Raft River construction completed

US Power Grid Cyberattacks target utilities and nuclear plants, probing SCADA, ICS, and business networks at sites like Wolf Creek; suspected Russian actors, malware, and spear-phishing trigger DHS and FBI alerts on critical infrastructure resilience.

Key Points

Intrusions on energy networks probing ICS and SCADA, seeking persistence and elevating risks to critical infrastructure.

✅ Wolf Creek nuclear plant targeted; no operational systems breached

✅ Attackers leveraged stolen credentials, malware, and spear-phishing

✅ DHS and FBI issued alerts; utilities enhance cyber resilience

Hackers working for a foreign government recently breached at least a dozen US power plants, including the Wolf Creek nuclear facility in Kansas, according to current and former US officials, sparking concerns the attackers were searching for vulnerabilities in the electrical grid.

The rivals could be positioning themselves to eventually disrupt the nation’s power supply, warned the officials, who noted that a general alert, prompting a renewed focus on protecting the U.S. power grid, was distributed to utilities a week ago. Adding to those concerns, hackers recently infiltrated an unidentified company that makes control systems for equipment used in the power industry, an attack that officials believe may be related.

The chief suspect is Russia, according to three people familiar with the continuing effort to eject the hackers from the computer networks. One of those networks belongs to an ageing nuclear generating facility known as Wolf Creek -- owned by Westar Energy Inc, Great Plains Energy Inc, and Kansas Electric Power Cooperative Inc -- on a lake shore near Burlington, Kansas.

The possibility of a Russia connection is particularly worrying, former and current official s say, because Russian hackers have previously taken down parts of the electrical grid in Ukraine and appear to be testing increasingly advanced tools, including cyber weapons to disrupt power grids, to disrupt power supplies.

The hacks come as international tensions have flared over US intelligence agencies’ conclusion that Russia tried to influence the 2016 presidential election, and amid U.S. government condemnation of Russian power-grid hacking in recent advisories. The US, which has several continuing investigations into Russia’s activities, is known to possess digital weapons capable of disrupting the electricity grids of rival nations.

“We don’t pay attention to such anonymous fakes,” Kremlin spokesman Dmitry Peskov said, in response to a request to comment on alleged Russian involvement.

It was unclear whether President Donald Trump was planning to address the cyber attacks at his meeting on Friday with Russian President Vladimir Putin. In an earlier speech in Warsaw, Trump called out Russia’s “destabilising activities” and urged the country to join “the community of responsible nations.”

The Department of Homeland Security and Federal Bureau of Investigation said they are aware of a potential intrusion in the energy sector. The alert issued to utilities cited activities by hackers since May.

“There is no indication of a threat to public safety, as any potential impact appears to be limited to administrative and business networks,” the government agencies said in a joint statement.

The Department of Energy also said the impact appears limited to administrative and business networks and said it was working with utilities and grid operators to enhance security and resilience.

“Regardless of whether malicious actors attempt to exploit business networks or operational systems, we take any reports of malicious cyber activity potentially targeting our nation’s energy infrastructure seriously and respond accordingly,” the department said in an emailed statement.

Representatives of the National Security Council, the Director of National Intelligence and the Nuclear Regulatory Commission declined to comment. While Bloomberg News was waiting for responses from the government, the New York Times reported that hacks were targeting nuclear power stations.

The North American Electric Reliability Corp, a nonprofit that works to ensure the reliability of the continent’s power system, said it was aware of the incident and was exchanging information with the industry through a secure portal.

“At this time, there has been no bulk power system impact in North America,” the corporation said in an emailed statement.

In addition, the operational controls at Wolf Creek were not pierced, according to government officials, even as attackers accessed utility control rooms elsewhere in the U.S., according to separate reports. “There was absolutely no operational impact to Wolf Creek,” Jenny Hageman, a spokeswoman for the nuclear plant, said in a statement to Bloomberg News.

“The reason that is true is because the operational computer systems are completely separate from the corporate network.”

Determining who is behind an attack can be tricky. Government officials look at the sophistication of the tools, among other key markers, when gauging whether a foreign government is sponsoring cyber activities.

Several private security firms, including Symantec researchers, are studying data on the attacks, but none has linked the work to a particular hacking team or country.

