American Water, the largest regulated water and wastewater utility company in the United States, said late Thursday that it was in the process of reconnecting and reactivating systems that were taken offline earlier this week due to a cybersecurity incident.
The company said on October 7th that it had shutdown its customer portal and suspended billing services after the company detected a breach on October 3rd.
In a statement, the company said it was “methodically and securely reconnecting and reactivating the systems” that were taken offline due to the cybersecurity incident.
The company said it still has no indication that its water and wastewater facilities were impacted by the incident, and that it did not affect water quality.
The company’s “MyWater” customer portal is back online, and standard billing processes are resuming.
“The reactivation of systems was initiated in line with the company’s ongoing cyber incident response protocols after internal and external security teams confirmed the systems were secure,” the New Jersey-based utility said.
American Water, which serves over 14 million people in 24 states and 18 military installations, said it would share any additional information as, and when, appropriate.
US water facilities have become a key target for cyber threat actors, prompting the government to take measures aimed at strengthening the sector’s resilience against cyberattacks.
Learn More at SecurityWeek’s ICS Cybersecurity Conference The leading global conference series for Operations, Control Systems and OT/IT Security professionals to connect on SCADA, DCS PLC and field controller cybersecurity. October 21-24, 2024 | Atlanta www.icscybersecurityconference.com |