A new threat to personal information is emerging from an unlikely source: the humble domestic light switch.
As the digital age continues to grow, hackers are finding new ways to secure sensitive information that could have serious repercussions. And that information can now be gathered through power networks.
The introduction of smart grids, or the digitalisation of electrical power grids, has created new vulnerabilities as homes and utilities are beginning to rely on network connectivity.
Fadi Aloul, a cyber security advisor and professor at the American University in Sharjah, says smart grids are the future and offer several advantages over current systems such as being able to monitor electricity usage remotely via an electronic device.
Have you ever been on your way to work and suddenly wondered: “Did I turn off the coffee pot?” With a smart power system a user can check what devices are switched on in their home via a mobile phone. A user can turn off the breaker that powers kitchen appliances with just a screen swipe while they are not actually at home.
The Dubai Electricity and Water Authority (Dewa) began a smart metering pilot project in 2005 that led to the utility upgrading its automation network including communications systems and remote operations. Dewa's smart networks and metering project, estimated to cost Dh7 billion, will replace 250,000 meters spanning over residential, industrial and commercial properties.
While this technology will elevate services, Mr Aloul cautions that there was no such existence of a completely secure system. Just like a user being able to access and cut power remotely, so can criminals.
“With every new gadget, there comes a lot of risk and security issues, especially at the beginning,” he says. “Security could come last on priorities – that gives hackers the freedom to take advantage.”
Mr Aloul says criminals could monitor a consumer’s home network to access data. This could include electricity usage, which may indicate when a homeowner is out of town, giving useful information to a potential burglar. A more serious risk could be the compromising of sensitive information on a home computer. “Everything is physically accessible with a smart grid,” Mr Aloul says.
Home networks are especially vulnerable because the public is not well educated about the risks, he says. By contrast, companies such as utilities funnel money into making servers stronger. “The human security [aspect] is the weakest link in any organisation and that’s what most hackers are after.”
Mr Aloul says there are three main entry points, or gateways for cyber criminals, in smart grid networks. These include: home devices such as meters; utility companies; and the network in between such as transmission and distribution lines.
Utility and commercial operations have already seen attacks from large, organised hacker groups, which ultimately hurt companies and sometimes governments. In addition, Mr Aloul points out that cyber activists or even state-funded groups could target power operations that may even threaten national security by executing attacks to take out entire power grids.
The American technology firm, F5 Networks, says it is looking to focus more on power-sector security as more systems depend on these types of connections.
The senior systems engineering manager Gary Newe says security is a “hot” division for the company right now.
The information technology research firm Gartner expects the cyber security industry to grow 8.2 per cent this year to US$76.9 billion. And the increasing adoption of mobile, cloud, social and information that is often interconnected will drive new security measures through 2016.
“Once you start to look at user information and move it to real time metering, the possibilities of what that data could be used for are pretty much endless,” Mr Newe says.
He says with critical infrastructure such as power stations, sensitive information in the wrong hands can cause serious damage.
"If [companies] are connected to the internet or internal networks, hackers can find a way to exploit [operations]," says Mr Newe. "There is the potential for scary things to happen."
He points to a recent attack by hackers on a German steel mill. The German federal office for Information Security (BSI) released its annual report in December that said hackers used emails to release malware, a software bug, that penetrated the mill’s automation system. The attack made parts of the plant fail, resulting in a potentially fatal furnace blast. The BSI said the infiltration caused “massive damage”, but did not specify how much the attack cost the company.
This particular crime used a method known as spear phishing; sending emails that target particular company individuals. These messages appear to come from an official source, such as the head of the company, and ask for login information including passwords.
Mr Newe says there has been a noticeable shift in the cyber criminals’ approach over the past 12 to 18 months. There has been a rise in “blended attacks” where a large attack is perpetrated to act as a diversion from a smaller, more targeted attack.
He also points to “denial of service” attacks, whereby a server is so overwhelmed with requests it goes offline. In addition is what is termed the domain name system reflection approach, where an attack is amplified by using a critical piece of internet infrastructure such as the network interface bandwidth, or data processing capacity.
This method can debilitate very large networks such as real-time trading platforms or financial institutions.
Mr Newe says F5 has seen cyber attacks rocket by 200 to 300 per cent in the past 12 months.
This has led to the European Union, among others, looking to aggressively address the issue before it is too late.
According to a July report by the Organisation for Security and Cooperation in Europe (OSCE), the EU allocated €3.5 million (Dh14.5m) to develop a decision support system (DSS) for power grid operators.
This computer system helps organisations to determine security responses based on various simulations.
The EU DSS will help grid operators mimic cyber invasions to analyse which areas could be brought down while also calculating the amount of time it would be likely to take to restore the compromised infrastructure.