“We don’t tie this to any known group at this point,” said Sean McBride, a lead analyst for FireEye Inc, a global cyber security firm. “It’s not to say it’s not related, but we don’t have the evidence at this point.”

US intelligence officials have long been concerned about the security of the country’s electrical grid. The recent attack, striking almost simultaneously at multiple locations, is testing the government’s ability to coordinate an effective response among several private utilities, state and local officials, and industry regulators.

Specialised teams from Homeland Security and the FBI have been scrambled to help extricate the hackers from the power stations, in some cases without informing local and state officials. Meanwhile, the US National Security Agency is working to confirm the identity of the hackers, who are said to be using computer servers in Germany, Italy, Malaysia and Turkey to cover their tracks.

Many of the power plants are conventional, but the targeting of a nuclear facility adds to the pressure. While the core of a nuclear generator is heavily protected, a sudden shutdown of the turbine can trigger safety systems. These safety devices are designed to disperse excess heat while the nuclear reaction is halted, but the safety systems themselves may be vulnerable to attack.

Homeland Security and the FBI sent out a general warning about the cyber attack to utilities and related parties on June 28, though it contained few details or the number of plants affected. The government said it was most concerned about the “persistence” of the attacks on choke points of the US power supply. That language suggests hackers are trying to establish backdoors on the plants’ systems for later use, according to a former senior DHS official who asked not to be identified.

Those backdoors can be used to insert software specifically designed to penetrate a facility’s operational controls and disrupt critical systems, according to Galina Antova, co-founder of Claroty, a New York firm that specialises in securing industrial control systems.

“We’re moving to a point where a major attack like this is very, very possible,” Antova said. “Once you’re into the control systems -- and you can get into the control systems by hacking into the plant’s regular computer network -- then the basic security mechanisms you’d expect are simply not there.”

The situation is a little different at nuclear facilities. Backup power supplies and other safeguards at nuclear sites are meant to ensure that “you can’t really cause a nuclear plant to melt down just by taking out the secondary systems that are connected to the grid,” Edwin Lyman, a nuclear expert with the Union of Concerned Scientists, said in a phone interview.

The operating systems at nuclear plants also tend to be legacy controls built decades ago and don’t have digital control systems that can be exploited by hackers. Wolf Creek, for example, began operations in 1985. “They’re relatively impervious to that kind of attack,” Lyman said.

The alert sent out last week inadvertently identified Wolf Creek as one of the victims of the attack. An analysis of one of the tools used by the hackers had the stolen credentials of a plant employee, a senior engineer. A US official acknowledged the error was not caught until after the alert was distributed.

According to a security researcher who has seen the report, the malware that activated the engineer’s username and password was designed to be used once the hackers were already inside the plant’s computer systems.

The tool tries to connect to non-public computers, and may have been intended to identify systems related to Wolf Creek’s generation plant, a part of the facility typically more modern than the nuclear reactor control room, according to a security expert who asked to note be identified because the alert is not public.

Even if there is no indication that the hackers gained access to those control systems, the design of the malware suggests they may have at least been looking for ways to do so, the expert said.

Stan Luke, the mayor of Burlington, the largest community near Wolf Creek, which is surrounded by corn fields and cattle pastures, said he learned about a cyber threat at the plant only recently, and then only through golfing buddies.

With a population of just 2,700, Burlington boasts a community pool with three water slides and a high school football stadium that would be the envy of any junior college. Luke said those amenities lead back to the tax dollars poured into the community by Wolf Creek, Coffey County’s largest employer with some 1,000 workers, 600 of whom live in the county.

E&E News first reported on digital attacks targeting US nuclear plants, adding it was code-named Nuclear 17. A senior US official told Bloomberg that there was a bigger breach of conventional plants, which could affect multiple regions.

Industry experts and US officials say the attack is being taken seriously, in part because of recent events in Ukraine. Antova said that the Ukrainian power grid has been disrupted at least twice, first in 2015, and then in a more automated attack last year, suggesting the hackers are testing methods.

Scott Aaronson, executive director for security and business continuity at the Edison Electric Institute, an industry trade group, said utilities, grid operators and federal officials were already dissecting the attack on Ukraine’s electric sector to apply lessons in North America before the US government issued the latest warning to “energy and critical manufacturing sectors”. The current threat is unrelated to recently publicised ransomware incidents or the CrashOverride malware, Mr Aaronson said in an emailed statement.

