Get Full Government Meeting Transcripts, Videos, & Alerts Forever!
Littleton utility recounts China‑linked intrusion, FBI and CISA assist; fixes included MFA and network segmentation
Summary
Leaders of the Littleton Electric Light and Water Department described a prolonged intrusion tied to a China‑linked threat actor and summarized steps taken after detection — including CISA‑deployed network sensors, a Dec. 15 mitigation plan, a subsequent penetration test and a MassDEP grant to separate water and electric operational technology.
Littleton, Mass. — Officials from the Littleton Electric Light and Water Department told a briefing that their networks were infiltrated after a firmware vulnerability in perimeter firewalls was exploited, and that federal partners including the FBI and the Cybersecurity and Infrastructure Security Agency (CISA) helped identify and cut off the intrusion.
Nick Lawler, general manager, and Dave Ketchin, assistant general manager, said the utility learned in mid‑January 2023 that a threat actor had gained access by leveraging a known firewall vulnerability and compromised VPN credentials. According to the presenters, Microsoft threat hunters later flagged suspicious traffic tied to a Littleton public IP and notified the FBI, which contacted the utility on Nov. 17, 2023.
The episode left Littleton treating the incident as part of a wider campaign. Ketchin said the intruder used "living off the land" techniques — legitimate administrative tools and credentials — to stay largely undetected while performing reconnaissance and…
Already have an account? Log in
Subscribe to keep reading
Unlock the rest of this article — and every article on Citizen Portal.
- Unlimited articles
- AI-powered breakdowns of topics, speakers, decisions, and budgets
- Instant alerts when your location has a new meeting
- Follow topics and more locations
- 1,000 AI Insights / month, plus AI Chat
