Industrial cybersecurity firm Dragos detailed how the Littleton Electric Light and Water Departments (LELWD) identified and eliminated a sophisticated cyber threat, known as VOLTZITE (linked to China's Volt Typhoon group), which remained undetected in their network for over 300 days.
The case study:
- Reveals how LELWD, a small utility, leveraged Dragos's platform and OT Watch team to detect, analyze, and remove the threat without customer data compromise.
- Highlights the broader risks to critical infrastructure, especially from APT groups that aim for long-term persistence rather than immediate disruption.
- Stresses challenges such as limited visibility, IT-OT integration risks, and vulnerability management, which small utilities commonly face.
- Emphasizes the importance of choosing cybersecurity partners, not just vendors, who offer ongoing support, threat intelligence, and proactive solutions.
The case underscores:
- The impact of government-funded initiatives like the APPA program, which helped LELWD enhance its security.
- That improved network visibility led to better operational efficiency, faster incident response, and enhanced decision-making.
- Insights from security experts across organizations, who collectively warn about rising threats to Operational Technology (OT) and Industrial Control Systems (ICS), and advocate for proactive security measures, including isolation, continuous monitoring, and regular vulnerability assessments.
Key takeaway: Even small utilities can face advanced cyber threats, but with the right tools, partners, and strategies, they can turn crises into opportunities for long-term resilience and stronger OT security.
Source: https://industrialcyber.co/utilities-energy-power-water-waste/dragos-details-lelwds-fight-against-voltzite-cyberattack-following-300-day-ot-network-breach/
.svg){kind=spacer}
