The State of Energy Storage: What You Need to Know
On June 30, 2025, the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), the National Security Agency (NSA), and the Department of Defense Cyber Crime Center (DC3) published a...more
Overview - On May 6, 2025, the Cybersecurity and Infrastructure Security Agency (CISA), in coordination with the FBI, Environmental Protection Agency (EPA), and Department of Energy (DOE), issued a joint fact sheet titled...more
As noted , the renewable energy sector faces growing concerns over its vulnerability to cyberattacks. Since then, the situation has not improved; the U.S. electrical grid has grown more vulnerable to cyberattacks, with...more
The U.S. Department of Homeland Security’s (DHS) Cybersecurity and Infrastructure Security Agency (CISA) is publishing a proposed rule (Proposal or NPRM) that will require broad segments of industry to meet onerous and quick...more
As part of the Biden Administration’s efforts to align energy cybersecurity efforts across the country, the U.S. Department of Energy (“DOE”) has funded the release of a set of energy distribution cybersecurity baselines for...more
On October 30, 2023, President Biden issued an Executive Order (“Order”) that drastically increased the U.S. government’s engagement with artificial intelligence (“AI”). The sweeping Order touches on everything from bias in...more
As discussed previously in this blog, physical attacks against substations have been on the rise. However, the U.S. power grid is also vulnerable to cyberattacks from U.S. adversaries, which includes hostile foreign...more
Over the past several years, the energy sector has become a prime target for hacking and ransomware attacks, with over 40 attacks on the industry since 2017. Cyber attacks have only continued to rise, with a record high of...more
After a rash of significant cybersecurity breaches and ransomware attacks affecting a wide set of industries, ranging from pipelines to technology companies, the Biden administration released its much-anticipated National...more
Editor’s Note: On July 27, 2022, HaystackID shared an educational webcast on the topic of Committee on Foreign Investment in the United States (CFIUS) compliance. CFIUS is a U.S. government interagency committee with the...more
Public comments in an ongoing cybersecurity proceeding at the National Institute of Standards and Technology (NIST) highlight the utility of a foundational cybersecurity document while also providing suggestions for its...more
Public comments on updating the National Institute of Standards and Technology’s (NIST), the Framework for Improving Critical Infrastructure Cybersecurity (CSF), highlight private and public sector interest in this core...more
Last month, the U.S. Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the U.S. Department of Energy (DOE) issued a joint advisory providing “information on multiple...more
On March 24, 2022, the Department of Justice unsealed two indictments charging four Russian government employees in two hacking campaigns that targeted critical infrastructure in the energy sector. We cover these indictments...more
Shortly before Thanksgiving, the U.S. Department of Energy (DOE) issued a request for public comment on Version 2.0 of its Cybersecurity Capability Maturity Model (C2M2), which DOE released in July 2021 to help organizations...more
On March 18, 2021, the Department of Energy’s (DOE) Office of Cybersecurity, Energy Security, and Emergency Response (CESER) announced three new research programs that are “designed to safeguard and protect the U.S. energy...more
Colonial Pipeline shut down 5,500 miles of its East Coast pipeline on May 7, 2021, in an effort to contain a security breach resulting from a ransomware attack. Colonial’s pipeline is one of the nation’s largest and carries...more
The cyber landscape is changing once again, in terms of impact, policy and potential exposure. In the wake of the Colonial Pipeline hack, the Biden administration released a long-awaited Executive Order intended to strengthen...more
On April 22, 2021, the U.S. Department of Energy (DOE) called for public comments on policies that the Administration should pursue to secure the U.S. electric grid from exploitation and attack by foreign adversaries. The DOE...more
On April 20, 2021, the U.S. Department of Energy (DOE or the “Department”) issued an order revoking its Prohibition Order Securing Critical Defense Facilities, issued December 17, 2020. DOE’s actions come exactly 90 days...more
Bottom Line Up Front: The Department of Energy (DOE) will implement new cybersecurity programs to enhance energy sector resilience. DOE’s announcement coincides with the Senate Energy and Natural Resources Committee’s support...more
On March 18, 2021, the U.S. Department of Energy (DOE) Office of Cybersecurity, Energy Security and Emergency Response (CESER) announced “three new research programs to safeguard the U.S. energy system from growing cyber and...more
Top Court Seeks Trump Administration Input on PennEast Pipeline - "The U.S. Supreme Court asked the Trump administration for input on a PennEast Pipeline Co. appeal that aims to jump-start a planned natural-gas line by...more
President Donald Trump signed Executive Order 139201 on May 1, 2020, declaring a national emergency in order to secure the nation's bulk-power system. The president's order explains that such systems are threatened by foreign...more
Energy-Related CO2 Emissions ‘Flatlined’ Last Year, IEA Says, Raising Hopes About Climate - "Global emissions remained at approximately 33 gigatonnes in 2019 despite the world economy growing by 2.9%, the IEA said." ...more