Skip to main content
close search
site logo
Dive Brief

Utility-backed Energy Impact Partners invests $10M in cybersecurity firm Dragos

Published Aug. 15, 2017
Robert Walton's headshot
Senior Reporter

Dive Brief:

  • Cybersecurity firm Dragos has secured a $10 million investment from the utility-backed firm Energy Impact Partners and two other companies to assist in growing its global workforce to meet demand for the company's services.
  • Cybersecurity is a growing concern in the electric utility industry. Over the summer, Dragos issued a report concluding malware used in a 2015 cyberattack against the Ukrainian power grid could be modified to disrupt U.S. utilities. 
  • The new investment was co-led by EIP and Allegis Capital, with additional support from DataTribe, a cybersecurity startup that initially funded Dragos. EIP's backers include Southern Company, National Grid, Xcel Energy, Ameren, Great Plains Energy and others. 

Dive Insight:

Industry polling shows cybersecurity ranks at or near the top of critical concerns for utility executives. Now a prominent IOU-backed investment firm is getting in on the game. 

The $10 million investment from a trio of companies is EIP's first funding for a cybersecurity firm .

"One of the critical challenges in [industrial control system] security is access to sufficient human capital," EIP Vice President Sameer Reddy said in a statement.

The funding will be used to increase the company's workforce. Rising demand for its cybersecurity services is being generated through key partnerships with Deloitte, according to a press release.

The company says it "exists to safeguard civilization," specializing in protections for power plans, manufacturing, water infrastructure, petrochemicals and oil.

This summer, Dragos issued a report analyzing malware that was used in a 2015 cyberattack that caused a widespread blackout in Ukraine. The firm determined the malware could be modified by its Russian developers to target the United States.

According to the report, the program — dubbed "CrashOverride" — was just the second industrial control system-tailored malware to target physical industrial processes.

The North American Electric Reliability Corp. issued a Level 1 alert in the wake of Dragos' revelations. According to NERC's alert, the malware can "cause loss of visibility, loss of control, manipulation of control, interruption of communications, and deletion of local and networked critical configuration files."

Recommended Reading

Filed Under: Corporate News

Editors' picks

Company Announcements

View all | Post a press release
Edo and EPRI Earn Award from the California Energy Commission (CEC) to Advance VPPs
From Edo
October 31, 2024
The energy market in Saudi Arabia and the Persian Gulf will be managed by Czech company Unicorn
From Unicorn
October 23, 2024
8th Annual TMG Utility Forum Tackles Artificial Intelligence (AI)
From TMG, an RIA company
October 30, 2024
AiDash Launches First-of-its-Kind Full Stack Platform for Grid Inspection and Monitoring
From AiDash
October 22, 2024
Editors' picks
Latest in Corporate News
image/svg+xml
Industry Dive is an Informa business
© 2024 Industry Dive. All rights reserved. | View our other publications | Privacy policy | Terms of use | Take down policy.
Cookie Preferences / Do Not Sell