Neither attack in Ukraine caused long-term damage. But with each escalation, the hackers may be gauging the world’s willingness to push back.

“If you think about a typical war, some of the acts that have been taken against critical infrastructure in Ukraine and even in the US, those would be considered crossing red lines,” Antova said.

Related News

• Electricity Forum News

• Grid Technologies News

Germany 2030 Electricity Demand Forecast projects 658 TWh, driven by e-mobility, heat pumps, and green hydrogen. BMWi and BDEW see higher renewables, onshore wind, photovoltaics, and faster grid expansion to meet climate targets.

Key Points

A BMWi outlook to 658 TWh by 2030, led by e-mobility, plus demand from heat pumps, green hydrogen, and industry.

✅ Transport adds ~70 TWh; cars take 44 TWh by 2030

✅ Heat pumps add 35 TWh; green hydrogen needs ~20 TWh

✅ BDEW urges 70% renewables and faster grid expansion

Gross electricity consumption in Germany will increase from 595 terawatt hours (TWh) in 2018 to 658 TWh in 2030. That is an increase of eleven percent. This emerges from the detailed analysis of the development of electricity demand that the Federal Ministry of Economics (BMWi) published on Tuesday. The main driver of the increase is therefore the transport sector. According to the paper, increased electric mobility in particular contributes 68 TWh to the increase, in line with rising EV power demand trends across markets. Around 44 TWh of this should be for cars, 7 TWh for light commercial vehicles and 17 TWh for heavy trucks. If the electricity consumption for buses and two-wheelers is added, this results in electricity consumption for e-mobility of around 70 TWh.

The number of purely battery-powered vehicles is increasing according to the investigation by the BMWi to 16 million by 2030, reflecting the global electric car market momentum, plus 2.2 million plug-in hybrids. In 2018 there were only around 100,000 electric cars, the associated electricity consumption was an estimated 0.3 TWh, and plug-in mileage in 2021 highlighted the rapid uptake elsewhere. For heat pumps, the researchers predict an increase in demand by 35 TWh to around 42 TWh. They estimate the electricity consumption for the production of around 12.5 TWh of green hydrogen in 2030 to be just under 20 TWh. The demand at battery factories and data centers will increase by 13 TWh compared to 2018 by this point in time. In the data centers, there is no higher consumption due to more efficient hardware despite advancing digitization.

The updated figures are based on ongoing scenario calculations by Prognos, in which the market researchers took into account the goals of the Climate Protection Act for 2030 and the wider European electrification push for decarbonization. In the preliminary estimate presented by Federal Economics Minister Peter Altmaier (CDU) in July, a range of 645 to 665 TWh was determined for gross electricity consumption in 2030. Previously, Altmaier officially said that electricity demand in this country would remain constant for the next ten years. In June, Chancellor Angela Merkel (CDU) called for an expanded forecast that would have to include trends in e-mobility adoption within a decade and the Internet of Things, for example.

Higher electricity demand
The Federal Association of Energy and Water Management (BDEW) is assuming an even higher electricity demand of around 700 TWh in nine years. In any case, a higher share of renewable energies in electricity generation of 70 percent by 2030 is necessary in order to be able to achieve the climate targets and to address electricity price volatility risks. The expansion paths urgently need to be increased and obstacles removed. This could mean around 100 gigawatts (GW) for onshore wind turbines, 11 GW for biomass and at least 150 GW for photovoltaics by 2030. Faster network expansion and renovation will also become even more urgent, as electric cars challenge grids in many regions.
 

Related News

• Electricity Forum News

• EV Infrastructure News

FERC DER Aggregation advances debates over distributed energy resources as Congress presses action on Order 841, grid resilience, and wholesale market access, including rooftop solar, storage, and virtual power plant participation across PJM and ISO-NE.

Key Points

FERC DER Aggregation enables grouped distributed resources to join wholesale markets, providing capacity and flexibility.

✅ Opens wholesale market access for aggregated DER portfolios

✅ Aligns with Order 841, storage, and grid resilience goals

✅ Raises jurisdictional questions between FERC and state regulators

The Monday letter from Congressional Democrats illustrates growing frustration in Washington over the lack of FERC action on multiple power sector issues, including the aging U.S. grid and related challenges.

