Lots sources. Perplexity is pretty good at getting this type of searching.

tell me about this story from multiple sources. https://energiteknikk.net/2025/06/hackere-apnet-ventil-pa-fullt-ved-dam-anlegg/

Multiple sources confirm that in April 2025, hackers gained unauthorized access to the control systems of a dam facility at Risevatnet in Bremanger, Norway. The breach allowed the intruders to manipulate the minimum water flow and access the closure system, specifically opening a water valve to full capacity for nearly four hours before the unauthorized change was detected[1][2][3].

According to Norwegian energy news outlet Energiteknikk, the dam’s owner, Breivika Eiendom, discovered the intrusion on April 7. The hackers accessed a web panel used to remotely control a valve, which was likely made possible by a weak password—a common vulnerability in industrial control systems (ICS)[2][3][4]. The technical director of Breivika Eiendom clarified that while the valve was opened to 100%, the impact was minimal, with water flow increasing by 497 liters per second above the required minimum. This was well below the riverbed’s capacity, which can handle up to 20,000 liters per second, so there was no risk of flooding or other significant consequences[2][3][4].

Initially, there were suspicions that the attack originated from Russia, as indicated in some internal documents, but the company declined to speculate publicly about the attackers’ identity. The incident was reported to the Norwegian Police Security Service (PST), the National Security Authority (NSM), and the Norwegian Water Resources and Energy Directorate (NVE), and has been formally investigated by Kripos[3]. The case highlights ongoing concerns about cybersecurity in critical infrastructure, with Norwegian authorities noting a sharp rise in data attacks against the country[3].

International cybersecurity news outlets, such as Risky Business News, further emphasize that while the hack did not endanger anyone, it underscores the risks of exposing sensitive industrial equipment to the internet with weak security. Similar incidents have occurred globally, where hackers have randomly accessed control panels for critical infrastructure, sometimes modifying settings out of curiosity or mischief rather than with malicious intent[2][4].

In summary, the story is a notable example of how inadequate cybersecurity can expose critical infrastructure to unauthorized access, even when the immediate consequences are limited. The incident has prompted increased scrutiny and security measures for similar facilities in Norway and beyond[2][3][4].

Citations: [1] Hackere åpnet ventil på fullt ved dam-anlegg - Energiteknikk https://energiteknikk.net/2025/06/hackere-apnet-ventil-pa-fullt-ved-dam-anlegg/ [2] Hackers breach Norwegian dam, open valve at full capacity https://news.risky.biz/risky-bulletin-hackers-breach-norwegian-dam-open-valve-at-full-capacity/ [3] Hackere åpnet ventil på fullt ved dam-anlegg - pekte først på Russland https://www.kode24.no/artikkel/hackere-apnet-ventil-pa-fullt-ved-dam-anlegg-pekte-forst-pa-russland/83208754 [4] Hackers breach Norwegian dam, open valve at full capacity - Risky Biz https://risky.biz/risky-bulletin-hackers-breach-norwegian-dam-open-valve-at-full-capacity/ [5] Hackers breach Norwegian dam, open valve at full capacity - Risky Biz https://risky.biz/RBNEWS442/ [6] Hackers Opened the Valve to Full Capacity at the Dam Facility in … https://ground.news/article/hackers-opened-the-valve-to-full-capacity-at-the-dam-facility-in-bremanger [7] Hackere åpnet ventil ved dam-anlegg i Bremanger - iNyheter https://inyheter.no/10/06/2025/hackere-apnet-ventil-ved-dam-anlegg-i-bremanger/ [8] Top 10 Cybersecurity Breaches in Norway - Cyberlands.io https://www.cyberlands.io/topsecuritybreachesnorway [9] Hackers breach Norwegian dam, open valve at full capacity https://databreaches.net/2025/06/25/hackers-breach-norwegian-dam-open-valve-at-full-capacity/ [10] Dawood Sajjadi (داود سجادی) - X https://x.com/5tuxnet/status/1938007615633822041 [11] Bart Groothuis - X https://x.com/bgroothuis/status/1937750724500140506 [12] Hackers target Arkansas City water treatment plant, prompting … https://industrialcyber.co/utilities-energy-power-water-waste/hackers-target-arkansas-city-water-treatment-plant-prompting-federal-investigation/ [13] How Sandworm, Russia’s elite hackers, attacked a small mill instead … https://www.lemonde.fr/en/pixels/article/2024/04/17/how-sandworm-russia-s-elite-hackers-attacked-a-small-mill-instead-of-dam-they-targetted_6668731_13.html [14] CISA again raises alarm on hacktivist threat to water utilities https://www.cybersecuritydive.com/news/cisa-hacktivist-exploit-water-utility/728163/ [15] Norway Cyber Attack: NoName Targets Critical Infrastructure https://thecyberexpress.com/norway-cyber-attack-noname-hackers/ [16] Hackers release millions of files after Oregon DEQ cyberattack - OPB https://www.opb.org/article/2025/04/25/oregon-department-of-environmental-quality-deq-cyberattack-hacking-vehicle-registration-data/ [17] Data Breaches That Have Happened in 2024 & 2025 - Updated List https://tech.co/news/data-breaches-updated-list