EU Smart Meters Spur Growth in the Customer Analytics Market

US Electricity Demand Stagnation reflects decoupling from GDP as TVA's IRP revises outlook, with energy efficiency, distributed generation, renewables, and cheap natural gas undercutting coal, reshaping utility business models and accelerating grid modernization.

Key Points

US electricity demand stagnation is flat load growth driven by efficiency, DG, and decoupling from GDP.

✅ Flat sales pressure IOU profits and legacy baseload investments.

✅ Efficiency and rooftop solar reduce load growth and capacity needs.

✅ Utilities must pivot to services, DER orchestration, and grid software.

The US electricity sector is in a period of unprecedented change and turmoil, with emerging utility trends reshaping strategies across the industry today. Renewable energy prices are falling like crazy. Natural gas production continues its extraordinary surge. Coal, the golden child of the current administration, is headed down the tubes.

In all that bedlam, it’s easy to lose sight of an equally important (if less sexy) trend: Demand for electricity is stagnant.

Thanks to a combination of greater energy efficiency, outsourcing of heavy industry, and customers generating their own power on site, demand for utility power has been flat for 10 years, with COVID-19 electricity demand underscoring recent variability and long-run stagnation, and most forecasts expect it to stay that way. The die was cast around 1998, when GDP growth and electricity demand growth became “decoupled”:

This historic shift has wreaked havoc in the utility industry in ways large and small, visible and obscure. Some of that havoc is high-profile and headline-making, as in the recent requests from utilities (and attempts by the Trump administration) to bail out large coal and nuclear plants amid coal and nuclear industry disruptions affecting power markets and reliability.

Some of it, however, is unfolding in more obscure quarters. A great example recently popped up in Tennessee, where one utility is finding its 20-year forecasts rendered archaic almost as soon as they are released.

Falling demand has TVA moving up its planning process

Every five years, the Tennessee Valley Authority (TVA) — the federally owned regional planning agency that, among other things, supplies electricity to Tennessee and parts of surrounding states — develops an Integrated Resource Plan (IRP) meant to assess what it requires to meet customer needs for the next 20 years.

The last IRP, completed in 2015, anticipated that there would be no need for major new investment in baseload (coal, nuclear, and hydro) power plants; it foresaw that energy efficiency and distributed (customer-owned) energy generation would hold down demand.

Even so, TVA underestimated. Just three years later, the Times Free Press reports, “TVA now expects to sell 13 percent less power in 2027 than it did two decades earlier — the first sustained reversal in the growth of electricity usage in the 85-year history of TVA.”

TVA will sell less electricity in 10 years than it did 10 years ago. That is bonkers.

This startling shift in prospects has prompted the company to accelerate its schedule. It will now develop its next IRP a year early, in 2019.

Think for a moment about why a big utility like TVA (serving 9 million customers in seven states, with more than $11 billion in revenue) sets out to plan 20 years ahead. It is investing in extremely large and capital-intensive infrastructure like power plants and transmission lines, which cost billions of dollars and last for decades. These are not decisions to make lightly; the utility wants to be sure that they will still be needed, and will still pay off, for many years to come.

Now think for a moment about what it means for the electricity sector to be changing so fast that TVA’s projections are out of date three years after its last IRP, so much so that it needs to plunge back into the multimillion-dollar, year-long process of developing a new plan.

TVA wanted a plan for 20 years; the plan lasted three.

The utility business model is headed for a reckoning

TVA, as a government-owned, fully regulated utility, has only the goals of “low cost, informed risk, environmental responsibility, reliability, diversity of power and flexibility to meet changing market conditions,” as its planning manager told the Times Free Press. (Yes, that’s already a lot of goals!)

But investor-owned utilities (IOUs), which administer electricity for well over half of Americans, face another imperative: to make money for investors. They can’t make money selling electricity; monopoly regulations forbid it, raising questions about utility revenue models as marginal energy costs fall. Instead, they make money by earning a rate of return on investments in electrical power plants and infrastructure.