Last May, after the FERC technical conference, 16 Democratic Senators wrote to then-Chairman Kevin McIntyre urging him to develop guidance for grid operators on aggregated DERs.

In July, McIntyre responded, saying that FERC was "diligently reviewing the record," but the commission has taken no action since.

Since then, "DER adoption and renewable energy aggregation have continued to grow," House and Senate lawmakers wrote in their identical Monday letters, "driven not only by state and federal policies, but consumer interest in choosing cost-competitive technologies such as rooftop solar, smart thermostats and customer-sited energy generation and storage, reflecting key utility trends in the sector."

The lawmakers wrote they were "encouraged" by FERC Chairman Neil Chatterjee's comments in June 2018, writing that he "specifically cited the role DERs will play in our continued grid transition."

In that speech at the S&P Global Platts 2018 Transmission Planning and Development Conference, Chatterjee noted "growing interest" in non-transmission alternatives, including "DERs and storage."

"How the Commission treats filings associated with those first-of-kind projects could prove an important factor in investors’ assessments of whether similar non-traditional projects are bankable or not — and more broadly signal whether FERC is open to innovation in the transmission sector,” he said.

In addition to the DER order and rehearing decision on Order 841, FERC has multiple other power sector initiatives that have not seen official action in months, even as major changes to electricity pricing are debated by stakeholders.

The highest profile is its open proceeding on grid resilience, set up last January after FERC rejected a coal and nuclear bailout proposal from the Department of Energy. In October, the CEO of the PJM Interconnection, the nation’s largest wholesale power market, urged FERC to issue a final order in the docket, calling for "leadership" from the commission.

Chatterjee, however, has not indicated when FERC could decide on the case. In December, Commissioner Rich Glick told a Washington audience he is "not entirely sure where the chairman wants to go with that proceeding yet."

Outside of resilience, FERC also has open reviews of both its pipeline certificate policy and implementation of the Public Utilities Regulatory Policy Act, a key law supporting renewable energy. McIntrye set those reviews in motion during his tenure as chairman, but after his death in January the timing of both remains unclear.

In recent months, Chatterjee has also delayed FERC votes on major export facilities for liquefied natural gas and a political spending case involving PJM after impasses between Republicans and Democrats on FERC.

Two members from each party currently sit on the commission. That allows Democrats to deadlock commission votes on natural gas facilities and other issues — a partisan divide on display this week when they clashed with the chairman over offshore wind.

As the commission considers final guidance on DERs, the boundaries of federal jurisdiction are likely to be a key issue. At the technical conference, states from the Midcontinent ISO argued FERC should allow them to choose whether to let aggregated DERs participate in retail and wholesale markets. Other states argued the value proposition of distributed resources may rely on that sort of dual participation.

Despite the lack of action from FERC, some grid operators are moving forward with aggregated distributed resources in New England market reform efforts and elsewhere, demonstrating momentum. Last week, a residential solar-plus-storage aggregation cleared the ISO-NE capacity auction for the first time, committing to provide 20 MW of capacity beginning in 2022.

On the Senate side, Sens. Sheldon Whitehouse, R.I., and Ed Markey, Mass., led the letter to FERC. In the House, Reps. Peter Welch, Vt., and Mike Levin, Calif., led the signatories.

Related News

• Electricity Forum News

• Energy Policy News

Spain Wind Turbine Factory Shutdowns disrupt manufacturing as Vestas, Siemens Gamesa, and Nordex halt Spanish plants amid COVID-19 lockdowns, straining supply chains and renewables projects across Europe, with partial operations and maintenance continuing.

Key Points

COVID-19 lockdowns pause Spanish wind factories by Vestas, Siemens Gamesa, and Nordex, disrupting supply chains.

✅ Vestas, Siemens Gamesa, Nordex halt Spanish manufacturing

✅ Service and maintenance continue under safety protocols

✅ Supply chain and project timelines face delays in Europe

Europe’s largest wind turbine makers on Wednesday said they had shut down more factories in Spain, a major hub for the continent’s renewables sector, in response to an almost total lockdown in the country to contain the coronavirus outbreak as the Covid-19 crisis disrupts the sector.

Denmark’s Vestas, the world No.1, has suspended production at its two Spanish plants, a spokesman told Reuters, adding that its service and maintenance business was still working. Vestas has also paused manufacturing and construction in India, which is under a nationwide lockdown too, he said, and similar disruptions could stall U.S. utility solar projects this year.

