US power utility blames Russia for malware code

A state electric utility has confirmed it had found on one of its laptops a malware code the US government says is used by Russian hackers. The Burlington Electric Department said that US utilities were alerted by the Department of Homeland Security on Thursday of a malware code used in Grizzly Steppe, the name Homeland Security has applied to a Russian campaign linked to recent hacks.

Burlington Electric, which is municipally owned, yesterday said it detected the malware in a laptop not connected to its grid systems. It said it took “immediate action to isolate the laptop and alerted federal officials.” 

“Our team is working with federal officials to trace this malware and prevent any other attempts to infiltrate utility systems,” it said in an emailed statement. It said it had briefed state officials and would fully support an investigation into the potential Russian hack.

Russia, which has been accused of interfering in the US presidential election by hacking American political sites and email accounts, has denied hacking US systems. Democratic Governor Peter Shumlin said that his administration had been in touch with the federal government and the state’s utilities.

“Vermonters and all Americans should be both alarmed and outraged that one of the world’s leading thugs, (Russian President) Vladimir Putin, has been attempting to hack our electric grid, which we rely upon to support our quality-of- life, economy, health, and safety,” he said in a statement.

He said the hacking episode should highlight the urgent need for the federal government to “vigorously pursue and put an end to this sort of Russian meddling.” Burlington Electric, which says it’s “at the forefront of the green energy revolution,” is one of the state’s two largest electric utilities. The other, Colchester-based Green Mountain Power, said its systems were secure.