- Senate PUC Budget Hearing: PUC Chair Says PJM Market Auction Not Designed For Data Center Demands; PA Needs To Diversify Fuels Used To Generate Electricity; Bring Your Own Power Critical [PaEN]
-- House Committee Reports Out Bills To Require Data Centers To Disclose Energy, Water Use, Direct DCED To Develop Model Data Center Ordinance [PaEN]
-- New Comprehensive Report Lays Out Case For 3-Year A.I. Data Center Moratorium To Be Introduced In Pennsylvania [PaEN]
-- Penn State Extension Hosts April 7 Webinar On Data Centers - State And Local Regulation [PaEN]
-- Sen. Yaw Urges FERC To Allow PJM To Keep Charging Pennsylvania Ratepayers Record High Capacity Auction Prices For Power, But Charge Other States Even More [PaEN]
-- In Case You Missed It: A.I./Data Center Articles - NewClips From Last Week - March 9 [PaEN]
-- PUC Issues Cybersecurity Advisory To Electric, Natural Gas Other Utilities Amid Growing Global Tensions [PaEN]
-- PA Solar Center, Capital Good Fund Partner On Pennsylvania BRIGHT To Deliver Nearly 70 Solar Energy Projects Worth Up To $40 Million [PaEN]
-- Guest Essay: Pennsylvania Needs To Act Now To Prevent A New $700 Million Increase In Electric Costs For Ratepayers - By Steve DeFrank, Chairman, Public Utility Commission [PaEN]
-- Energy Efficiency Alliance: March 12 Webinar - How Virtual Power Plants Strengthen Our Grid, Protect Ratepayers [PaEN]
-- Penn State Extension Hosts April 13 Webinar On Geothermal Energy Opportunities [PaEN]
-- Pittsburgh Penguins Reduce Carbon Footprint By Buying Carbon Credits Supporting 272 Acres Of Green Space In Allegheny County [PaEN]
NewsClips:
-- WESA/The Allegheny Front - Reid Frazier: MarkWest Spills Over 1 Million Gallons Of Drilling Fluid Into Abandoned Coal Mine During Pipeline Construction In Washington County
-- Bradford Era: No Injuries In Overnight Fire At American Refining Group Refinery In Bradford, McKean County
-- The Allegheny Front: Ohio - Water Districts, Municipalities Join Call For Oil & Gas Wastewater Injection Well Moratorium
-- Utility Dive: US Warns Energy Companies To Increase Security In Response To Potential Threats From Iran; Utilities Lack Tools To Guard Grid From Drone Attacks
-- Morning Call/AP: Iran Strikes Amazon Data Centers In Middle East Highlighting Industry’s Vulnerability To Physical Disasters
-- The Derrick: War In Iran To Cause Massive Disruption In Oil Industry, According To Oil City Native & Middle East Expert Andrew Tabler [PDF of Article]
-- War Profits: Windfall Profits Tax On The Oil & Gas Industry? Household Rebates To Offset Spiking Energy Costs
-- Inside Climate News - Kiley Bense: How Will President’s War On Iran Affect Your Utility Bills?
-- Financial Times: Coal Prices Jump As Utilities Seek Alternative To Spiking Natural Gas Prices Due US President’s War With Iran
-- Reuters: There Is Little LNG Producers Can Do To Immediately Replace Lost Qatari Cargoes
-- Bloomberg: Oil Market Chaos Set To Deepen As More Gulf Giants Cut Output Because Of President’s Iran War
-- TribLive/AP: Energy Prices Surge As Tanker Disruptions And Facility Shutdowns Rattle Global Supply [US Natural Gas Prices Linked To World Markets Thanks To LNG]
-- Bloomberg: European Natural Gas Prices Hit 3-Year High As Qatar LNG Halt Rocks Markets [US Natural Gas Prices Linked To World Markets Thanks To LNG]
-- The Economist: The Nightmare Iran Energy Scenario Is Becoming Reality [PDF of Article]
-- Bloomberg: President’s War On Iran Has Traders Staring Down An Energy Crisis [War-Caused Price Spikes Good For Oil & Gas Companies, Bad For Consumers]
-- Financial Times: US Shale Drillers Resist Quick Ride To Rescue For Iran War Oil Disruption [PDF of Article]
No comments :
Post a Comment