Future dim for nuclear waste repository

US Power Grid Cyberattacks target utilities and nuclear plants, probing SCADA, ICS, and business networks at sites like Wolf Creek; suspected Russian actors, malware, and spear-phishing trigger DHS and FBI alerts on critical infrastructure resilience.

Key Points

Intrusions on energy networks probing ICS and SCADA, seeking persistence and elevating risks to critical infrastructure.

✅ Wolf Creek nuclear plant targeted; no operational systems breached

✅ Attackers leveraged stolen credentials, malware, and spear-phishing

✅ DHS and FBI issued alerts; utilities enhance cyber resilience

Hackers working for a foreign government recently breached at least a dozen US power plants, including the Wolf Creek nuclear facility in Kansas, according to current and former US officials, sparking concerns the attackers were searching for vulnerabilities in the electrical grid.

The rivals could be positioning themselves to eventually disrupt the nation’s power supply, warned the officials, who noted that a general alert, prompting a renewed focus on protecting the U.S. power grid, was distributed to utilities a week ago. Adding to those concerns, hackers recently infiltrated an unidentified company that makes control systems for equipment used in the power industry, an attack that officials believe may be related.

The chief suspect is Russia, according to three people familiar with the continuing effort to eject the hackers from the computer networks. One of those networks belongs to an ageing nuclear generating facility known as Wolf Creek -- owned by Westar Energy Inc, Great Plains Energy Inc, and Kansas Electric Power Cooperative Inc -- on a lake shore near Burlington, Kansas.

The possibility of a Russia connection is particularly worrying, former and current official s say, because Russian hackers have previously taken down parts of the electrical grid in Ukraine and appear to be testing increasingly advanced tools, including cyber weapons to disrupt power grids, to disrupt power supplies.

The hacks come as international tensions have flared over US intelligence agencies’ conclusion that Russia tried to influence the 2016 presidential election, and amid U.S. government condemnation of Russian power-grid hacking in recent advisories. The US, which has several continuing investigations into Russia’s activities, is known to possess digital weapons capable of disrupting the electricity grids of rival nations.

“We don’t pay attention to such anonymous fakes,” Kremlin spokesman Dmitry Peskov said, in response to a request to comment on alleged Russian involvement.

It was unclear whether President Donald Trump was planning to address the cyber attacks at his meeting on Friday with Russian President Vladimir Putin. In an earlier speech in Warsaw, Trump called out Russia’s “destabilising activities” and urged the country to join “the community of responsible nations.”

The Department of Homeland Security and Federal Bureau of Investigation said they are aware of a potential intrusion in the energy sector. The alert issued to utilities cited activities by hackers since May.

“There is no indication of a threat to public safety, as any potential impact appears to be limited to administrative and business networks,” the government agencies said in a joint statement.

The Department of Energy also said the impact appears limited to administrative and business networks and said it was working with utilities and grid operators to enhance security and resilience.

“Regardless of whether malicious actors attempt to exploit business networks or operational systems, we take any reports of malicious cyber activity potentially targeting our nation’s energy infrastructure seriously and respond accordingly,” the department said in an emailed statement.

Representatives of the National Security Council, the Director of National Intelligence and the Nuclear Regulatory Commission declined to comment. While Bloomberg News was waiting for responses from the government, the New York Times reported that hacks were targeting nuclear power stations.

The North American Electric Reliability Corp, a nonprofit that works to ensure the reliability of the continent’s power system, said it was aware of the incident and was exchanging information with the industry through a secure portal.

“At this time, there has been no bulk power system impact in North America,” the corporation said in an emailed statement.

In addition, the operational controls at Wolf Creek were not pierced, according to government officials, even as attackers accessed utility control rooms elsewhere in the U.S., according to separate reports. “There was absolutely no operational impact to Wolf Creek,” Jenny Hageman, a spokeswoman for the nuclear plant, said in a statement to Bloomberg News.

“The reason that is true is because the operational computer systems are completely separate from the corporate network.”

