| The Cybersecurity and Infrastructure Security Agency (CISA) and the Environmental Protection Agency (EPA) published a fact sheet providing mitigations and resources for the Water and Wastewater Systems (WWS) Sector using human machine interfaces (HMIs) to limit exposure on the internet and secure them against malicious cyber activity. |
| HMIs enable operational technology owners and operators to read supervisory control and data acquisition systems connected to programmable logic controllers. Threat actors have demonstrated the capability to easily find and exploit internet-exposed HMIs with cybersecurity weaknesses. CISA and EPA often identify internet-exposed HMIs through scanning via publicly available web-based search platforms. |
| CISA and EPA encourage WWS organizations to review the fact sheet and implement the recommended mitigations and actions. |
| Click here for additional CISA Water and Wastewater Systems Sector cybersecurity information. |