An unnamed power company has consented to a record fine for leaving critical records exposed.
A record $2.7 million fine has been levied against an electric utility for vulnerabilities in its IT infrastructure.
The North American Electric Reliability Corporation (NERC)
notified the Federal Energy Regulatory Commission (FERC) that it has reached a consent agreement with an unnamed electric utility for the fine over the exposure of information regarding critical infrastructure for at least 70 days. The exposed information includes tidbits like system names and locations, user names, and cryptographic information that could be used to decrypt passwords.
....
....
VW Suffers Major Breach Exposing Location of 800,000 Electric Vehicles