Let's not overplay this: There was no blackout, and it's not even clear that it was a specifically targeted attack. But hackers did use firewall vulnerabilities to cause periodic "blind spots" for grid operators in the western US for about 10 hours on March 5. It's the first known time a cyberattack has caused that kind of disruption—which, again, did not affect the actual flow of electricity—at a US power grid company. The incident was originally referenced in a Department of Energy report in April, but only in vague terms. A new North American Electric Reliability Corporation document described it in more detail, including the type of vulnerabilities that let hackers compromise the web portals in question. No need to panic about this incident specifically, but given the extent to which Russia and others continue to probe the power grid, it's an unsettling reminder that weaknesses are out there.
Read more: https://www.wired.com/story/power-grid-cyberattack-facebook-phone-numbers-security-news/