Determining who is behind an attack can be tricky. Government officials look at the sophistication of the tools, among other key markers, when gauging whether a foreign government is sponsoring cyber activities.

Several private security firms, including Symantec researchers, are studying data on the attacks, but none has linked the work to a particular hacking team or country.

“We don’t tie this to any known group at this point,” said Sean McBride, a lead analyst for FireEye Inc, a global cyber security firm. “It’s not to say it’s not related, but we don’t have the evidence at this point.”

US intelligence officials have long been concerned about the security of the country’s electrical grid. The recent attack, striking almost simultaneously at multiple locations, is testing the government’s ability to coordinate an effective response among several private utilities, state and local officials, and industry regulators.

Specialised teams from Homeland Security and the FBI have been scrambled to help extricate the hackers from the power stations, in some cases without informing local and state officials. Meanwhile, the US National Security Agency is working to confirm the identity of the hackers, who are said to be using computer servers in Germany, Italy, Malaysia and Turkey to cover their tracks.

Many of the power plants are conventional, but the targeting of a nuclear facility adds to the pressure. While the core of a nuclear generator is heavily protected, a sudden shutdown of the turbine can trigger safety systems. These safety devices are designed to disperse excess heat while the nuclear reaction is halted, but the safety systems themselves may be vulnerable to attack.

Homeland Security and the FBI sent out a general warning about the cyber attack to utilities and related parties on June 28, though it contained few details or the number of plants affected. The government said it was most concerned about the “persistence” of the attacks on choke points of the US power supply. That language suggests hackers are trying to establish backdoors on the plants’ systems for later use, according to a former senior DHS official who asked not to be identified.

Those backdoors can be used to insert software specifically designed to penetrate a facility’s operational controls and disrupt critical systems, according to Galina Antova, co-founder of Claroty, a New York firm that specialises in securing industrial control systems.

“We’re moving to a point where a major attack like this is very, very possible,” Antova said. “Once you’re into the control systems -- and you can get into the control systems by hacking into the plant’s regular computer network -- then the basic security mechanisms you’d expect are simply not there.”

The situation is a little different at nuclear facilities. Backup power supplies and other safeguards at nuclear sites are meant to ensure that “you can’t really cause a nuclear plant to melt down just by taking out the secondary systems that are connected to the grid,” Edwin Lyman, a nuclear expert with the Union of Concerned Scientists, said in a phone interview.

The operating systems at nuclear plants also tend to be legacy controls built decades ago and don’t have digital control systems that can be exploited by hackers. Wolf Creek, for example, began operations in 1985. “They’re relatively impervious to that kind of attack,” Lyman said.

The alert sent out last week inadvertently identified Wolf Creek as one of the victims of the attack. An analysis of one of the tools used by the hackers had the stolen credentials of a plant employee, a senior engineer. A US official acknowledged the error was not caught until after the alert was distributed.

According to a security researcher who has seen the report, the malware that activated the engineer’s username and password was designed to be used once the hackers were already inside the plant’s computer systems.

The tool tries to connect to non-public computers, and may have been intended to identify systems related to Wolf Creek’s generation plant, a part of the facility typically more modern than the nuclear reactor control room, according to a security expert who asked to note be identified because the alert is not public.

Even if there is no indication that the hackers gained access to those control systems, the design of the malware suggests they may have at least been looking for ways to do so, the expert said.

Stan Luke, the mayor of Burlington, the largest community near Wolf Creek, which is surrounded by corn fields and cattle pastures, said he learned about a cyber threat at the plant only recently, and then only through golfing buddies.

With a population of just 2,700, Burlington boasts a community pool with three water slides and a high school football stadium that would be the envy of any junior college. Luke said those amenities lead back to the tax dollars poured into the community by Wolf Creek, Coffey County’s largest employer with some 1,000 workers, 600 of whom live in the county.

E&E News first reported on digital attacks targeting US nuclear plants, adding it was code-named Nuclear 17. A senior US official told Bloomberg that there was a bigger breach of conventional plants, which could affect multiple regions.

