Arkansas City, Kansas, experienced a cybersecurity incident on Sunday, September 22, 2024, involving its Water Treatment Facility. While the nature of the incident has yet to be fully disclosed, the city government emphasized that the water supply remains safe and that no disruption to service has occurred. The Arkansas City water treatment cyberattack incident prompted the city to take precautionary measures and transition the water treatment operations to manual control as part of their response.
Details About Arkansas City Water Treatment Cyberattack
In a statement shared through the city’s official LinkedIn account, Arkansas City officials confirmed that the issue began early Sunday morning. The City of Arkansas City encountered a cybersecurity issue early Sunday morning, September 22, 2024, involving its Water Treatment Facility,” the post read. City Manager Randy Frazer assured residents that despite the incident, there was no risk to public health or the quality of the water.
Frazer further emphasized the city’s focus on maintaining operations during the incident. “Despite the incident, the water supply remains completely safe, and there has been no disruption to service. Out of caution, the Water Treatment Facility has switched to manual operations while the situation is being resolved. Residents can rest assured that their drinking water is safe, and the City is operating under full control during this period,” Frazer stated.
Although the full extent of the Arkansas City water treatment cyberattack is yet to be determined, city officials have already engaged cybersecurity experts and government authorities to resolve the issue. Meanwhile, the Arkansas City government has deployed enhanced security measures to safeguard the water treatment facility against further intrusions.
Efforts are currently focused on restoring the facility’s automated operations, though no changes in water quality or supply interruptions are anticipated for the city’s residents.
Cybersecurity Threats to Water Utilities on the Rise
This Arkansas City water treatment cyberattack comes amid growing concerns over the vulnerability of U.S. water utilities to cyberattacks. Cybersecurity breaches targeting critical infrastructure, particularly water treatment facilities, have increased in frequency and severity across the country. Earlier this year, the Environmental Protection Agency (EPA) issued a warning that water utilities, especially smaller ones, are becoming frequent targets of cyberattacks by malicious actors, including state-sponsored hackers.
According to a recent report by the EPA, around 70% of utilities inspected in the past year were found to be in violation of cybersecurity standards designed to prevent breaches or other forms of unauthorized access. The EPA has urged water systems, including smaller and rural facilities, to improve their cybersecurity defenses immediately. These incidents pose significant risks, not only to the water supply but also to public health and safety.
One of the most concerning developments involves foreign cybercriminal groups. Recent attacks have been traced back to groups with affiliations to Russia and Iran, targeting smaller and more vulnerable water utilities in the U.S. These groups have been particularly focused on disrupting critical infrastructure in rural or less populated areas, which often have fewer resources to implement advanced cybersecurity protocols.
Response to Foreign Cyberattacks
In August 2024, the U.S. State Department announced that six Iranian government hackers were identified as being responsible for a series of cyberattacks targeting U.S. water utilities in the fall of 2023. These hackers have been linked to various cyber operations against critical infrastructure, and in response, the U.S. has escalated efforts to track down and deter such activities. The State Department’s Rewards for Justice program is now offering up to $10 million for information leading to the identification or location of these six hackers.
The program specifically targets individuals engaged in malicious cyber activities under foreign government control, with a focus on activities that violate the Computer Fraud and Abuse Act and threaten U.S. infrastructure, such as water treatment facilities.
Similar Cybersecurity Incidents in Wichita
Arkansas City Water Treatment cyberattack incident comes only a few months after a significant cyberattack on the City of Wichita, Kansas, in June 2024. The Wichita attack disrupted multiple city services, including water metering, billing, and payment processing systems. While most public-facing systems have since been restored, the recovery process has been lengthy, with some services still being gradually brought back online.
Wichita city officials have reported progress in recovering from the attack, stating that water billing and payment systems have resumed normal operations. Customers can now pay their bills using various methods, including online portals, by phone, or in person. However, due to the disruption, some residents may see their June bills covering more than 60 days of service. Wichita has provided additional support to customers struggling with larger bills, encouraging them to set up payment plans.
Moving forward, water systems nationwide, regardless of size, must prioritize cybersecurity as part of their overall operations to protect both infrastructure and public health.
For now, Arkansas City residents can be confident that their water supply remains unaffected. City officials, alongside cybersecurity professionals, are working to resolve the incident and ensure that any vulnerabilities in the system are addressed.