Top rival Siemens Gamesa, known for its offshore wind turbine lineup, suspended production at six Spanish factories on Monday, bringing total closures there to eight, a spokeswoman said.

Four components factories are still partially up and running, at Reinosa on the north coast, Cuenca near Madrid, Mungia and Siguiero, she added.

Germany’s Nordex, the No.8 globally which is 36% owned by Spain’s Acciona, has now shuttered all of its production in Spain, even as new projects like Enel’s 90MW build move ahead, including two nacelle casing factories in Barasoain and Vall d’Uixo, as well as a rotor blade site in Lumbier.

“Production is no longer active,” a spokeswoman said in response to a Reuters query.

The new closures take the number of idled wind power factories on the continent to 19, all in Spain and Italy, the European countries worst hit by the pandemic, with investments at risk across the sector.

Spain is second only to Italy in terms of numbers of coronavirus-related fatalities and restrictions have become even stricter in the country’s third week of lockdown at a time when renewables surpassed fossil fuels for the first time in Europe.

“Some factories have temporarily paused activity as a precautionary step to strengthen sanitary measures within the sites and guarantee full compliance with government recommendations,” industry association WindEurope said, noting that wind power grows in some markets despite the pandemic.

Related News

• Electricity Forum News

• Renewable Energy News

Montreal Power Outage linked to Hydro-Que9bec infrastructure after an underground explosion and manhole fire in Rosemont–La Petite–Patrie, disrupting the STM Blue Line and forcing strategic, cold-weather grid restoration on Be9langer Street.

Key Points

Outage from an underground blast and manhole fire disrupted STM service; Hydro-Que9bec restored the grid in cold weather.

✅ Peak impact: 41,000 customers; 10,981 still without power by 7:00 p.m.

✅ STM Blue Line restored after afternoon shutdown; Be9langer Street reopened.

✅ Hydro-Que9bec pacing restoration to avoid grid overload in cold weather.

Hydro-Québec says a power outage affecting Montreal is connected to an underground explosion and a fire in a manhole in Rosemont—La Petite–Patrie. 

The fire started in underground pipes belonging to Hydro-Québec on Bélanger Street between Boyer and Saint-André streets, according to Montreal firefighters, who arrived on the scene at 12:18 p.m.

The electricity had to be cut so that firefighters could get into the manhole where the equipment was located.

At the peak of the shutdown, nearly 41,000 customers were without power across Montreal.  As of 7:00 p.m., 10,981 clients still had no power.

In similar storms, Toronto power outages have persisted for hundreds, underscoring restoration challenges.

Hydro-Québec spokesperson Louis-Olivier Batty said the utility is being strategic about how it restores power across the grid. 

Because of the cold, and patterns seen during freezing rain outages, it anticipates that people will crank up the heat as soon as they get their electricity back, and that could trigger an overload somewhere else on the network, Batty said.

The Metro's Blue line was down much of the afternoon, but the STM announced the line was back up and running just after 4:30 p.m.

Bélanger Street was blocked to traffic much of the afternoon, however, it has now been reopened.

Batty said once the smoke clears, Hydro-Québec workers will take a look at the equipment to see what failed. 

Related News

• Electricity Forum News

• Utility Operations News

Hourly Electricity Emissions Tracking maps grid balancing areas, embodied emissions, and imports/exports, revealing carbon intensity shifts across PJM, ERCOT, and California ISO, and clarifying renewable energy versus coal impacts on health and climate.

Key Points

An hourly method tracing generation, flows, and embodied emissions to quantify carbon intensity across US balancing areas.

✅ Hourly traces of imports/exports and generation mix

✅ Consumption-based carbon intensity by balancing area

✅ Policy insights for renewables, coal, health costs

In the United States, electricity generation accounts for nearly 30% of our carbon emissions. Some states have responded to that by setting aggressive renewable energy standards; others are hoping to see coal propped up even as its economics get worse. Complicating matters further is the fact that many regional grids are integrated, and as America goes electric the stakes grow, meaning power generated in one location may be exported and used in a different state entirely.

