By early morning April 25, crews at Israeli water facilities realized that something unusual was going on. According to reports, one pump began operating non-stop. At another facility, something seemed to have taken over the operating system, and the technicians couldn’t access its regulating interface. A third station reported “irregularities resulting from unplanned changes to the dataflow.”
About an hour later, Israel’s National Cyber Directorate released an unusual announcement. It admitted that the facilities were under attack and asked companies involved in the water and energy sectors to “immediately change internet passwords to access the control system, limit internet connections and verify that the most up-to-date version of the regulatory system is installed.”