Pa. Public Utility Commission calls for increased cybersecurity amid international tension | State
Pa. Public Utility Commission calls for increased cybersecurity amid international tension | State
Publish Date: 2026-03-06 18:00:00
Source Domain: www.tiogapublishing.com
Using an unordered list, summarize the following article with between 4 and 8 key points.
Pennsylvania Public Utility Commission
Harrisburg, Pa. — The Pa. Public Utility Commission (PUC) has issued a cybersecurity advisory to all regulated utilities and licensed electric and natural gas suppliers across the Commonwealth.The advisory is in response to increased international tensions and concerns about potential cyber activity targeting critical infrastructure. PUC recommends heightened vigilance and stronger cyber defenses at this time.“Cybersecurity is a constant priority for the Commission and the utilities we regulate,” said PUC Chairman Steve DeFrank. “While we have no indication of specific threats to Pennsylvania utilities at this time, global events serve as an important reminder that critical infrastructure must remain vigilant. By sharing timely information and reinforcing strong cybersecurity practices, the Commission is working proactively with utilities across Pennsylvania to help safeguard the systems that power our homes, businesses, and communities.”The advisory, distributed to jurisdictional utilities earlier in the month, highlights a series of recommended cybersecurity practices intended to help utilities protect essential services such as electricity, natural gas, water, telecommunications, and other systems.The Commission noted that evolving geopolitical developments — including the ongoing conflict involving Iran and the broader potential for retaliatory cyber activity against U.S. infrastructure — underscore the importance of maintaining strong cybersecurity protections across all sectors of critical infrastructure.Cybersecurity best practicesWidely recognized best practices designed to reduce the risk of cyber intrusion or disruption include:Strengthening network protections by isolating sensitive operational systems from the public internet whenever possibleImproving access security, including the use of strong passwords and phishing-resistant multi-factor authentication for remote access and administrative systemsAddressing known software vulnerabilities by ensuring that critical systems, firewalls, and remote management tools are updated and properly securedEnhancing monitoring and incident response planning, including reviewing business continuity and disaster recovery plans to ensure utilities can quickly detect and respond to unusual network activityThe Commission encourages utilities to remain alert for sophisticated cyber techniques that rely on legitimate system tools to avoid detection — sometimes referred to as “living off the land” activity — and to closely monitor their systems for unusual behavior that could signal unauthorized access.Cybersecurity resourcesPUC recommends that utilities review guidance from the U.S. Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA), including the agency’s “Shields Up” initiative and other cybersecurity resources designed to help critical infrastructure operators strengthen their defensive posture.Cyber incidents should be reported to appropriate authorities including the FBI, the Pa. Criminal Intelligence Center, and the PUC (if the incident is within PUC’s cyber reporting regulations).“Protecting the systems that deliver essential utility services is critical to public safety and economic stability,” DeFrank added. “The Commission will continue working closely with utilities, law enforcement, and national partners to ensure that Pennsylvania remains prepared to meet the cybersecurity challenges of today and tomorrow.”PUC regularly works with federal partners, industry organizations, and other state regulators to share threat information and strengthen protections for critical infrastructure systems.Because cyber threats continue to evolve rapidly, PUC encourages utilities of all sizes to regularly review their cybersecurity practices and remain engaged with state and federal partners on emerging risks.
