Re: SCADA hacking, presumably Russian origin
You know kids, the security failures of the scada networks behind the aged US power grid have been publicly decried by cyber security people for at least 10 years now. If I were a foreign intelligence agency, I know that I would want to be kept informed about the state of such tactical vulnerabilities in rival nations, which means I would be conducting silent penetration tests on them.
That means I would not be surprised to find Russian penetration tests, Iranian pen tests, or Chinese pen tests.
That the kit found is of Russian origin means little anyway. It may not be the Russian govt behind it, even if it IS a Russian govt toolkit. Remember a certain infamous network worm of US/Israel origin that infected half the planet, and was quickly appropriated and repurposed by hackers worldwide in the early 2000s? If not, a little history is in order.
https://en.wikipedia.org/wiki/StuxnetJust a short time later, a rogue version was discovered in the wild, after being repurposed by blackhat hackers, known as duqu.
https://en.wikipedia.org/wiki/DuquBlackhats are not at all bashful about tearing into shiny new tools made by other blackhats, and lifting useful exploit code. That is why code of Russian govt origin being found does not itself firmly link Russia with this infiltration attempt, any more than a duqu Infection means the US or Israel are involved.
The media and the three letter agencies are trying very hard to make a connection that just does not have enough evidence, out of a political motive.