Industry experts and US officials say the attack is being taken seriously, in part because of recent events in Ukraine. Antova said that the Ukrainian power grid has been disrupted at least twice, first in 2015, and then in a more automated attack last year, suggesting the hackers are testing methods.

Scott Aaronson, executive director for security and business continuity at the Edison Electric Institute, an industry trade group, said utilities, grid operators and federal officials were already dissecting the attack on Ukraine’s electric sector to apply lessons in North America before the US government issued the latest warning to “energy and critical manufacturing sectors”. The current threat is unrelated to recently publicised ransomware incidents or the CrashOverride malware, Mr Aaronson said in an emailed statement.

Neither attack in Ukraine caused long-term damage. But with each escalation, the hackers may be gauging the world’s willingness to push back.

“If you think about a typical war, some of the acts that have been taken against critical infrastructure in Ukraine and even in the US, those would be considered crossing red lines,” Antova said.

Related News

• Electricity Forum News

• Grid Technologies News

SDG&E Minimum Bill Proposal would impose a $38.40 fixed charge, discouraging rooftop solar, burdening low income households, and shifting grid costs during peak demand, as the CPUC weighs consumer impacts and affordability.

Key Points

Sets a $38.40 monthly minimum bill that raises low usage costs, deters rooftop solar, and burdens low income households.

✅ $38.40 fixed charge regardless of usage

✅ Disincentivizes rooftop solar investments

✅ Disproportionate impact on low income customers

The utility San Diego Gas & Energy has an aggressive proposal pending before the California Public Utilities Commission, amid recent commission changes in San Diego that highlight how regulatory decisions affect local customers: It wants to charge most residential customers a minimum bill of $38.40 each month, regardless of how much energy they use. The costs of this policy would hit low-income customers and those who generate their own energy with rooftop solar. We’re urging the Commission to oppose this flawed plan—and we need your help.

SDG&E’s proposal is bad news for sustainable energy. About half of the customers whose bills would go up under this proposal have rooftop solar. The policy would deter other customers from investing in rooftop solar by making these investments less economical. Ultimately, lost opportunities for solar would mean burning more gas in polluting power plants. 

The proposal is also bad news for people who already have to scrimp on energy costs. Most customers with big homes and billowing air conditioners won't notice if this policy goes into effect, because they use at least $38 worth of electricity a month anyway. But for households that don’t buy much electricity from the company, including those in small apartments without air conditioning, this proposal would raise the bills. Even for customers on special low-income rates, amid electric bill changes statewide, SDG&E wants a minimum bill of $19.20.

Penalizing customers who don’t use much electricity would disproportionately hurt lower-income customers, raising energy equity concerns across the region, who tend to use less energy than their wealthier neighbors. In the region SDG&E serves, the average family in an apartment uses half as much electricity as a single-family residence. Statewide, low-income households are more than four times as likely to be low-usage electricity customers than high-income households. When it gets hot, residential electricity patterns are often driven by air conditioning. The vast majority of SDG&E's customers live in the coastal climate zone, where access to air conditioning is strongly linked to income: Households with incomes over $150,000 are more than twice as likely to have air conditioning than families making less than $35,000, with significant racial disparities in who has AC.

In its attempt to rationalize its request, SDG&E argues that it should charge everyone for infrastructure costs that do not depend on how much energy they use. But the cost of the grid is driven by how much energy SDG&E delivers on hot summer afternoons, when some customers blast their AC and demand for electricity peaks. If more customers relied on their own solar power or conserved energy, the utility would spend less on its grid and help rein in soaring electricity prices over time.

In the long term, reducing incentives to go solar and conserve energy will strain the grid and drive up costs for everyone, especially as lawmakers may overturn income-based charges and reshape rate design. SDG&E's arguments are part of a standard utility playbook for trying to hike income-based fixed charges, and consumer advocates have repeatedly shut them down.  As far as we know, no regulators in the country have allowed a utility to charge customers over $38 for the “privilege” of accessing electric service. 

Related News

• Electricity Forum News

• Energy Policy News

PG&E Wildfire Blackouts highlight California power shutoffs as high winds and suspected transmission line faults trigger evacuations, CPUC investigations, and grid safety reviews, with utilities weighing risk, compliance, and resilience during Santa Ana conditions.

