The United States has imposed sanctions against Russian hackers for dangerous attacks on water supply systems in Texas. Yulia Pankratova and Denys Dehtyarenko are leaders of the hacker group called Cyber Army of Russia Reborn (CARR). The U.S. Department of the Treasury has added them to the list of individuals banned from doing business with Americans due to their involvement in cyberattacks that caused significant problems for the water systems in small Texas towns like Muleshoe and Abernathy, as reported by Regtechtimes.
The hackers gained access to the water supply systems controlling the flow and storage of water in these cities. This system is critical for providing stable and clean water to the cities. The hackers manipulated the system, leading to the overflow of water tanks and the spilling of tens of thousands of gallons of water.
In Muleshoe, the water tower overflowed for 30–45 minutes. The hackers were able to remotely take control of the industrial system used by city workers to manage the tank. It was only after utility operators manually took control of the system that they were able to stop the overflow. Fortunately, no one was hurt, but the incident highlighted how dangerous the situation could have been if it had worsened.
The attacks did not stop there. In other nearby towns like Lockney and Hale Center, local authorities noticed suspicious activity that appeared to be related to the attacks in Muleshoe and Abernathy. In these towns, the hackers also attempted to breach the water utility systems. This system helps operators remotely monitor and manage vital water supply infrastructure. If the hackers had succeeded, they could have caused even greater damage to the water systems, jeopardizing the safety and health of local residents.
In response to the cyberattacks, the U.S. Department of the Treasury took action to prevent Pankratova and Dehtyarenko from causing further harm. Both individuals were added to the sanctions list, meaning U.S. companies, financial institutions, and individuals are prohibited from doing business with them. This is a way for the U.S. government to send a clear message that cyberattacks on critical infrastructure will not be tolerated.