The problem is, with demand stagnant, there’s not much need for new hardware. And a drop in investment means a drop in profit. Unable to continue the steady growth that their investors have always counted on, IOUs are treading water, watching as revenues dry up

Utilities have been frantically adjusting to this new normal. The generation utilities that sell into wholesale electricity markets (also under pressure from falling power prices; thanks to natural gas and renewables, wholesale power prices are down 70 percent from 2007) have reacted by cutting costs and merging. The regulated utilities that administer local distribution grids have responded by increasing investments in those grids, including efforts to improve electricity reliability and resilience at lower cost.

But these are temporary, limited responses, not enough to stay in business in the face of long-term decline in demand. Ultimately, deeper reforms will be necessary.

As I have explained at length, the US utility sector was built around the presumption of perpetual growth. Utilities were envisioned as entities that would build the electricity infrastructure to safely and affordably meet ever-rising demand, which was seen as a fixed, external factor, outside utility control.

But demand is no longer rising. What the US needs now are utilities that can manage and accelerate that decline in demand, increasing efficiency as they shift to cleaner generation. The new electricity paradigm is to match flexible, diverse, low-carbon supply with (increasingly controllable) demand, through sophisticated real-time sensing and software.

That’s simply a different model than current utilities are designed for. To adapt, the utility business model must change. Utilities need newly defined responsibilities and new ways to make money, through services rather than new hardware. That kind of reform will require regulators, politicians, and risky experiments. Very few states — New York, California, Massachusetts, a few others — have consciously set off down that path.

Flat or declining demand is going to force the issue

Even if natural gas and renewables weren’t roiling the sector, the end of demand growth would eventually force utility reform.

To be clear: For both economic and environmental reasons, it is good that US power demand has decoupled from GDP growth. As long as we’re getting the energy services we need, we want overall demand to decline. It saves money, reduces pollution, and avoids the need for expensive infrastructure.

But the way we’ve set up utilities, they must fight that trend. Every time they are forced to invest in energy efficiency or make some allowance for distributed generation (and they must always be forced), demand for their product declines, and with it their justification to make new investments.

Only when the utility model fundamentally changes — when utilities begin to see themselves primarily as architects and managers of high-efficiency, low-emissions, multidirectional electricity systems rather than just investors in infrastructure growth — can utilities turn in earnest to the kind planning they need to be doing.

In a climate-aligned world, utilities would view the decoupling of power demand from GDP growth as cause for celebration, a sign of success. They would throw themselves into accelerating the trend.

Instead, utilities find themselves constantly surprised, caught flat-footed again and again by a trend they desperately want to believe is temporary. Unless we can collectively reorient utilities to pursue rather than fear current trends in electricity, they are headed for a grim reckoning.

Related News

• Electricity Forum News

• Energy Policy News

Smart solar inverters anchor DER communications and control, meeting IEEE 1547 and California Rule 21 for volt/VAR, reactive power, and ride-through, expanding hosting capacity and enabling grid services via secure real-time telemetry and commands.

Key Points

Smart solar inverters use IEEE 1547, volt/VAR and reactive power to stabilize circuits and integrate DER safely.

✅ Meet IEEE 1547, Rule 21 ride-through and volt/VAR functions

✅ Support reactive power to manage voltage and hosting capacity

✅ Enable utility communications, telemetry, and grid services

Advanced solar inverters could be one of the biggest distributed energy resource communications and control points out there someday. With California now requiring at least early-stage “smart” capabilities from all new solar projects — and a standards road map for next-stage efforts like real-time communications and active controls — this future now has a template.

There are still a lot of unanswered questions about how smart inverters will be used.

That was the consensus at Intersolar this week, where experts discussed the latest developments on the U.S. smart solar inverter front. After years of pilot projects, multi-stakeholder technical working groups, and slow and steady standards development, solar smart inverters are finally starting to hit the market en masse — even if it’s not yet clear just what will be done with them once they’re installed.

“From the technical perspective, the standards are firm,” Roger Salas, distribution engineering manager for Southern California Edison, said. In September of last year, his utility started requiring that all new solar installations come with “Phase 1" advanced inverter functionality, as defined under the state’s Rule 21.

Later this month, it’s going to start requiring “reactive power priority” for these inverters, and in February 2019, it’s going to start requiring that inverters support the communications capabilities described in “Phase 2,” as well as some more advanced “Phase 3” capabilities.

Increasing hosting capacity: A win-win for solar and utilities

Each of these phases aligns with a different value proposition for smart inverters. The first phase is largely preventative, aimed at solving the kinds of problems that have forced costly upgrades to how inverters operate in solar-heavy Germany and Hawaii.

