Kymatio Isotype
Why Kymatio
Partners
Book a demo
Book a demo
EN
Kymatio Isotype
Why Kymatio
Partners
Book a demo
This website uses cookies

We use cookies to personalise content and ads, to provide social media features and to analyse our traffic. We also share information about your use of our site with our social media, advertising and analytics partners who may combine it with other information that you’ve provided to them or that they’ve collected from your use of their services.

I acceptSettings
Cookie settings
Kymatio uses cookies to make your experience better. Check our Privacy Policy to learn more.
Strictly necessary (always active)
Cookies required to enable basic website functionality.
Accept all cookiesSave settings
Close
articles
Natural Gas Operator Shuts Down after Phishing Attack and Ransomware
Cyberattacks
Cybersecurity Prevention

Natural Gas Operator Shuts Down after Phishing Attack and Ransomware

by
Kymatio
|
February 26, 2020

A U.S. Natural Gas Operator Shuts Down for 2 Days After a Phishing Attack Infects it With Ransomware.

IN THIS article
Text Link
Book a demo

Internal Threats: Natural Gas Operator Shuts Down After Phishing and Ransomware Attack

A U.S. natural gas compression facility was forced to shut down operations for two days following a ransomware infection that originated from a phishing attack, according to the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA).

How the Attack Unfolded

  • The incident began when an employee clicked a malicious link in a phishing email.
  • This allowed attackers to pivot from the IT network to the OT network — the operational technology environment responsible for controlling and monitoring the physical processes of the facility.
  • Both IT and OT networks became infected with commodity ransomware.
  • Although programmable logic controllers (PLCs) controlling the gas compression equipment were not compromised and operational control was not lost, crucial control and communication systems used by employees were knocked offline.

Impact

  • Operational downtime: 2 days of halted operations.
  • Loss of real-time monitoring capability for critical processes.
  • Highlighted vulnerabilities in OT security and insufficient network segmentation.

Key Lessons

  1. OT networks are the crown jewels of industrial environments — they must be isolated, secured, and accessible only when strictly necessary.
  2. Employee security awareness is critical.
    • Most ransomware infections still begin with phishing emails.
    • Teaching employees to identify and avoid suspicious links or attachments reduces risk significantly.
  3. Cybersecurity metrics and monitoring should extend beyond IT and include OT environments to detect anomalies early.

Kymatio helps organizations design human-centered insider risk mitigation plans that combine technical controls with employee training, reducing the likelihood of human-originated incidents like this one.

🔗 Full article by Ars Technica:https://arstechnica.com/information-technology/2020/02/ransomware-infection-shuts-down-us-natural-gas-operator-for-2-days/

related articles

Explore more articles

Why an AI-Phishing Benchmark is Critical for Your 2025 Strategy
Cyberattacks
Cybersecurity Prevention
Why an AI-Phishing Benchmark is Critical for Your 2025 Strategy
by
Kymatio
|
August 19, 2025
NIS2 vs. DORA comparison — what applies to your organization
Cyberattacks
Cybersecurity Glossary
NIS2 vs. DORA comparison — what applies to your organization
by
Kymatio
|
August 1, 2025
Annual Campaign Calendar: Phishing, Smishing, Vishing and QRishing
Cyberattacks
Cybersecurity Prevention
Annual Campaign Calendar: Phishing, Smishing, Vishing and QRishing
by
Kymatio
|
July 29, 2025
ACTIVATE YOUR HUMAN FIREWALLS

Ready to uncover the real risk within your organization

Book a demo
Know the real risk
4.8 in Capterra

Join the Kymatio® newsletter and get the latest insights, research, and practical tips on cybersecurity awareness prevention straight to your inbox.

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Services
HRMAssessment  & AwarenessAttack SimulationsBreach ScanDigital Wellbeing
Use cases
Public SectorFinancial SectorHealthcare SectorLarge enterprises
About us
Why KymatioKnow KymatioOur valuesSuccess Stories
Resources
BlogWebinarsWhitepapersNews
Get in touch
ContactLinkedInXFacebookYoutube
© 2025 Kymatio. All Rights reserved.
Privacy policy
·
Compliance
·
Cookies Policy
·
Legal Notice
·
AI Policy