American Water, the largest regulated water utility in the U.S., has taken its MyWater customer portal offline following a cybersecurity incident detected on October 3. The company is investigating unauthorized activity within its computer networks and has paused billing operations to protect customer data.
Key Takeaways
American Water detected unauthorized activity on October 3, leading to immediate action.
The MyWater customer portal has been taken offline, pausing all billing operations.
The company is coordinating with law enforcement and cybersecurity experts.
No negative impact on water or wastewater facilities has been reported.
Incident Overview
On October 3, American Water identified unusual activity within its computer systems, prompting the company to activate its incident response protocols. This included disconnecting certain systems to safeguard customer information. The company has reassured customers that their water remains safe to drink and that no operational disruptions have occurred in its water or wastewater facilities.
Response Measures
In response to the incident, American Water has implemented several measures:
Customer Portal Offline: The MyWater app has been deactivated to prevent further unauthorized access.
Billing Paused: All billing operations are on hold, and customers will not incur late fees during this period.
Law Enforcement Involvement: The company has notified law enforcement and is fully cooperating with their investigation.
Third-Party Cybersecurity Experts: American Water has engaged external cybersecurity professionals to assist in assessing the situation and mitigating risks.
Company Statements
American Water has communicated its commitment to cybersecurity, stating:
We take the cybersecurity of our systems with utmost seriousness and are taking additional steps to strengthen the cybersecurity of American Water’s systems.
The company does not expect the incident to materially affect its financial condition or operational results.
Broader Context
This incident occurs amid heightened concerns about cybersecurity threats targeting critical infrastructure, particularly in the water sector. Recent warnings from government officials highlight the vulnerability of water systems to cyberattacks, especially from foreign nation-state actors. The U.S. Environmental Protection Agency (EPA) has initiated efforts to bolster cybersecurity across water systems nationwide, including the establishment of a Water Sector Cybersecurity Task Force.
As American Water continues to investigate the cybersecurity incident, the company emphasizes its priority on customer safety and data protection. The situation serves as a reminder of the ongoing challenges faced by critical infrastructure providers in safeguarding their systems against cyber threats. Updates will be provided as the investigation progresses, and customers are encouraged to stay informed through official channels.
Cybersecurity threats are growing more sophisticated every day, making it essential for businesses to stay ahead of the curve. BetterWorld Technology is here to help you navigate this complex landscape and safeguard your valuable data. Don't wait for a breach to occur—take control of your cybersecurity today. Book a consultation with BetterWorld Technology now, and let our experts tailor a solution that fits your unique needs.
Sources
American Water turns off app after suffering cyberattack • The Register, The Register.
American Water Works targeted in cybersecurity incident, MSN.
American Water detects cybersecurity incident, proactively takes customer portal offline , WEEK | 25 News Now | Peoria, IL.
American Water Works targeted in cybersecurity incident - MarketWatch, MarketWatch.
American Water shuts down customer portal amid ‘cybersecurity incident’ | SC Media, SC Media.