Some power providers indicate attempts to probe internal networks and applications for vulnerabilities and configuration weaknesses. Much of the activity is automated, the report found. Attacks using malware are frequent, but the aim of the attacks is unclear. Financially motivated cybercrime, fueled by automated attack toolkits, are widespread and are out to steal account credentials and credit-card data. Some probes also could be used by hacktivist groups or nation-state cyberespionage campaigns in an attempt to gain information about systems, the report found.