Home
FT
STOP-IT Quantity FT
STOP-IT Water Quality FT
Import
List
SP Wizard
Risknought
Lists
Measures
Events
Tools
ST Procedures
Search
Login
Threat Type: Cyber-Physical
Description
The threat has a combined cyber-physical nature.
Events
Gate 235 - False alarm on WDN tank contamination
Gate 236 - Outflow of WDN tank is interrupted
Gate 237 - Outflow valve of WDN tank closed
Gate 239 - Mislead PLC controlled WDN tank refill process
Gate 240 - WDN PBS interruption
Gate 242 - WDN pump power supply lost
Gate 247 - Mislead PBS power supply
Gate 244 - WDN PBS mislead operation
Gate 248 - Loss of WDN PBS control
Gate 251 - WDN valve mislead operation
Gate 260 - WDN control system manipulated
Gate 227 - False alarm for contamination in WTP
Gate 220 - Staff or PLC controlled hydraulic processes run on altered WTP data
Gate 88 - Inappropriate hydraulic operation of WWTP due to loss of control
Gate 89 - Inappropriate hydraulic operation of WWTP due to misled operation
Gate 90 - Sub-standard outflow due to operational failure
Gate 91 - Inappropriate WWTP outflow quality due to loss of control
Gate 92 - Inappropriate WWTP outflow quality due to misled operations
Gate 192 - Surface water management system functions with insufficient input data
Gate 193 - Surface water management system functions on altered data
Gate 201 - False signal for groundwater contamination
Gate 202 - Assumption of groundwater contamination by company
Gate 203 - Groundwater contamination alert signal activated
Gate 207 - Groundwater management system run on insufficient data
Gate 208 - Groundwater management system runs on altered data
Basic Event 152 - Man-in-the-Middle attack manipulates quality sensor signals
Basic Event 151 - External person physicaly manipulates tank quality sensor readings
Basic Event 240 - Upadate of OS causes false positive alarms from Event Detection System
Basic Event 236 - Man-in-the-Middle attack manipulates WDN tank level sensor signals
Basic Event 237 - Malware alters PLC statements that control WDN tank refill
Basic Event 245 - DoS attack on WDN pump
Basic Event 252 - Man-in-the-Middle attack manipulates WDN PBS sensor signals
Basic Event 255 - Man-in-the-Middle attack manipulates local power transformer signals
Basic Event 250 - Malware alters PLC statements that control pump
Basic Event 256 - External person jams PBS communications
Basic Event 257 - Incorrect execution or failure of software acquired from an external party crashes PBS control system
Basic Event 258 - Malware DoS to local PBS PLC
Basic Event 261 - Undetected SCADA hijacking software takes control of PBS operation
Basic Event 263 - DoS attack on WDN valve
Basic Event 264 - Malware alters PLC statements that control valve
Basic Event 266 - External person jams WDN valve communications
Basic Event 267 - Man-in-the-Middle attack manipulates WDN valve control signals
Basic Event 274 - Ransomeware denies access to the WDN control system
Basic Event 275 - Malware alters WDN control statements
Basic Event 276 - SQL injection to data used for demand prediction
Basic Event 277 - Malware tampers network topology characteristics on prediction models (e.g. tank volume curve)
Basic Event 279 - Malware corrupts prediction model database
Basic Event 281 - Incorrect execution or failure of software acquired from an external party crashes WDN control system
Basic Event 282 - Failure to regulate the temperature, humidity and air quality in environments where information systems are located
Basic Event 209 - External person physically manipulates WTP sensor readings
Basic Event 210 - Man-in-the-Middle attack manipulates WTP sensor signal
Basic Event 218 - Accidental errors by authorized user while maintaining information system
Basic Event 206 - External person jams WTP sensor signal transmission
Basic Event 208 - External attacker blocks WDN sensor signals to reach WTP
Basic Event 211 - External attacker manipulates WTP transmission devices
Basic Event 83 - False signal for surface water contamination
Basic Event 26 - Serious spill from Interdependent Industry CI from cyber-physical attack
Basic Event 20 - SCADA hijacking software takes control of WWTP operation
Basic Event 23 - Man-in-the-Middle attack manipulates WWTP control signals
Basic Event 21 - WWTP operational staff faulty actions/decisions
Basic Event 24 - External person physically manipulates WWTP quality sensor
Basic Event 165 - External person jams surface water system sensor signal transmission
Basic Event 166 - External person jams surface water system sensor signal transmission
Basic Event 167 - External person physically manipulates surface water system sensor readings
Basic Event 168 - External person physically manipulates surface water system sensor readings
Basic Event 169 - Man-in-the-Middle attack manipulates surface water system sensor signal
Basic Event 170 - External attacker manipulates surface water system transmission devices
Basic Event 172 - Structural deterioration of reservoir intake pipe material
Basic Event 180 - Incorrect execution or failure of software acquired from an external party crashes reservoir control system
Basic Event 182 - Raw water pump destruction
Basic Event 189 - Man-in-the-Middle attack manipulates groundwater quality sensor signal
Basic Event 194 - External person manipulates transmission wires of wells
Basic Event 195 - External person manipulates data transmission system of wells