Key Points

PG&E Wildfire Blackouts are outages during wind-driven fire threats linked to power lines, spurring CPUC investigations.

✅ Wind and line faults suspected amid Lafayette evacuations

✅ CPUC to probe shutoffs, notifications, and compliance

✅ Utilities plan more outages as Santa Ana winds return

Pacific Gas & Electric Co. power lines may have started two wildfires over the weekend in the San Francisco Bay Area, the utility said Monday, even though widespread blackouts were in place to prevent downed lines from starting fires during dangerously windy weather.

The fires described in PG&E reports to state regulators match blazes that destroyed a tennis club and forced evacuations in Lafayette, about 20 miles (32 kilometres) east of San Francisco.

The fires began in a section of town where PG&E had opted to keep the lights on. The sites were not designated as a high fire risk, the company said.

Powerful winds were driving multiple fires across California and forcing power shut-offs intended to prevent blazes, even as electricity prices are soaring across the state as well.

More than 900,000 power customers -- an estimated 2.5 million people -- were in the dark at the height of the latest planned blackout, nearly all of them in PG&E's territory in Northern and central California. By Monday evening a little less than half of those had their service back. But some 1.5 million people in 29 counties will be hit with more shut-offs starting Tuesday because another round of strong winds is expected, a reminder of grid stress during heat waves that test capacity, the utility said.

Southern California Edison had cut off power to 25,000 customers and warned that it was considering disconnecting about 350,000 more as power supply lapses and Santa Ana winds return midweek.

PG&E is under severe financial pressure after its equipment was blamed for a series of destructive wildfires and its 2018 Camp Fire guilty plea compounded liabilities during the past three years. Its stock dropped 24% Monday to close at $3.80 and was down more than 50% since Thursday.

The company reported last week that a transmission tower may have caused a Sonoma County fire that has forced 156,000 people to evacuate.

PG&E told the California Public Utilities Commission that a worker responded to a fire in Lafayette late Sunday afternoon and was told firefighters believed contact between a power line and a communication line may have caused it.

A worker went to another fire about an hour later and saw a fallen pole and transformer. Contra Costa Fire Department personnel on site told the worker they were looking at the transformer as a potential ignition source, a company official wrote.

Separately, the company told regulators that it had failed to notify 23,000 customers, including 500 with medical conditions, before shutting off their power earlier this month during windy weather.

Before a planned blackout, power companies are required to notify customers and take extra care to get in touch with those with medical problems who may not be able to handle extended periods without air conditioning or may need power to run medical devices.

PG&E said some customers had no contact information on file. Others were incorrectly thought to be getting electricity.

After that outage, workers discovered 43 cases of wind-related damage to power lines, transformers and other equipment.

Jennifer Robison, a PG&E spokeswoman, said the company is working with independent living centres to determine how best to serve people with disabilities.

The company faced a growing backlash from regulators and lawmakers, and a judge's order on wildfire risk spending added pressure as well.

U.S. Rep. Josh Harder, a Democrat from Modesto, said he plans to introduce legislation that would raise PG&E's taxes if it pays bonuses to executives while engaging in blackouts.

The Public Utilities Commission plans to open a formal investigation into the blackouts and the broader climate policy debate surrounding reliability within the next month, allowing regulators to gather evidence and question utility officials. If rules are found to be broken, they can impose fines up to $100,000 per violation per day, said Terrie Prosper, a spokeswoman for the commission.

The commission said Monday it also plans to review the rules governing blackouts, will look to prevent utilities from charging customers when the power is off and will convene experts to find grid improvements that might lessen blackouts during next year's fire season, as debates over rate stability in 2025 continue across PG&E's service area.

The state can't continue experiencing such widespread blackouts, "nor should Californians be subject to the poor execution that PG&E in particular has exhibited," Marybel Batjer, president of the California Public Utilities Commission, said in a statement.

