The United States has admitted that hackers attacking its nuclear power plants have already succeeded. Twice.
An investigation by the Nuclear Regulatory Commission, which oversees the US nuclear power grid, uncovered two incidents in which hackers were able to access its internal documents.
The NRC is tasked with managing information about nuclear reactors, including those which handle weapons-grade material.
One of the hacking incidents, as reported by NextGov, involved emails sent to 215 NRC employees designed to steal their login details.
Around 12 employees ended up falling for it, according to the report, entering their username and password into a Google spreadsheet. The IG Cyber Crime Unit then tracked that spreadsheet to a user “in a foreign country” – though it is not clear who was behind the simple attack.