US Confirms BlackEnergy Malware Used In Ukrainian Power Plant Hack

US Confirms BlackEnergy Malware Used In Ukrainian Power Plant Hack (http://www.ibtimes.com)

Technology – Security

The power outage last December in the Ukraine that put 180,000 people in the dark was the first electricity failure caused by a computer hack, the U.S. Department of Homeland Security has confirmed. Researchers previously suggested that a strain of malicious software known as BlackEnergy, a favorite of Russian hacking groups, was responsible.

The December 23 outage at the Prykarpattyaoblenergo power plant in western Ukraine was a nightmare scenario come true for cybersecurity researchers who have warned it was a question of when, not if, hackers managed to infiltrate a critical infrastructure facility.

DHS issued an advisory Tuesday confirming initial evidence that BlackEnergy malware first infected the plant’s systems after a successful spearphishing email attack, when hackers sent what appears to be a normal message to a high value target. Homeland Security and the FBI are among the international investigators still examining the cyberattack.

DHS’s Industrial Control Systems Cyber Emergency Response Team emailed the advisory to Reuters Tuesday, confirming that malware analysis yielded evidence that BlackEnergy 3 was found lurking on Ukrainian networks. It’s the same method of attack that was used against a number of U.S. critical infrastructure targets in 2014, though it’s not clear if any of those incidents led to a similar electricity failure.

The attack has been blamed on Sandworm, a group Russian government sponsored hackers that have spent years harassing Ukrainian officials and their allies.

“There is a darkening sky,” former U.S. National Security Director Michael Hayden told Tuesday of the Ukraine attack. “This is another data point an arc that we’ve long predicted.”

My Two Cents:
The DOE, and FERC need to address cyber security problems as a national security clear and present danger issue (TLP) RED level. I personally feel that the DOE and FERC are NOT the type of government agencies that mission statements are for this type of national security challenge (Protecting the USA Power Grid(s)). The DHS, US-CERT and FBI need to take control and get some move on in this power industry…

USA Power Grid and hydroelectric plants Black Start

USA Power Grid and hydroelectric plants Black Start (https://en.wikipedia.org)

Technology – Security

A black start is the process of restoring an electric power station or a part of an electric grid to operation without relying on the external transmission network.[1]

Normally, the electric power used within the plant is provided from the station’s own generators. If all of the plant’s main generators are shut down, station service power is provided by drawing power from the grid through the plant’s transmission line. However, during a wide-area outage, off-site power supply from the grid will not be available. In the absence of grid power, a so-called black start needs to be performed to bootstrap the power grid into operation.

To provide a black start, some power stations have small diesel generators, normally called the black start diesel generator (BSDG), which can be used to start larger generators (of several megawatts capacity), which in turn can be used to start the main power station generators. Generating plants using steam turbines require station service power of up to 10% of their capacity for boiler feedwater pumps, boiler forced-draft combustion air blowers, and for fuel preparation. It is uneconomical to provide such a large standby capacity at each station, so black-start power must be provided over designated tie lines from another station. Often hydroelectric power plants are designated as the black-start sources to restore network interconnections. A hydroelectric station needs very little initial power to start (just enough to open the intake gates and provide excitation current to the generator field coils), and can put a large block of power on line very quickly to allow start-up of fossil-fueled or nuclear stations. Certain types of combustion turbine can be configured for black start, providing another option in places without suitable hydroelectric plants.

My Two Cents:
I have been working with hydroelectric Power plants since 2005 with regard to their Software Technology. I was amazed to find out that FERC (ISO/RTO/Electric Power Markets), have made it economic unprofitable for most hydroelectric plants to remain a Black Start system for our power grid(s). Over the years I have been inside many hydroelectric power plants and pump storage power plants, and to my amazement 90 % of them have had the black start systems removed, 8 % were still there but deemed unoperational, and only 1 was still good to go….Seriously…. So over the years based on deregulation and the way our capital system is setup, AND how these power firms have been bought and sold, the fact that it is so expensive and the regulations required by FERC (ISO/RTO/Electric Power Markets), it is cheaper to remove the black start features from these plants. Even the Insurance companies that insure these firms somehow where either kept in the dark or allowed this to happen. I feel that every hydroelectric power plant in the USA should be black start operational, especially Hydro facilities that have an ongoing source of water for generation like rivers. I believe it should not be an economic policy with regard to national security. I am just dumbfounded on the logic behind this…

Talen Energy completes power plant sales, Holtwood and Lake Wallenpaupack

Talen Energy completes power plant sales, Holtwood and Lake Wallenpaupack (http://www.mcall.com)

Technology – Hydro

Talen Energy of Allentown has completed a series of power plant divestitures required by federal regulators last year when the company was launched.

The independent power producer announced Friday that, as anticipated, it had completed the sale of its Holtwood and Lake Wallenpaupack hydroelectric plants to a subsidiary of Brookfield Renewable Energy Partners L.P. for $860 million.

The two Pennsylvania hydroelectric plants – Holtwood in Lancaster County and Lake Wallenpaupack in the Pocono Mountain region – have a combined generating capacity of 292 megawatts.

The Federal Energy Regulatory Commission required the divestitures when PPL Corp. spun off its PPL Supply power plant and energy marketing division, combining it with certain power plants owned by Riverstone Partners, to form Talen Energy.

My Two Cents:
Should be a good move for Brookfield Renewable Energy Partners L.P.