US Warns of Fuel System Cyberattacks

US agencies warn that hackers are actively targeting internet-exposed fuel tank monitoring systems, creating a significant risk for critical infrastructure.

A coalition of US government agencies, including CISA, the FBI, and the NSA, has issued a joint advisory about active cyberattacks targeting Automatic Tank Gauge (ATG) systems. These devices monitor fuel and liquid levels in storage tanks across critical infrastructure sectors. The advisory warns that malicious actors are actively exploiting internet-exposed systems, often taking advantage of weak or default security settings to gain unauthorized access. This access could allow them to monitor or disrupt fuel supply chains and other essential services.

The vulnerability of these systems poses a significant risk as they are a key part of operational technology (OT). A successful compromise could lead to inaccurate tank readings, operational disruptions, or even environmental hazards. The advisory notes that many organizations fail to secure these devices, frequently leaving them online with default credentials. This makes them easy targets for attackers seeking to infiltrate sensitive industrial networks and cause real-world impact. The agencies urge organizations to take immediate action to mitigate these risks.

Key recommendations include removing ATG systems from public internet access, changing all default passwords to strong, unique ones, and implementing network segmentation to isolate OT networks from corporate IT environments. Placing these systems behind a firewall is also a critical step. This alert highlights the increasing focus of cybercriminals on industrial control systems and the urgent need for organizations to bolster their OT security posture to protect critical national infrastructure.

This advisory is critical because it highlights a direct threat to operational technology (OT) in essential sectors. A compromise of these systems could bridge the digital-physical divide, leading to real-world consequences like fuel shortages, spills, or operational shutdowns in critical infrastructure.

Businesses in energy, logistics, and other sectors relying on fuel storage are directly at risk. A successful attack could lead to operational downtime, financial losses from fuel theft or remediation costs, regulatory fines for environmental incidents, and severe reputational damage.