The key standard in question in the U.S. is IEEE 1547, which sets the rules for what grid-connected DERs must do to stay safe, such as trip offline when the grid goes down, or avoid overloading local transformers or circuits.

The old version of the standard, however, had a lot of restrictive rules on tripping off during relatively common voltage excursions, which could cause real problems on circuits with a lot of solar dropping off all at once.

Phase 1 implementation of IEEE 1547 is all about removing these barriers, Salas said. “They need to be stable, they need to be connected, they need to be able to support the grid.”

This should increase hosting capacity on circuits that would have otherwise been constrained by these unwelcome behaviors, he said.

Reactive power: Where utility and solar imperatives collide

The old versions of IEEE 1547 also didn’t provide rules for how inverters could use one of their more flexible capabilities: the ability to inject or absorb reactive power to mitigate voltage fluctuations, including those that may be caused by the PV itself. The new version opens up this capability, which could allow for an active application of reactive power to further increase hosting capacity, as well as solve other grid edge challenges for utilities.

But where utilities see opportunity, the solar industry sees a threat. Every unit of reactive power comes at the cost of a reduction in the real power output of solar inverters — and almost every solar installation out there is paid based on the real power it produces.

“If you’re tasked to do things that rob your energy sales, that will reduce compensation,” noted Ric O'Connell, executive director of the Oakland, Calif.-based GridLab. “And a lot of systems have third-party owners — the Sunruns, the Teslas — with growing Powerwall fleets — that have contracts, performance guarantees, and they want to get those financed. It’s harder to do that if there’s uncertainty in the future with curtailment."

“That’s the bottleneck right now,” said Daniel Munoz-Alvarez, a GTM Research grid edge analyst. “As we develop markets on the retail end for ...volt/VAR control to be compensated on the grid edge and that is compensated back to the customer, then the customer will be more willing to allow the utility to control their smart inverters or to allow some automation.”

But first, he said, “We need some agreed-upon functions.”

The future: Communications, controls and DER integration

The next stage of smart inverter functionality is establishing communications with the utility. After that, utilities will be able use them to monitor key DER data, or issue disconnect and reconnect commands in emergencies, as well as actively orchestrate other utility devices and systems through emerging virtual power plant strategies across their service areas.

This last area is where Salas sees the greatest opportunity to putting mass-market smart solar inverters to use. “If you want to maximize the DERs and what they can do, the need information from the grid. And DERs provide operational and capability information to the utility.”

Inverter makers have already been forced by California to enable the latest IEEE 1547 capabilities into their existing controls systems — but they are clearly embracing the role that their devices can play on the grid as well. Microinverter maker Enphase leveraged its work in Hawaii into a grid services business, seeking to provide data to utilities where they already had a significant number of installations. While Enphase has since scaled back dramatically, its main rival SolarEdge has taken up the same challenge, launching its own grid services arm earlier this summer.

Inverters have been technically capable of doing most of these things for a long time. But utilities and regulators have been waiting for the completion of IEEE 1547 to move forward decisively. Patrick Dalton, senior engineer for Xcel Energy, said his company’s utilities in Colorado and Minnesota are still several years away from mandating advanced inverter capabilities and are waiting for California’s energy transition example in order to choose a path forward.

In the meantime, it’s possible that Xcel's front-of-meter volt/VAR optimization investments in Colorado, including grid edge devices from startup Varentec, could solve many of the issues that have been addressed by smart inverter efforts in Hawaii and California, he noted.

The broader landscape for rolling out smart inverters for solar installations hasn’t changed much, with Hawaii and California still out ahead of the pack, while territories such as Puerto Rico microgrid rules evolve to support resilience. Arizona is the next most important state, with a high penetration of distributed solar, a contentious policy climate surrounding its proper treatment in future years, and a big smart inverter pilot from utility Arizona Public Service to inform stakeholders.

All told, eight separate smart inverter pilots are underway across eight states at present, according to GTM Research: Pacific Gas & Electric and San Diego Gas & Electric in California; APS and Salt River Project in Arizona; Hawaiian Electric in Hawaii; Duke Energy in North Carolina; Con Edison in New York; and a three-state pilot funded by the Department of Energy’s SunShot program and led by the Electric Power Research Institute.

