Forget your money and identities, hackers are now after your water, according to the White House

A stylised photograph of a person acting as a hacker, break into servers and infecting them with a virus, as show by computer monitors displaying green text and codes
(Image credit: Witthaya Prasongsin via Getty Images)

There hardly goes a day without news of cyberattacks taking place at banks, tech companies, or government agencies. From targeting the individual to the masses, hackers are getting ever more creative in what they strike at, in order to compromise systems and gain sensitive information. Well, the US White House and Environmental Protection Agency (EPA) are now warning that public water and sewage systems are the latest points of attack and state administrations are being urged to improve the security of such plants.

The plea for 'water resilience' from the White House and EPA (via The Verge) came in the form of an open letter to US state governors and a call to attend a virtual meeting on how best to combat attacks from state-sponsored groups. In the letter, it's claimed that 'drinking water and wastewater systems are an attractive target for cyberattacks because they are a lifeline critical infrastructure sector but often lack the resources and technical capacity to adopt rigorous cybersecurity practices.'

However, some of the practices that should, but haven't, been followed are arguably not all that rigorous. This small section of the latter highlights what I mean: "In many cases, even basic cybersecurity precautions—such as resetting default passwords or updating software to address known vulnerabilities—are not in place and can mean the difference between business as usual and a disruptive cyberattack."

You'd think that changing a default admin password on a router, for example, would be common practice by all IT departments but that's clearly not happening. What you're seeing there is an over-reliance on the strength of the password, which is typically very strong on networking devices. However, if the database of passwords used for such devices is ever compromised and the details publicly leaked, then it's not even remotely strong any more.

Thinking of upgrading?

Windows 11 Square logo

(Image credit: Microsoft)

Windows 11 review: What we think of the latest OS.
How to install Windows 11: Our guide to a secure install.
Windows 11 TPM requirement: Strict OS security.

Hence why the White House and EPA talk about being rigorous with practices, such as routinely changing passwords and updating firmware to prevent cyberattacks from standing any chance of succeeding.

Access to clean water, whenever desired, is taken for granted by many of us around the world, myself included, and it's somewhat concerning to think that someone could interfere with that access from another country. At the moment, what attacks that have taken place on such facilities haven't resulted in any serious disruptions in the service of water and waste, but one can't help but feel it's only a matter of time before something alarming does happen.

Lock the doors before the horse bolts, folks. You know it makes sense. 

Nick Evanson
Hardware Writer

Nick, gaming, and computers all first met in 1981, with the love affair starting on a Sinclair ZX81 in kit form and a book on ZX Basic. He ended up becoming a physics and IT teacher, but by the late 1990s decided it was time to cut his teeth writing for a long defunct UK tech site. He went on to do the same at Madonion, helping to write the help files for 3DMark and PCMark. After a short stint working at, Nick joined Futuremark (MadOnion rebranded) full-time, as editor-in-chief for its gaming and hardware section, YouGamers. After the site shutdown, he became an engineering and computing lecturer for many years, but missed the writing bug. Cue four years at and over 100 long articles on anything and everything. He freely admits to being far too obsessed with GPUs and open world grindy RPGs, but who isn't these days?