American Water Cyberattack: A Case Study in Risk, Operational Resilience, & IT Security
On October 3, 2024, American Water, the largest regulated water and wastewater utility in the U.S., fell victim to a cybersecurity breach that has since drawn attention to the broader risks facing critical infrastructure sectors. Serving over 14 million individuals across 14 states, American Water’s systems were infiltrated, forcing the company to disconnect key services and pause customer billing as part of their containment strategy.