Related News

• Electricity Forum News

• Grid Technologies News

New York Solar Milestone accelerates renewable energy adoption, meeting targets early with 8,000 MW capacity powering 1.1 million homes, boosting green jobs, community solar, battery storage, and grid reliability under the CLCPA clean energy framework.

Key Points

It is New York achieving its solar goal early, powering 1.1M homes and advancing CLCPA renewable targets.

✅ 8,000 MW installed, enough to power about 1.1M homes

✅ CLCPA targets: 70 percent renewables by 2030

✅ Community solar, storage, and green jobs scaling statewide

In a remarkable display of commitment to renewable energy, New York has achieved its solar energy targets a year ahead of schedule, marking a significant milestone in the state's clean energy journey, and aligning with a national trend where renewables reached a record 28% in April nationwide. With the addition of solar power capacity capable of powering over a million homes, New York is not just setting the pace for solar adoption but is also establishing itself as a leader in the fight against climate change.

A Commitment to Renewable Energy

New York’s ambitious clean energy agenda is part of a broader effort to reduce greenhouse gas emissions and transition to sustainable energy sources. The state's goal, established under the Climate Leadership and Community Protection Act (CLCPA), aims for 70% of its electricity to come from renewable sources by 2030. With the recent advancements in solar energy, including contracts for 23 renewable projects totaling 2.3 GW, New York is well on its way to achieving that goal, demonstrating that aggressive policy frameworks can lead to tangible results.

The Numbers Speak for Themselves

As of now, New York has successfully installed more than 8,000 megawatts (MW) of solar energy capacity, supported by large-scale energy projects underway across New York that are expanding the grid. This achievement translates to enough electricity to power approximately 1.1 million homes, showcasing the state's investment in harnessing the sun’s power. The rapid expansion of solar installations reflects both increasing consumer interest and supportive policies that facilitate growth in the renewable energy sector.

Economic Benefits and Job Creation

The surge in solar energy capacity has not only environmental implications but also significant economic benefits. The solar industry in New York has become a substantial job creator, employing tens of thousands of individuals across various sectors. From manufacturing solar panels to installation and maintenance, the job opportunities associated with this growth are diverse and vital for local economies.

Moreover, as solar installations increase, the state benefits from reduced electricity costs over time. By investing in renewable energy, New York is paving the way for a more resilient and sustainable energy future, while simultaneously providing economic opportunities for its residents.

Community Engagement and Accessibility

New York's solar success is also tied to its efforts to engage communities and increase access to renewable energy. Initiatives such as community solar programs allow residents who may not have the means or space to install solar panels on their homes to benefit from solar energy. These programs provide an inclusive approach, ensuring that low-income households and underserved communities have access to clean energy solutions.

The state has also implemented various incentives to encourage solar adoption, including tax credits, rebates, and financing options. These efforts not only promote environmental sustainability but also aim to make solar energy more accessible to all New Yorkers, furthering the commitment to equity in the energy transition.

Innovations and Future Prospects

New York's solar achievements are complemented by ongoing innovations in technology and energy storage solutions. The integration of battery storage systems is becoming increasingly important, reflecting growth in solar and storage in the coming years, and allowing for the capture and storage of solar energy for use during non-sunny periods. This technology enhances grid reliability and supports the state’s goal of transitioning to a fully sustainable energy system.

Looking ahead, New York aims to continue this momentum. The state is exploring additional strategies to increase renewable energy capacity, including plans to investigate sites for offshore wind across its coastline, and other clean energy technologies. By diversifying its renewable energy portfolio, New York is positioning itself to meet and even exceed future energy demands while reducing its carbon footprint.

A Model for Other States

New York’s success story serves as a model for other states aiming to enhance their renewable energy capabilities, with its approval of the biggest offshore wind farm underscoring that leadership. The combination of strong policy frameworks, community engagement, and technological innovation can inspire similar initiatives nationwide. As more states look to address climate change, New York’s proactive approach can provide valuable insights into effective strategies for solar energy deployment.