Tracking these electricity exports is critical for understanding how to lower our national carbon emissions. In addition, power from a dirty source like coal has health and environment impacts where it's produced, and the costs of these aren't always paid by the parties using the electricity. Unfortunately, getting reliable figures on how electricity is produced and where it's used is challenging, even for consumers trying to find where their electricity comes from in the first place, leaving some of the best estimates with a time resolution of only a month.

Now, three Stanford researchers—Jacques A. de Chalendar, John Taggart, and Sally M. Benson—have greatly improved on that standard, and they have managed to track power generation and use on an hourly basis. The researchers found that, of the 66 grid balancing areas within the United States, only three have carbon emissions equivalent to our national average, and they have found that imports and exports of electricity have both seasonal and daily changes. de Chalendar et al. discovered that the net results can be substantial, with imported electricity increasing California's emissions/power by 20%.

Hour by hour
To figure out the US energy trading landscape, the researchers obtained 2016 data for grid features called balancing areas. The continental US has 66 of these, providing much better spatial resolution on the data than the larger grid subdivisions. This doesn't cover everything—several balancing areas in Canada and Mexico are tied in to the US grid—and some of these balancing areas are much larger than others. The PJM grid, serving Pennsylvania, New Jersey, and Maryland, for example, is more than twice as large as Texas' ERCOT, in a state that produces and consumes the most electricity in the US.

Despite these limitations, it's possible to get hourly figures on how much electricity was generated, what was used to produce it, and whether it was used locally or exported to another balancing area. Information on the generating sources allowed the researchers to attach an emissions figure to each unit of electricity produced. Coal, for example, produces double the emissions of natural gas, which in turn produces more than an order of magnitude more carbon dioxide than the manufacturing of solar, wind, or hydro facilities. These figures were turned into what the authors call "embodied emissions" that can be traced to where they're eventually used.

Similar figures were also generated for sulfur dioxide and nitrogen oxides. Released by the burning of fossil fuels, these can both influence the global climate and produce local health problems.

Huge variation
The results were striking. "The consumption-based carbon intensity of electricity varies by almost an order of magnitude across the different regions in the US electricity system," the authors conclude. The low is the Bonneville Power grid region, which is largely supplied by hydropower; it has typical emissions below 100kg of carbon dioxide per megawatt-hour. The highest emissions come in the Ohio Valley Electric region, where emissions clear 900kg/MW-hr. Only three regional grids match the overall grid emissions intensity, although that includes the very large PJM (where capacity auction payouts recently fell), ERCOT, and Southern Co balancing areas.

Most of the low-emissions power that's exported comes from the Pacific Northwest's abundant hydropower, while the Rocky Mountains area exports electricity with the highest associated emissions. That leads to some striking asymmetries. Local generation in the hydro-rich Idaho Power Company has embodied emissions of only 71kg/MW-hr, while its imports, coming primarily from Rocky Mountain states, have a carbon content of 625kg/MW-hr.

The reliance on hydropower also makes the asymmetry seasonal. Local generation is highest in the spring as snow melts, but imports become a larger source outside this time of year. As solar and wind can also have pronounced seasonal shifts, similar changes will likely be seen as these become larger contributors to many of these regional grids. Similar things occur daily, as both demand and solar production (and, to a lesser extent, wind) have distinct daily profiles.

The Golden State
California's CISO provides another instructive case. Imports represent less than 30% of its total electric use in 2016, yet California electricity imports provided 40% of its embodied emissions. Some of these, however, come internally from California, provided by the Los Angeles Department of Water and Power. The state itself, however, has only had limited tracking of imported emissions, lumping many of its sources as "other," and has been exporting its energy policies to Western states in ways that shape regional markets.

Overall, the 2016 inventory provides a narrow picture of the US grid, as plenty of trends are rapidly changing our country's emissions profile, including the rise of renewables and the widespread adoption of efficiency measures and other utility trends in 2017 that continue to evolve. The method developed here can, however, allow for annual updates, providing us with a much better picture of trends. That could be quite valuable to track things like how the rapid rise in solar power is altering the daily production of clean power.

More significantly, it provides a basis for more informed policymaking. States that wish to promote low-emissions power can use the information here to either alter the source of their imports or to encourage the sites where they're produced to adopt more renewable power. And those states that are exporting electricity produced primarily through fossil fuels could ensure that the locations where the power is used pay a price that includes the health costs of its production.

Related News

• Electricity Forum News

• Energy Policy News