Previous Thread
Next Thread
Print Thread
Rate Thread
Joined: Nov 2002
Posts: 1,146
Likes: 1
Ice Offline OP
UGN News Staff
OP Offline
UGN News Staff
Joined: Nov 2002
Posts: 1,146
Likes: 1
Human and computer failures were to blame for last year's power cut in North America, not the MSBlast worm, according to an investigation

A US and Canadian task force investigating the August 2003 blackout that cut power to an estimated 50 million North Americans published its final report on Monday, finding that institutional, human and computer failures -- not the MSBlast worm -- led to the outage.

The 14 August blackout hit three days after the worm started spreading, leading many to speculate that the quickly propagating program caused or contributed to the cascading failures that ultimately darkened New York, Toronto, Detroit and other areas.

Although several computer systems failed -- in particular, a server and backup that ran software for keeping track of the status of a major power network -- the Security Working Group leg of the Federal Energy Regulatory Commission (FERC)'s US-Canada Power System Outage Task Force "found no evidence that malicious actors caused or contributed to the power outage, nor is there evidence that worms or viruses circulating the Internet at the time of the power outage had an effect on power generation and delivery systems of the companies directly involved in the power outage," the report said.

The MSBlast, or Blaster, worm started spreading on 11 August, using a vulnerability in a common Microsoft Windows networking feature. The latest information from Microsoft indicates that as many as 16 million computers were infected.

In addition to ruling out MSBlast as the cause, the Security Working Group's report also stressed that there was no evidence that a cyberattack by al-Qaida, which had reportedly claimed responsibility for the attack after the fact, had caused the outage.

The finding essentially reiterates the conclusions of the task force's interim report, published in November.

Systems failures and human error at both the Midwest ISO and at FirstEnergy, a group of seven electric utilities that operate in the US Northeast and Midwest, were the primary causes of the blackout, according to the report.

An early-warning system at Midwest ISO could have alerted engineers, but it had been malfunctioning and was left off by an engineer who had gone to lunch. Meanwhile, another such system, known as the Alarm and Event Processing Routine, and its backup server, both failed at FirstEnergy, a fact that wasn't discovered until many hours later. Those system failures, combined with three major line outages caused by fallen tree limbs, resulted in the regional blackout, the report concluded.

While the system failures weren't the cause of the blackout, they prevented FirstEnergy from adequately responding to its own outages and caused the blackout to spread beyond that conglomerate's own system.

US Energy Secretary Spencer Abraham described the problem in a statement issued last November, when the interim report was published.

"Because FirstEnergy's monitoring equipment wasn't telling them about the downed lines, the control room operators took no action -- such as shedding load -- which could have kept the problem from growing and becoming too large to control," Abraham said in the statement.

The Security Working Group believes that its investigation, which included interviews, telephone transcripts, and law enforcement and intelligence information, gave it a complete picture of what happened. However, the working group decided not to analyse the logs of network devices, firewalls and intrusion detection systems, which could have given further evidence of any network attacks that coincided with the outage.

The report recommends that US energy companies share alert and vulnerability information, create a group to improve the security of control systems and adopt a set of interim regulations for computer security issued by the FERC.

FERC published the final report on its Web site on Monday.

ZDNet News


Good artists copy, great artists
steal.

-Picasso
Joined: Apr 2004
Posts: 298
UGN News Staff
Offline
UGN News Staff
Joined: Apr 2004
Posts: 298
Nice... they claim that no cyber attacks created the problem, yet opted to not analize the logs on the firewalls and servers. There's ya some good info...


Link Copied to Clipboard
Member Spotlight
Phatal
Phatal
Houston, TX
Posts: 298
Joined: April 2004
Forum Statistics
Forums41
Topics33,840
Posts68,858
Average Daily Posts1
Members2,176
Most Online3,253
Jan 13th, 2020
Latest Postings
Where and how do you torrent?
by danni75 - 03/01/24 05:58 AM
Animation,
by JohanKaariainen - 08/15/19 01:18 AM
Blackbeard.....
by Gremelin - 10/03/18 07:02 PM
my old account still exists!
by Crime - 08/10/18 02:47 PM
Okay WTF?
by HenryMiring - 09/27/17 01:45 AM
The History Thread...
by Gremelin - 08/11/17 12:11 PM
My friend NEEDS your HELP!
by Lena01 - 07/21/17 12:06 AM
I'm having fun with this guy.
by gabithompson730 - 07/20/17 01:50 AM
I want to upgrade my phone
by gabithompson730 - 07/20/17 01:49 AM
Doom 3
by Cyrez - 09/11/14 08:58 PM
Amazon Gift Card Generator/KeyGen?te
by Gecko666 - 08/22/14 09:21 AM
AIM scene 99-03
by lavos - 09/02/13 08:06 AM
Planetside 2
by Crime - 03/04/13 07:10 AM
Beta Testers Wanted
by Crime - 03/04/13 06:55 AM
Hello Everyone
by Gremelin - 02/12/12 06:01 PM
Tracfone ESN Generator
by Zanvin Green - 01/18/12 01:31 PM
Python 3 issue
by Testing - 12/17/11 09:28 PM
tracfone airtime
by Drache86 - 07/30/11 03:37 AM
Backdoors and the Infinite
by ZeroCoolStar - 07/10/11 03:52 AM
HackThisZIne #12 Releaseed!
by Pipat2 - 04/28/11 09:20 PM
gang wars? l33t-wars?
by Gremelin - 04/28/11 05:56 AM
Consolidate Forums
by diggin2deep - 04/21/11 10:02 AM
LAN Hacking Noob
by Gremelin - 03/12/11 12:42 AM
Top Posters
UGN Security 41,392
Gremelin 7,203
§intå× 3,255
SilentRage 1,273
Ice 1,146
pergesu 1,136
Infinite 1,041
jonconley 955
Girlie 908
unreal 860
Top Likes Received
Ghost 2
Cyrez 1
Girlie 1
unreal 1
Crime 1
Powered by UBB.threads™ PHP Forum Software 7.7.5