New York’s achievement of its solar energy goals a year ahead of schedule is a testament to the state's unwavering commitment to sustainability and renewable energy. With the capacity to power over a million homes, this milestone not only signifies progress in clean energy adoption but also highlights the potential for economic growth and community engagement. As New York continues on its path toward a greener future, and stays on the road to 100% renewables by mid-century, it sets a powerful example for others to follow, proving that ambitious renewable energy goals can indeed become a reality.

Related News

• Electricity Forum News

• Renewable Energy News

EV Charging Infrastructure Incentives are expanding as utilities fund public chargers, Level 2 networks, DC fast charging, grid-managed off-peak programs, and equitable access across Ohio, New Jersey, and Florida to accelerate clean transportation.

Key Points

Utility-backed programs funding Level 2 and DC fast chargers, managing grid demand, and expanding EV equity.

✅ Incentives for Level 2 and DC fast public charging stations.

✅ Grid-friendly off-peak charging to balance demand.

✅ Equity targets place chargers in low-income communities.

Electric providers in Florida, Ohio and New Jersey recently announced plans to expand electric vehicle charging networks and infrastructure through various incentive programs that could add thousands of new public chargers in the next several years.

Elsewhere, utilities are advancing similar efforts, with Michigan EV programs proposing more than $20 million for charging infrastructure to accelerate adoption.

American Electric Power in Ohio will offer nearly $10 million in incentives toward the build out of 375 EV charging stations throughout the company's service territory, which largely includes Columbus.

Meanwhile, the Public Service Electric and Gas Company (PSE&G), an electric utility provider in New Jersey, has proposed a six-year plan to support the development of nearly 40,000 electric vehicle chargers across a wide range of customers and sectors, said Francis Sullivan, a spokesperson for PSE&G.

And Duke Energy in Florida is installing up to 530 EV charging stations across its service area, as part of its Park and Plug pilot program, which will be making the charging ports available in multifamily housing complexes, workplaces and other high traffic areas.

"We are bringing cleaner energy to Florida through 700 megawatts of new universal solar, and we are helping our customers to bring clean transportation to the state as well," Catherine Stempien, Duke Energy Florida president, said in a statement. "We are committed to providing smarter, cleaner energy alternatives for all our customers."

The project in Ohio is making incentive funding available to government organizations, multifamily housing developments and workplaces, covering from 50 percent to all of the costs. The plan, to be rolled out in the next four years, aims to incentivize the development of 300 level-two chargers and 75 "fast chargers" capable of charging a car's battery in minutes rather than hours.

"I think what's interesting about what we're seeing now in the industry is that electric vehicles and electric vehicle charging are expanding beyond California, and like other Pacific Coast states," said Scott Fisher, vice president of marketing at Greenlots, maker of car chargers and software. Greenlots has been selected as one of the companies to provide the chargers for the AEP project.

California has occupied the lion's share of the electric vehicle market, making up about 5 percent of the cars on the state's highways. The U.S. market sits at about 1.5 percent. However, indications show the EV boom may be set to take off as more models are being rolled out, and prices are making the electric cars more competitive with their gas-powered counterparts. The group Securing America's Future Energy (SAFE) announced the one-millionth electric vehicle is on course to be sold in the United States this month.

In a statement, Ben Prochazka, vice president of the Electrification Coalition, an EV advocacy group, called this "a major milestone and brings us one step closer to reducing our transportation system's dependence on oil. This is a direct result of the tireless efforts by communities and advocates throughout the 'EV ecosystem.'"

In New Jersey, PSE&G's efforts -- which are part of the company's proposed Clean Energy Future program -- will not only focus on building out the charging infrastructure, but structure car recharging to control charging and encourage residents to charge their cars during off-peak times.

"For now, with a modest number of charging stations in the market, it's not a huge problem. But over time, as you're putting in many thousands of these stations, what you want to make sure is that those stations are operating in sync with state power grids, where you don't have people all charging at the same time at like 5 p.m. on a hot summer day," said Fisher.

PSE&G also plans to offer incentives to encourage the development of level-two chargers and DC fast-chargers, as well as "provide grants and incentives for 100 electric school buses and EV charging infrastructure at school districts in PSE&G's service territory," said Sullivan.

"PSE&G will also help fund electrification projects at customer locations such as ports, airports and transit facilities," Sullivan added, via email.

Utilities and transportation planners are also keeping the concept of equity in mind -- to ensure EVs are adopted by more than just the Tesla owner -- and will also focus on placing infrastructure in low-income areas.

