(WASHINGTON,
DC) -- FERC has finalized the fine against a company for violating
cybersecurity rules that the North American Electric Reliability Corp. said “posed
a serious and substantial risk to the reliability” of the electric grid. The
violations were outlined in a filing with FERC earlier this year, and
regulators have agreed to uphold the settlement worked out between the Western
Electricity Coordinating Council and the unnamed firm.
The firm, which is labeled only as “Unidentified
Registered Entity,” neither admitted nor denied the violations but agreed to
the fine as well as other sanctions.
FERC
mulled conducting its own review of the violations but ultimately accepted NERC’s
resolution this week. It’s NERC’s policy to not release the names of
organizations or companies involved in security violations for fear that the
information might be used to exploit a vulnerability.