Related News

• Electricity Forum News

• Energy Policy News

Rural Electrification Poverty Impact examines energy access, grid connections, and reliability, testing economic development claims via randomized trials; findings show minimal gains without appliances, reliable supply, and complementary services like education and job creation initiatives.

Key Points

Study of household grid connections showing modest poverty impact without reliable power and appliances.

✅ Randomized grid connections showed no short-term income gains.

✅ Low reliability and few appliances limited electricity use.

✅ Complementary investments in jobs, education, health may be needed.

The head of Swedfund, the development finance group, recently summarized a widely-held belief: “Access to reliable electricity drives development and is essential for job creation, women’s empowerment and combating poverty.” This view has been the driving force behind a number of efforts to provide electricity to the 1.1 billion people around the world living in energy poverty, such as India's village electrification initiatives in recent years.

But does electricity really help lift households out of poverty? My co-authors and I set out to answer this question. We designed an experiment in which we first identified a sample of “under grid” households in Western Kenya—structures that were located close to but not connected to a grid. These households were then randomly divided into treatment and control groups. In the treatment group, we worked closely with the rural electrification agency to connect the households to the grid for free or at various discounts. In the control group, we made no changes. After eighteen months, we surveyed people from both groups and collected data on an assortment of outcomes, including whether they were employed outside of subsistence agriculture (the most common type of work in the region) and how many assets they owned. We even gave children basic tests, as a frequent assertion is that electricity helps children perform better in school since they are able to study at night.

When we analyzed the data, we found no differences between the treatment and control groups. The rural electrification agency had spent more than $1,000 to connect each household. Yet eighteen months later, the households we connected seemed to be no better off. Even the children’s test scores were more or less the same. The results of our experiment were discouraging, and at odds with the popular view that supplying households with access to electricity will drive economic development. Lifting people out of poverty may require a more comprehensive approach to ensure that electricity is not only affordable (with some evidence that EV growth can benefit all customers in mature markets), but is also reliable, useable, and available to the whole community, paired with other important investments.

For instance, in many low-income countries, the grid has frequent blackouts and maintenance problems, making electricity unreliable, as seen in Nigeria's electricity crisis in recent years. Even if the grid were reliable, poor households may not be able to afford the appliances that would allow for more than just lighting and cell phone charging. In our data, households barely bought any appliances and they used just 3 kilowatt-hours per month. Compare that to the U.S. average of 900 kilowatt-hours per month, a figure that could rise as EV adoption increases electricity demand over time.

There are also other factors to consider. After all, correlation does not equal causation. There is no doubt that the 1.1 billion people without power are the world’s poorest citizens. But this is not the only challenge they face. The poor may also lack running water, basic sanitation, consistent food supplies, quality education, sufficient health care, political influence, and a host of other factors that may be harder to measure but are no less important to well-being. Prioritizing investments in some of these other factors may lead to higher immediate returns. Previous work by one of my co-authors, for example, shows substantial economic gains from government spending on treatment for intestinal worms in children.

It’s possible that our results don’t generalize. They certainly don’t apply to enhancing electricity services for non-residential customers, like factories, hospitals, and schools, and electric utilities adapting to new load patterns. Perhaps the households we studied in Western Kenya are particularly poor (although measures of well-being suggest they are comparable to rural households across Sub-Saharan Africa) or politically disenfranchised. Perhaps if we had waited longer, or if we had electrified an entire region, the household impacts we measured would have been much greater. But others who have studied this question have found similar results. One study, also conducted in Western Kenya, found that subsidizing solar lamps helped families save on kerosene, but did not lead children to study more. Another study found that installing solar-powered microgrids in Indian villages resulted in no socioeconomic benefits.

Related News

• Electricity Forum News

• EV Infrastructure News

Eskom Wind Power Curtailment reflects South Africa's lockdown-driven drop in electricity demand, prompting grid-balancing measures as Eskom signals reduced IPP procurement from renewable energy projects during low-demand hours, despite guarantees and flexible generation constraints.

Key Points

A temporary reduction of wind IPP purchases by Eskom to balance surplus grid capacity during the COVID-19 lockdown slump

✅ Demand drop of 7,500 MW reduced need for variable renewables.