"Ten percent of the stations will be in low income areas, defined by census blocks," said Scott Blake, a communications consultant at AEP in Columbus.

Duke Energy also announced 10 percent of the chargers it is installing in Florida will be in "income-qualified communities," according to a company press release.

Related News

• Electricity Forum News

• EV Infrastructure News

Substation Automation Services help electric utilities modernize through integration, EPC engineering, protective relaying, communications and security, with CAPEX and OPEX insights and a growing global market for third-party providers worldwide rapidly.

Key Points

Engineering, integration, and EPC support modernizing utility substations with protection, control, and secure communications

✅ Third-party engineering, EPC, and OEM services for utilities

✅ Integration of multi-vendor devices and platforms

✅ Focus on relays, communications, security, CAPEX-OPEX

The Newton-Evans Research Company has released additional findings from its newly published four volume research series entitled: The World Market for Substation Automation and Integration Programs in Electric Utilities: 2017-2020.

This report series has observed four major types of professional third-party service providers that assist electric utilities with substation modernization. These firms range from (1) smaller local or regional engineering consultancies with substation engineering resources to (2) major global participants in EPC work, to (3) the engineering services units of manufacturers of substation devices and platforms, to (4) substation integration specialist firms that source and integrate devices from multiple manufacturers for utility and industrial clients, and often provide substation automation training to support implementation.

2016 Global Share Estimates for Professional Services Providers of Electric Power Substation Integration and Automation Activities

The North American market report (Volume One) includes survey participation from 65 large and midsize US and Canadian electric utilities while the international market report (Volume Two) includes survey participation from 32 unique utilities in 20 countries around the world. In addition to the baseline survey questions, the report includes 2017 substation survey findings on four additional specific topics: communications issues; protective relaying trends; security topics and the CAPEX/OPEX outlook for substation modernization.

Volume Three is the detailed market synopsis and global outlook for substation automation and integration:

Section One of the report provides top-level views of substation modernization, automation & integration and the emerging digital grid landscape, and a narrative market synopsis.

Section Two provides mid-year 2017 estimates of population, electric power generation capacity, transmission substations, including the 2 GW UK substation commissioning as a benchmark, and primary MV distribution substations for more than 120 countries in eight world regions. Information on substation related expenditures and spending for protection and control for each major world region and several major countries is also provided.

Section Three provides information on NGO funding resources for substation modernization among developing nations.

Section Four of this report volume includes North American market share estimates for 2016 shipments of many substation automation-related devices and equipment, such as trends in the digital relay market for utilities.

The Supplier Profiles report (Volume Four) provides descriptive information on the substation modernization offerings of more than 90 product and services companies, covering leading players in the transformer market as well.

Related News

• Electricity Forum News

• Grid Technologies News

Russian Cyberattacks on U.S. Critical Infrastructure target energy grids, nuclear plants, water systems, and aviation, DHS and FBI warn, using spear phishing, malware, and ICS/SCADA intrusion to gain footholds for potential sabotage and disruption.

Key Points

State-backed hacks targeting U.S. energy, nuclear, water and aviation via phishing and ICS access for sabotage.

✅ DHS and FBI detail multi-stage intrusion since 2016

✅ Targets include energy, nuclear, water, aviation, manufacturing

✅ TTPs: spear phishing, lateral movement, ICS reconnaissance

Russia is attacking the U.S. energy grid, with reported power plant breaches unfolding alongside attacks on nuclear facilities, water processing plants, aviation systems, and other critical infrastructure that millions of Americans rely on, according to a new joint analysis by the FBI and the Department of Homeland Security.

In an unprecedented alert, the US Department of Homeland Security (DHS) and FBI have warned of persistent attacks by Russian government hackers on critical US government sectors, including energy, nuclear, commercial facilities, water, aviation and manufacturing.

The alert details numerous attempts extending back to March 2016 when Russian cyber operatives targeted US government and infrastructure.

The DHS and FBI said: “DHS and FBI characterise this activity as a multi-stage intrusion campaign by Russian government cyber-actors who targeted small commercial facilities’ networks, where they staged malware, conducted spear phishing and gained remote access into energy sector networks.

