Burlington Electric Department Statement: No Indication that Electric Grid or Customer Information Compromised

Saturday, December 31, 2016

To our valued customers and residents of the City of Burlington,

On Thursday night, December 29, 2016, the Burlington Electric Department was alerted by the Department of Homeland Security (DHS) of a malware code used in Grizzly Steppe, the name DHS has applied to recent malicious cyber activity. We acted quickly to scan all computers in our system for the malware signature. We detected suspicious Internet traffic in a single Burlington Electric Department computer not connected to our organization’s grid systems. We took immediate action to isolate the laptop and alerted federal officials of this finding.

There is no indication that either our electric grid or customer information has been compromised. Media reports stating that Burlington Electric was hacked or that the electric grid was breached are false.

Cybersecurity is an issue that Burlington Electric and all U.S. utilities take very seriously. We focus every day to protect the integrity of the electric grid and the personal information of our valued customers.

Federal officials have indicated that this specific type of Internet traffic also has been observed elsewhere in the country and is not unique to Burlington Electric. It’s unfortunate that an official or officials improperly shared inaccurate information with one media outlet, leading to multiple inaccurate reports around the country.

At Burlington Electric, we take great pride in conveying timely and accurate information and will continue to keep you updated about issues that impact you through our website, social media, and as many other communications channels as possible.

The entire Burlington Electric family would like to thank all of you -- our customers -- for your continued confidence and trust in our work.

If you have any questions, please contact Burlington Electric directly.

Happy New Year!

Neale F. Lunderville
General Manager

# # #
 

Saturday, December 31, 2016

Burlington Electric Department Statement: No Indication that Electric Grid or Customer Information Compromised

Cybersecurity is an issue that the Burlington Electric Department and all U.S. utilities take very seriously and on which we focus every day to protect the integrity of the electric grid and the personal information of our valued customers.

Federal officials have indicated that the specific type of Internet traffic, related to recent malicious cyber activity that was reported by us yesterday, also has been observed elsewhere in the country and is not unique to Burlington Electric. It’s unfortunate that an official or officials improperly shared inaccurate information with one media outlet, leading to multiple inaccurate reports around the country.

At Burlington Electric, where we take great pride in conveying timely and accurate information, we want our community to know that there is no indication that either our electric grid or customer information has been compromised. Media reports stating that Burlington Electric was hacked or that the electric grid was breached are false.

We want to thank our customers for their continued confidence and trust in Burlington Electric.

# # #

 

Friday, December 30, 2016

Burlington Electric Department Statement: Response to Reports of Russian Hacking of Vermont Electric Grid

Last night, U.S. utilities were alerted by the Department of Homeland Security (DHS) of a malware code used in Grizzly Steppe, the name DHS has applied to a Russian campaign linked to recent hacks. We acted quickly to scan all computers in our system for the malware signature. We detected the malware in a single Burlington Electric Department laptop not connected to our organization’s grid systems. We took immediate action to isolate the laptop and alerted federal officials of this finding. Our team is working with federal officials to trace this malware and prevent any other attempts to infiltrate utility systems. We have briefed state officials and will support the investigation fully.
 

# # #