The system will also assess the economic costs of an incident and provide recommendations on how to address weaknesses in Europe’s power supply. Although the system is still under construction, the potential financial losses as a result of electricity disruptions can be seen in examples such as Egypt’s chronic power shortages that reached heights last summer.
While Mr Newe says it is extremely difficult to assess how much cyber attacks are costing networks, large-scale power outages caused by other reasons can give an idea.
In September, the Suez Canal Authority was forced to declare a state of emergency as blackouts crippled vessel movement on the waterway that provides some $5bn in annual revenue. Ships were forced to remain stationary because communication networks, which depend on electricity, were unable to function. Disruptions to industries such as iron, steel and oil refineries and pumping stations cost the Egyptian government an estimated $140m in revenue.
Power grids are also susceptible to natural disasters. In the United States, Mississippi suffered a major blow to the its economy in 2005 when Hurricane Katrina destroyed the power supply for one of its main revenue earning industries, gaming.
Prior to the storm, casinos on the Mississippi Gulf Coast generated about $2.8bn in annual revenue and made up about $330m of state and local governments’ tax revenues, according to the American Gaming Association.
To get an idea of what the cost of a similar outage caused by online criminals might be, substitute “cyber attack” for Hurricane Katrina”.
Based on the revenue losses recorded for 2005, each day the casinos were unable to operate cost the industry some $7.6m, or $320,000 an hour. A power failure taking out the grid for three hours would result in a loss of almost $1m.
“Gaming, finance, power – hackers don’t discriminate. It’s across the board,” Mr Newe says.
But he is optimistic about the power sector doing everything it can to increase protection with the rise in the deployment of of smart grids because “they’re charged to protect consumer data”.
He adds that solutions usually only come after a situation has occurred. “We don’t know what the possibilities are and we don’t know the vulnerabilities,” Mr Newe says.
“It will take someone to identify the problem before we can combat it.”
lgraves@thenational.ae
Follow The National's Business section on Twitter
LA LIGA FIXTURES
Thursday (All UAE kick-off times)
Sevilla v Real Betis (midnight)
Friday
Granada v Real Betis (9.30pm)
Valencia v Levante (midnight)
Saturday
Espanyol v Alaves (4pm)
Celta Vigo v Villarreal (7pm)
Leganes v Real Valladolid (9.30pm)
Mallorca v Barcelona (midnight)
Sunday
Atletic Bilbao v Atletico Madrid (4pm)
Real Madrid v Eibar (9.30pm)
Real Sociedad v Osasuna (midnight)
Sly%20Cooper%20and%20the%20Thievius%20Raccoonus
%3Cp%3E%3Cstrong%3EDeveloper%3A%3C%2Fstrong%3E%20Sucker%20Punch%20Productions%3Cbr%3E%3Cstrong%3EPublisher%3A%3C%2Fstrong%3E%20Sony%20Computer%20Entertainment%3Cbr%3E%3Cstrong%3EConsole%3A%3C%2Fstrong%3E%20PlayStation%202%20to%205%3Cbr%3E%3Cstrong%3ERating%3A%3C%2Fstrong%3E%205%2F5%3C%2Fp%3E%0A
Race card for Super Saturday
4pm: Al Bastakiya Listed US$250,000 (Dh918,125) (Dirt) 1,900m.
4.35pm: Mahab Al Shimaal Group 3 $200,000 (D) 1,200m.
5.10pm: Nad Al Sheba Conditions $200,000 (Turf) 1,200m.
5.45pm: Burj Nahaar Group 3 $200,000 (D) 1,600m.
6.20pm: Jebel Hatta Group 1 $300,000 (T) 1,800m.
6.55pm: Al Maktoum Challenge Round 3 Group 1 $400,000 (D) 2,000m.
7.30pm: Dubai City of Gold Group 2 $250,000 (T) 2,410m.
UAE jiu-jitsu squad
Men: Hamad Nawad and Khalid Al Balushi (56kg), Omar Al Fadhli and Saeed Al Mazroui (62kg), Taleb Al Kirbi and Humaid Al Kaabi (69kg), Mohammed Al Qubaisi and Saud Al Hammadi (70kg), Khalfan Belhol and Mohammad Haitham Radhi (85kg), Faisal Al Ketbi and Zayed Al Kaabi (94kg)
Women: Wadima Al Yafei and Mahra Al Hanaei (49kg), Bashayer Al Matrooshi and Hessa Al Shamsi (62kg)
What are the influencer academy modules?
- Mastery of audio-visual content creation.
- Cinematography, shots and movement.
- All aspects of post-production.
- Emerging technologies and VFX with AI and CGI.