“After obtaining access, the Russian government cyber-actors conducted network reconnaissance, moved laterally and collected information pertaining to industrial control systems.”

The Trump administration has accused Russia of engineering a series of cyberattacks that targeted American and European nuclear power plants and water and electric systems, and could have sabotaged or shut power plants off at will.

#google#

United States officials and private security firms saw the attacks as a signal by Moscow that it could disrupt the West’s critical facilities in the event of a conflict.

They said the strikes accelerated in late 2015, at the same time the Russian interference in the American election was underway. The attackers had compromised some operators in North America and Europe by spring 2017, after President Trump was inaugurated.

In the following months, according to the DHS/FBI report, Russian hackers made their way to machines with access to utility control rooms and critical control systems at power plants that were not identified. The hackers never went so far as to sabotage or shut down the computer systems that guide the operations of the plants.

Still, new computer screenshots released by the Department of Homeland Security have made clear that Russian state hackers had the foothold they would have needed to manipulate or shut down power plants.

“We now have evidence they’re sitting on the machines, connected to industrial control infrastructure, that allow them to effectively turn the power off or effect sabotage,” said Eric Chien, a security technology director at Symantec, a digital security firm.

“From what we can see, they were there. They have the ability to shut the power off. All that’s missing is some political motivation,” Mr. Chien said.

American intelligence agencies were aware of the attacks for the past year and a half, and the Department of Homeland Security and the F.B.I. first issued urgent warnings to utility companies in June, 2017. Both DHS/FBI have now offered new details as the Trump administration imposed sanctions against Russian individuals and organizations it accused of election meddling and “malicious cyberattacks.”

It was the first time the administration officially named Russia as the perpetrator of the assaults. And it marked the third time in recent months that the White House, departing from its usual reluctance to publicly reveal intelligence, blamed foreign government forces for attacks on infrastructure in the United States.

In December, the White House said North Korea had carried out the so-called WannaCry attack that in May paralyzed the British health system and placed ransomware in computers in schools, businesses and homes across the world. Last month, it accused Russia of being behind the NotPetya attack against Ukraine last June, the largest in a series of cyberattacks on Ukraine to date, paralyzing the country’s government agencies and financial systems.

But the penalties have been light. So far, President Trump has said little to nothing about the Russian role in those attacks.

The groups that conducted the energy attacks, which are linked to Russian intelligence agencies, appear to be different from the two hacking groups that were involved in the election interference.

That would suggest that at least three separate Russian cyberoperations were underway simultaneously. One focused on stealing documents from the Democratic National Committee and other political groups. Another, by a St. Petersburg “troll farm” known as the Internet Research Agency, used social media to sow discord and division. A third effort sought to burrow into the infrastructure of American and European nations.

For years, American intelligence officials tracked a number of Russian state-sponsored hacking units as they successfully penetrated the computer networks of critical infrastructure operators across North America and Europe, including in Ukraine.

Some of the units worked inside Russia’s Federal Security Service, the K.G.B. successor known by its Russian acronym, F.S.B.; others were embedded in the Russian military intelligence agency, known as the G.R.U. Still others were made up of Russian contractors working at the behest of Moscow.

Russian cyberattacks surged last year, starting three months after Mr. Trump took office.

American officials and private cybersecurity experts uncovered a series of Russian attacks aimed at the energy, water and aviation sectors and critical manufacturing, including nuclear plants, in the United States and Europe. In its urgent report in June, the Department of Homeland Security and the F.B.I. notified operators about the attacks but stopped short of identifying Russia as the culprit.

By then, Russian spies had compromised the business networks of several American energy, water and nuclear plants, mapping out their corporate structures and computer networks.

They included that of the Wolf Creek Nuclear Operating Corporation, which runs a nuclear plant near Burlington, Kan. But in that case, and those of other nuclear operators, Russian hackers had not leapt from the company’s business networks into the nuclear plant controls.

Forensic analysis suggested that Russian spies were looking for inroads — although it was not clear whether the goal was to conduct espionage or sabotage, or to trigger an explosion of some kind.

In a report made public in October, Symantec noted that a Russian hacking unit “appears to be interested in both learning how energy facilities operate and also gaining access to operational systems themselves, to the extent that the group now potentially has the ability to sabotage or gain control of these systems should it decide to do so.”

