Vermont Utility Says It Found Malware Linked To Russian Hacking On Laptop
Editor's note: We've changed the headline and updated this post to reflect new information.
A Vermont utility company says it found Russian malware on one of its computers. The discovery came after the U.S. Department of Homeland Security alerted utilities to the code associated with Grizzly Steppe, the name for what the Obama administration has called a Russian hacking operation.
Burlington Electric, the municipally owned utility in Vermont's largest city, issued a statement saying the malware was detected in a single laptop not connected to the company's grid system. "We took immediate action to isolate the laptop and alerted federal officials of this finding. Our team is working with federal officials to trace this malware and prevent any other attempts to infiltrate utility systems. We have briefed state officials and will support the investigation fully," the statement said.
Vermont Gov. Peter Shumlin lashed out at the Russian government, saying in a statement, "Vermonters and all Americans should be both alarmed and outraged that one of the world's leading thugs, Vladimir Putin, has been attempting to hack our electric grid, which we rely upon to support our quality-of-life, economy, health, and safety."
Vermont Public Radio reported on the hacking incident, quoting the state's Public Service Commissioner as saying the hack never threatened the power grid.
Update Jan. 5 at 4:45 p.m. ET
Vermont Public Radio reported on the hacking incident in a follow-up story, writing that there was no evidence Russian hackers targeted the Vermont utility. Taylor Dobbs wrote:
"At the request of Homeland Security officials last week, Burlington Electric began monitoring its computer systems for malicious code or internet traffic potentially associated with Grizzly Steppe, an effort by Russian hackers that federal authorities say included interference with U.S. elections.
"This kind of monitoring was nothing new, Lunderville said.
" 'As part of what we do, we're always scanning for new potential cyber threats,' he said. 'On Thursday, the Department of Homeland Security released new information regarding various websites and other items that they said we should be looking for, and they said it was linked to the Grizzly Steppe.'
"Lunderville said Burlington Electric started scanning for the list of potential threats on Friday morning.
" 'When an employee came in and opened the [laptop] computer and went to go to Yahoo.com to check email, we detected some suspicious internet traffic because of the scanning we were doing,' Lunderville said in an interview Tuesday. 'We immediately moved to pull that computer off of our business network and isolate it, and we immediately alerted authorities.' "
Copyright 2020 NPR. To see more, visit https://www.npr.org.