Cal Water’s investigation found no evidence that Handala accessed its operational technology environment, despite the group’s claims of deep intrusion and potential disruption. The incident was limited to unauthorized access of a small number of accounts in third-party platforms, including one customer online account and a GPS location correction website. #Handala #CalWater #Mandiant
Keypoints
- Cal Water found no evidence of activity in its OT environment.
- Handala claimed access to Cal Water systems and said it could have disrupted water supply.
- The threat actor leaked 5 GB of alleged Cal Water data.
- Mandiant confirmed the activity was limited to third-party service provider platforms.
- The incident involved one customer account and did not expose payment information.