The United States sometimes does the same thing. It bored deeply into Iran’s infrastructure before the 2015 nuclear accord, placing digital “implants” in systems that would enable it to bring down power grids, command-and-control systems and other infrastructure in case a conflict broke out. The operation was code-named “Nitro Zeus,” and its revelation made clear that getting into the critical infrastructure of adversaries is now a standard element of preparing for possible conflict.

Reconstructed screenshot fragments of a Human Machine Interface that the threat actors accessed, according to DHS

Sanctions Announced

The US treasury department has imposed sanctions on 19 Russian people and five groups, including Moscow’s intelligence services, for meddling in the US 2016 presidential election and other malicious cyberattacks.

Russia, for its part, has vowed to retaliate against the new sanctions.

The new sanctions focus on five Russian groups, including the Russian Federal Security Service, the country’s military intelligence apparatus, and the digital propaganda outfit called the Internet Research Agency, as well as 19 people, some of them named in the indictment related to election meddling released by special counsel Robert Mueller last month.

In announcing the sanctions, which will generally ban U.S. people and financial institutions from doing business with those people and groups, the Treasury Department pointed to alleged Russian election meddling, involvement in the infrastructure hacks, and the NotPetya malware, which the Treasury Department called “the most destructive and costly cyberattack in history.”

The new sanctions come amid ongoing criticism of the Trump administration’s reluctance to punish Russia for cyber and election meddling. Sen. Mark Warner (D-Va.) said that, ahead of the 2018 mid-term elections, the administration’s decision was long overdue but not enough. “Nearly all of the entities and individuals who were sanctioned today were either previously under sanction during the Obama Administration, or had already been charged with federal crimes by the Special Counsel,” Warner said.

Warning: The Russians Are Coming

In an updated warning to utility companies, DHS/FBI officials included a screenshot taken by Russian operatives that proved they could now gain access to their victims’ critical controls, prompting a renewed focus on protecting the U.S. power grid among operators.

American officials and security firms, including Symantec and CrowdStrike, believe that Russian attacks on the Ukrainian power grid in 2015 and 2016 that left more than 200,000 citizens there in the dark are an ominous sign of what the Russian cyberstrikes may portend in the United States and Europe in the event of escalating hostilities.

Private security firms have tracked the Russian government assaults on Western power and energy operators — conducted alternately by groups under the names Dragonfly campaigns alongside Energetic Bear and Berserk Bear — since 2011, when they first started targeting defense and aviation companies in the United States and Canada.

By 2013, researchers had tied the Russian hackers to hundreds of attacks on the U.S. power grid and oil and gas pipeline operators in the United States and Europe. Initially, the strikes appeared to be motivated by industrial espionage — a natural conclusion at the time, researchers said, given the importance of Russia’s oil and gas industry.

But by December 2015, the Russian hacks had taken an aggressive turn. The attacks were no longer aimed at intelligence gathering, but at potentially sabotaging or shutting down plant operations.

At Symantec, researchers discovered that Russian hackers had begun taking screenshots of the machinery used in energy and nuclear plants, and stealing detailed descriptions of how they operated — suggesting they were conducting reconnaissance for a future attack.

Eventhough the US government enacted sanctions, cybersecurity experts are still questioning where the Russian attacks could lead, given that the United States was sure to respond in kind.

“Russia certainly has the technical capability to do damage, as it demonstrated in the Ukraine,” said Eric Cornelius, a cybersecurity expert at Cylance, a private security firm, who previously assessed critical infrastructure threats for the Department of Homeland Security during the Obama administration.

“It is unclear what their perceived benefit would be from causing damage on U.S. soil, especially given the retaliation it would provoke,” Mr. Cornelius said.

Though a major step toward deterrence, publicly naming countries accused of cyberattacks still is unlikely to shame them into stopping. The United States is struggling to come up with proportionate responses to the wide variety of cyberespionage, vandalism and outright attacks.

Lt. Gen. Paul Nakasone, who has been nominated as director of the National Security Agency and commander of United States Cyber Command, the military’s cyberunit, said during his recent Senate confirmation hearing, that countries attacking the United States so far have little to worry about.

“I would say right now they do not think much will happen to them,” General Nakasone said. He later added, “They don’t fear us.”

Related News

• Electricity Forum News

• Grid Technologies News