✅ Curtailment likely during low-demand early-morning hours.

✅ IPP revenues protected via contract extensions and guarantees.

South African state utility Eskom has told independent wind farms that it could buy less of their power in the coming days, as electricity demand has plummeted during a lockdown, reflecting the Covid-19 impact on renewables worldwide, aimed at curbing the spread of the coronavirus.

Eskom, which is mired in a financial crisis and has struggled to keep the lights on in the past year, said on Tuesday that power demand had dropped by more than 7,500 megawatts since the lockdown started on Friday and that it had taken offline some of its own generators.

The utility supplements its generating capacity, which is mainly derived from coal, by buying power from solar and wind farms, as wind becomes a competitive source of electricity globally, under contracts signed as part of the government’s renewable energy programme.

Spokesman Sikonathi Mantshantsha said Eskom had not yet curtailed power procurement from wind farms but that it had told them, echoing industry warnings on wind investment risk seen by the sector, this could happen “for a few hours a day during the next few days, perhaps until the lockdown is lifted”.

“Most of them are able to feed power into the grid in the early hours of the day. That coincides with the lowest demand period and can highlight curtailment challenges when supply exceeds need. And we now have a lot more capacity than needed,” Mantshantsha said.

During the lockdown imposed by President Cyril Ramaphosa, businesses apart from those deemed “essential services” are closed, mirroring Spanish wind factory closures elsewhere. Many power-hungry mines and furnaces have suspended operations.

Eskom has relatively little of its own “flexible generation” capacity, which can be ramped up or down easily, unlike regions riding a renewables boom in South Australia to export power.

The government has committed to buy up to 200 billion rand ($11.1 billion) of electricity from independent power producers and has issued state guarantees for those purchases.

“They will be compensated for their losses, amid U.S. utility-solar slowdowns being reported - each day lost will be added to their contracts,” Mantshantsha said of the wind farms. “In the end they will not be worse off.”

Related News

• Electricity Forum News

• Power Generation News

E.ON Digital Transformer Stations modernize distribution grids with smart grid monitoring, voltage control, and remote switching, enabling bidirectional power flow, renewables integration, and rapid fault isolation from centralized grid control centres.

Key Points

Remotely monitored grid nodes enhancing smart grid stability and speedier fault response.

✅ Real-time voltage and current data along feeders and laterals

✅ Remote switching cuts outage duration and truck rolls

✅ Supports renewables and bidirectional power flows

E.ON plans to commission 2500 digital transformer stations in the service areas of its four German distribution grid operators - Avacon, Bayernwerk, E.DIS and Hansewerk - by the end of 2019. Starting this year, E.ON will solely install digital transformer stations in Germany, aligning with 2019 grid edge trends seen across the sector. This way, the digital grid is quite naturally being integrated into E.ON's distribution grids.

With these transformer stations as the centrepiece of the smart grid, it is possible to monitor and control using synchrophasors in the power grid from the grid control centre. This helps to maintain a more balanced utilisation of the grid and, with increasing complexity, ensures continued security of supply.

Until now, the current and voltage parameters required for safe grid operation could usually only be determined at the beginning of a power line, where there is usually a grid substation in place. Controlling current flow and voltage in the downstream system was physically impossible.

In the future, grids will have to function in both directions: they will bring electricity to the customer while at the same time collecting and transmitting more and more green electricity via HVDC technology where appropriate. This requires physical data to be made available along the entire route. To ensure security of supply, voltage fluctuations must be kept within narrowly defined limits and the current flow must not exceed the specified value, while reducing line losses with superconducting cables remains an important consideration. To manage this challenge, it is necessary to install digital technology.

The possibility of remotely controlling grids also reduces downtimes in the event of faults and supports a smarter electricity infrastructure approach. With the new technology, our grid operators can quickly and easily access the stations of the affected line. The grid control centres can thus limit and eliminate faults on individual line sections within a very short space of time.

Related News

• Electricity Forum News

• Grid Technologies News