ADVERTISEMENT

Critical US infrastructure can be hacked by anyone

Our research found that both public and private infrastructure in the US is still unprotected and easily accessible to hackers - with no passwords at all.

Electricity grid high voltage
Edvardas Mikalauskas
Edvardas Mikalauskas Senior Researcher
Jul 17, 2020 Updated: 28 April 2025 6 min read

About this research

What we discovered

  • By using search engines dedicated to scanning all open ports, or scanning the ports themselves, hackers can remotely take control of critical private and public US infrastructure
  • Unprotected ICS access points mostly include the energy and water industries: offshore and onshore oil wells, as well as public and private water distribution and treatment systems
  • These systems could be accessed by anyone – with no passwords at all

Onshore oil wells

Coastal oil wells

Public water distribution system

ADVERTISEMENT

Public water treatment facilities

A public sewer pump station

Significance of the discovery

What now and what's next?

Disclosure

Our hand-picked digital services for online presence and privacy

ADVERTISEMENT