Basic Event 196 - Man-in-the-Middle attack manipulates well sensor signal
Basic Event 200 - Incorrect execution or failure of software acquired from an external party crashes abstraction well control system
Basic Event 201 - Malware performs DoS attack on abstraction well PLCs
Basic Event 214 - Undetected SCADA hijacking software takes control of WTP operation
Basic Event 215 - Man-in-the-Middle attack manipulates WTP control signals
Basic Event 216 - Incorrect execution or failure of software acquired from an external party crashes WTP control system
Basic Event 217 - Failure to regulate the temperature, humidity and air quality in environments where information systems are located
Basic Event 219 - DoS attack to WTP process system PLC
Basic Event 222 - A valve is opened and floods equipment
Gate 181 - Tank quality sensor failure
Gate 116 - Chemical overdosing due to misled WTP operation
Gate 177 - Staff or PLC controlled processes run on altered WTP data
Gate 113 - Lower efficiency of WTP disinfectant undetected
Gate 117 - Staff or PLC controlled disinfection processes run on altered WTP data
Gate 111 - Insufficient disinfection due to loss of WTP control
Gate 178 - Dosing system disabled
Gate 179 - Dosing system destroyed
Gate 109 - Extreme WTP sanitation process failure
Gate 88 - Inappropriate hydraulic operation of WWTP due to loss of control
Gate 89 - Inappropriate hydraulic operation of WWTP due to misled operation
Gate 90 - Sub-standard outflow due to operational failure
Gate 91 - Inappropriate WWTP outflow quality due to loss of control
Gate 92 - Inappropriate WWTP outflow quality due to misled operations
Gate 185 - Undetected contamination of WTP chemical solutions
Gate 186 - Quality verification process runs on altered WTP data
Basic Event 150 - No sensor or insufficient type of quality sensor in the tank
Basic Event 151 - External person physicaly manipulates tank quality sensor readings
Basic Event 152 - Man-in-the-Middle attack manipulates quality sensor signals
Basic Event 81 - Additive and/or disinfectant overdose from WTP staff error
Basic Event 43 - External person jams WTP sensor signal transmission
Basic Event 46 - Internal person jams WTP sensor signal transmission
Basic Event 47 - Internal person physically destroys WTP sensors
Basic Event 158 - External attacker blocks WDN sensor reading to reach WTP
Basic Event 48 - External person physically manipulates WTP sensor readings
Basic Event 49 - Internal person physically manipulates WTP sensor readings
Basic Event 50 - Man-in-the-Middle attack manipulates WTP sensor signal
Basic Event 51 - Internal cyber manipulation of WTP sensor signal
Basic Event 153 - External attacker manipulates WTP transmission devices
Basic Event 155 - External person physicaly manipulates abstraction point quality sensor readings
Basic Event 156 - Man-in-the-Middle attack manipulates abstraction point quality sensors
Basic Event 157 - Man-in-the-Middle attack manipulates WDN quality sensor readings
Basic Event 63 - Undetected SCADA hijacking software takes control of WTP operation
Basic Event 64 - Man-in-the-Middle attack manipulates WTP control signals
Basic Event 159 - Incorrect execution or failure of software acquired from an external party crashes WTP control system
Basic Event 160 - Failure to regulate the temperature, humidity and air quality in environments where information systems are located
Basic Event 41 - Disinfectant missdosage from WTP from operational staff error
Basic Event 65 - DoS attack to dosing system PLC
Basic Event 66 - No back-up alternative for WTP dosing system PLC
Basic Event 78 - Internal person adds substance to WTP coagulant storage tank
Basic Event 26 - Serious spill from Interdependent Industry CI from cyber-physical attack
Basic Event 20 - SCADA hijacking software takes control of WWTP operation
Basic Event 23 - Man-in-the-Middle attack manipulates WWTP control signals
Basic Event 21 - WWTP operational staff faulty actions/decisions
Basic Event 24 - External person physically manipulates WWTP quality sensor
Measures
FencesAndWalls
MotionDetectors
CameraSurveillance
Patrols
FloodProtection
BarredWindows
BinaryContacts
SecureDoorsAndWindows
EntranceAccessControl
SecureLocks
DiscreetAppearance
FiltersInAerationProcesses
OscillationSensors
ValvePositionSensors
OperatingParameterSurveillance
ProcedureForPersonnelChanges
EmployeesTrainings
SecurityCheckOfEmployees
EmergencyPlans
RedundantAssetsAndInfrastructures
DistributedEnergySupply
EmergencyGenerators
WaterIntakeAdaption
WaterQualityOnlineSurveillance
WaterTreatmentControl
WaterQualityOfflineSurveillance
MonitoringAndControlOfDistributionSystem
AdditivesQualityCheck
InfrastructureAndAssetInspections
InformationSecurityGuidelines
InformationSecurityManagementSystem
PasswordSecurity
TwoFactorAuthentification
RestrictedAccesToITSytem
DataBackups
NetworkSeparation
AppropriateLayingOfWires
MirroredSCADA
DataIntegrityCheck
MalwareProtectionGuidelines
MalwareProtectionSoftware
SupervisionOfExternals
SmokeDetectors
RawWaterPipelineProtection
PressureAndFlowSensors
LevelSensors
AdditionalStorageCapacity
WaterNetworkInterventionsForWaterSupplyRecovery
NonManipulationConnectionTool
CryptographicProcesses
ServerRoomSetup
PatchAndChangeManagement
MobileDeviceUsageRules
DeletionAndDestructionOfDataCarriers
SecureOutsourcing
Documentation
IdentificationClassificationAndRiskAssessmentTool
Name
Cyber-Physical