Skip to main content
Business Insider Rides Shotgun as RedTeam Security Hacks the Power Grid

Just recently Producers/Correspondents, Paul Szoldra and Chris Snyder, from Business Insider were embedded with RedTeam Security as they conducted a red team engagement on a major power company. The power company was kind of enough to grant unprecedented permission to Business Insider to film RedTeam Security as they made their way through the red team engagement.

Business Insider is the largest business news site on the web and this video is a multi-part story they're running on cyber security in Industrial Control Systems and Critical Infrastructure (power generation) in the U.S.

Red Teaming

Red teaming is a multi-blended, adversarial based attack simulating attacks against people (social engineering), software (pen testing), hardware (pen testing) and physical security controls within facilities/buildings (physical intrusion testing).

Red teaming involves several facets of social engineering (email phishing/spear phishing, physical/onsite, telephone/SMS, fax), physical penetration testing, application penetration testing and network penetration testing, simultaneously. It's aimed at revealing real-world opportunities for malicious insiders or bad actors to be able to compromise all aspects of an organization in such a way that allows for unauthorized virtual and/or physical access to sensitive information leading up to data breaches and full system/network compromise.

Business Insider Rides Shotgun as RedTeam Security Hacks the Power Grid

RedTeam In Action

The Engagement

Over a four-day period, RedTeam Security carried out a number of attack simulations against the target organization's people, network infrastructure, and physical locations. The target's facilities included power generation substations, supplier outposts, dispatch stations, and offices throughout about a 100-mile radius. RedTeam Security attack methods included various facets of social engineering, physical penetration testing, application penetration testing, and network penetration testing.

Our Target

We are happy to report that not all of our tactics were successful. Our target's defenses were stronger in areas that we did not anticipate and they should be commended for that. We also want to commend their willingness to open their doors to the world in an effort to promote security awareness throughout their industry and others. We are even happier to report since the taping of this production, they've made great strides in the improvement of their security posture. A most sincere thanks goes to them for being so dedicated toward security awareness. Thank you.

About Business Insider

Business Insider is a fast-growing business site with deep financial, media, tech, and other industry verticals. Launched in 2007 by former top-ranked Wall Street analyst Henry Blodget and DoubleClick executives Dwight Merriman and Kevin Ryan, the site is now the largest business news site on the web.

Get a FREE security evaluation today and reduce your organization's security risk.
Schedule My Call Schedule My Call

Get a Customized Proposal

Use our Scoping Questionnaire to provide us with the necessary information to put together a proposal for you. Please be as thorough as possible with your responses, as it helps us ensure an accurate and complete proposal.
If you're interested in application penetration testing, you may find this article helpful when formulating your responses: Understanding Application Complexity For Penetration Testing.

If you have any questions, contact us at 612-234-7848 or schedule a meeting. We will follow up promptly once we receive your responses. We look forward to speaking with you soon.

Having trouble viewing the Scoping Questionnaire? Check to see if an ad-blocker is keeping the page from loading properly.

Dedicated Client Portal

Interact in real-time with your RedTeam security professionals on our user-friendly client portal and see firsthand as the team closes in on your company data.

Certified Security Experts

Our trusted security professionals hold certifications from the leading industry organizations, including OSCP, CASS, CPT, CISSP and more.

Research-Focused Approach

We hold industry-leading certifications and dedicate part of every day to research the latest exploit techniques to ensure our clients remain protected from evolving online attacks.

Free Remediation Testing

Once your team addresses remediation recommendations, RedTeam will schedule your retest at no additional charge.