- Understanding of marketing objectives and audience engagement.
- Tourism industry knowledge.
- Professional ethics.
Draw
Quarter-finals
Real Madrid (ESP) or Manchester City (ENG) v Juventus (ITA) or Lyon (FRA)
RB Leipzig (GER) v Atletico Madrid (ESP)
Barcelona (ESP) or Napoli (ITA) v Bayern Munich (GER) or Chelsea (ENG)
Atalanta (ITA) v Paris Saint-Germain (FRA)
Ties to be played August 12-15 in Lisbon
EXPATS
%3Cp%3E%3Cstrong%3EDirector%3A%3C%2Fstrong%3E%20Lulu%20Wang%26nbsp%3B%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EStars%3A%3C%2Fstrong%3E%20Nicole%20Kidman%2C%20Sarayu%20Blue%2C%20Ji-young%20Yoo%2C%20Brian%20Tee%2C%20Jack%20Huston%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3ERating%3A%3C%2Fstrong%3E%204%2F5%3C%2Fp%3E%0A
Squad for first two ODIs
Kohli (c), Rohit, Dhawan, Rayudu, Pandey, Dhoni (wk), Pant, Jadeja, Chahal, Kuldeep, Khaleel, Shami, Thakur, Rahul.
COMPANY%20PROFILE
%3Cp%3E%3Cstrong%3EName%3A%20%3C%2Fstrong%3ESmartCrowd%0D%3Cbr%3E%3Cstrong%3EStarted%3A%20%3C%2Fstrong%3E2018%0D%3Cbr%3E%3Cstrong%3EFounder%3A%20%3C%2Fstrong%3ESiddiq%20Farid%20and%20Musfique%20Ahmed%0D%3Cbr%3E%3Cstrong%3EBased%3A%20%3C%2Fstrong%3EDubai%0D%3Cbr%3E%3Cstrong%3ESector%3A%20%3C%2Fstrong%3EFinTech%20%2F%20PropTech%0D%3Cbr%3E%3Cstrong%3EInitial%20investment%3A%20%3C%2Fstrong%3E%24650%2C000%0D%3Cbr%3E%3Cstrong%3ECurrent%20number%20of%20staff%3A%3C%2Fstrong%3E%2035%0D%3Cbr%3E%3Cstrong%3EInvestment%20stage%3A%20%3C%2Fstrong%3ESeries%20A%0D%3Cbr%3E%3Cstrong%3EInvestors%3A%20%3C%2Fstrong%3EVarious%20institutional%20investors%20and%20notable%20angel%20investors%20(500%20MENA%2C%20Shurooq%2C%20Mada%2C%20Seedstar%2C%20Tricap)%3C%2Fp%3E%0A
Company Profile
Name: JustClean
Based: Kuwait with offices in other GCC countries
Launch year: 2016
Number of employees: 130
Sector: online laundry service
Funding: $12.9m from Kuwait-based Faith Capital Holding
OPENING FIXTURES
Saturday September 12
Crystal Palace v Southampton
Fulham v Arsenal
Liverpool v Leeds United
Tottenham v Everton
West Brom v Leicester
West Ham v Newcastle
Monday September 14
Brighton v Chelsea
Sheffield United v Wolves
To be rescheduled
Burnley v Manchester United
Manchester City v Aston Villa
Profile
Company: Justmop.com
Date started: December 2015
Founders: Kerem Kuyucu and Cagatay Ozcan
Sector: Technology and home services
Based: Jumeirah Lake Towers, Dubai
Size: 55 employees and 100,000 cleaning requests a month
Funding: The company’s investors include Collective Spark, Faith Capital Holding, Oak Capital, VentureFriends, and 500 Startups.
THE BIO
Born: Mukalla, Yemen, 1979
Education: UAE University, Al Ain
Family: Married with two daughters: Asayel, 7, and Sara, 6
Favourite piece of music: Horse Dance by Naseer Shamma
Favourite book: Science and geology
Favourite place to travel to: Washington DC
Best advice you’ve ever been given: If you have a dream, you have to believe it, then you will see it.
The%20Sandman
%3Cp%3ECreators%3A%20Neil%20Gaiman%2C%20David%20Goyer%2C%20Allan%20Heinberg%3C%2Fp%3E%0A%3Cp%3EStars%3A%20Tom%20Sturridge%2C%20Boyd%20Holbrook%2C%20Jenna%20Coleman%20and%20Gwendoline%20Christie%3C%2Fp%3E%0A%3Cp%3ERating%3A%204%2F5%3C%2Fp%3E%0A
MATCH INFO
Aston Villa 1 (Konsa 63')
Sheffield United 0
Red card: Jon Egan (Sheffield United)
Key facilities
- Olympic-size swimming pool with a split bulkhead for multi-use configurations, including water polo and 50m/25m training lanes
- Premier League-standard football pitch
- 400m Olympic running track
- NBA-spec basketball court with auditorium
- 600-seat auditorium
- Spaces for historical and cultural exploration
- An elevated football field that doubles as a helipad
- Specialist robotics and science laboratories
- AR and VR-enabled learning centres
- Disruption Lab and Research Centre for developing entrepreneurial skills
if you go
The flights
Flydubai offers three daily direct flights to Sarajevo and, from June, a daily flight from Thessaloniki from Dubai. A return flight costs from Dhs1,905 including taxes.
The trip
The Travel Scientists are the organisers of the Balkan Ride and several other rallies around the world. The 2018 running of this particular adventure will take place from August 3-11, once again starting in Sarajevo and ending a week later in Thessaloniki. If you’re driving your own vehicle, then entry start from €880 (Dhs 3,900) per person including all accommodation along the route. Contact the Travel Scientists if you wish to hire one of their vehicles.
The specs: 2018 Renault Megane
Price, base / as tested Dh52,900 / Dh59,200
Engine 1.6L in-line four-cylinder
Transmission Continuously variable transmission
Power 115hp @ 5,500rpm
Torque 156Nm @ 4,000rpm
Fuel economy, combined 6.6L / 100km
Honeymoonish
%3Cp%3E%3Cstrong%3EDirector%3A%3C%2Fstrong%3E%20Elie%20El%20Samaan%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EStarring%3A%20%3C%2Fstrong%3ENour%20Al%20Ghandour%2C%20Mahmoud%20Boushahri%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3ERating%3A%3C%2Fstrong%3E%203%2F5%3C%2Fp%3E%0A
The specs
Engine: 4-litre twin-turbo V8
Transmission: nine-speed
Power: 542bhp
Torque: 700Nm
Price: Dh848,000
On sale: now
How to watch Ireland v Pakistan in UAE
When: The one-off Test starts on Friday, May 11
What time: Each day’s play is scheduled to start at 2pm UAE time.
TV: The match will be broadcast on OSN Sports Cricket HD. Subscribers to the channel can also stream the action live on OSN Play.
AIDA%20RETURNS
%3Cp%3E%3Cstrong%3EDirector%3A%20%3C%2Fstrong%3ECarol%20Mansour%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EStarring%3A%20%3C%2Fstrong%3EAida%20Abboud%2C%20Carol%20Mansour%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3ERating%3A%3C%2Fstrong%3E%203.5.%2F5%3C%2Fp%3E%0A
BRAZIL SQUAD
Alisson (Liverpool), Daniel Fuzato (Roma), Ederson (Man City); Alex Sandro (Juventus), Danilo (Juventus), Eder Militao (Real Madrid), Emerson (Real Betis), Felipe (Atletico Madrid), Marquinhos (PSG), Renan Lodi (Atletico Madrid), Thiago Silva (PSG); Arthur (Barcelona), Casemiro (Real Madrid), Douglas Luiz (Aston Villa), Fabinho (Liverpool), Lucas Paqueta (AC Milan), Philippe Coutinho (Bayern Munich); David Neres (Ajax), Gabriel Jesus (Man City), Richarlison (Everton), Roberto Firmino (Liverpool), Rodrygo (Real Madrid), Willian (Chelsea).
WHAT IS A BLACK HOLE?
1. Black holes are objects whose gravity is so strong not even light can escape their pull
2. They can be created when massive stars collapse under their own weight
3. Large black holes can also be formed when smaller ones collide and merge
4. The biggest black holes lurk at the centre of many galaxies, including our own
5. Astronomers believe that when the universe was very young, black holes affected how galaxies formed
Islamic%20Architecture%3A%20A%20World%20History
%3Cp%3E%3Cstrong%3EAuthor%3A%3C%2Fstrong%3E%20Eric%20Broug%3Cbr%3E%3Cstrong%3EPublisher%3A%3C%2Fstrong%3E%20Thames%20%26amp%3B%20Hudson%3Cbr%3E%3Cstrong%3EPages%3A%3C%2Fstrong%3E%20336%3Cbr%3E%3Cstrong%3EAvailable%3A%3C%2Fstrong%3E%20September%3C%2Fp%3E%0A
BIO
Favourite holiday destination: Turkey - because the government look after animals so well there.
Favourite film: I love scary movies. I have so many favourites but The Ring stands out.
Favourite book: The Lord of the Rings. I didn’t like the movies but I loved the books.
Favourite colour: Black.
Favourite music: Hard rock. I actually also perform as a rock DJ in Dubai.
