Ransomware attack shuts down massive 5,500-mile pipeline that transports 45% of East Coast's fuel

upnorth

Moderator
Verified
Staff Member
Malware Hunter
Well-known
Jul 27, 2015
5,457
"I can't say I'm surprised, but it's certainly disappointing," says Brett Callow, a threat analyst at antivirus company Emsisoft. "Unfortunately, it'll help keep United States critical infrastructure providers in the crosshairs. If a sector proves to be profitable, they'll keep on hitting it."

In a briefing on Thursday, White House press secretary Jen Pskai emphasized in general that the US government encourages victims not to pay. Others in the administration struck a more measured note. "Colonial is a private company and we'll defer information regarding their decision on paying a ransom to them," said Anne Neuberger, deputy national security adviser for cyber and emerging technologies, in a press briefing on Monday. She added that ransomware victims "face a very difficult situation and they [often] have to just balance the cost-benefit when they have no choice with regards to paying a ransom."
 

Venustus

Level 59
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Dec 30, 2012
4,809
Last edited:

Stopspying

Level 19
Verified
Top Poster
Well-known
Jan 21, 2018
814
"Following a devastating cyberattack on the Colonial Pipeline, the Transportation Security Administration—which sits within the government’s Department of Homeland Security—will issue its first-ever cybersecurity directive for pipeline companies in the United States, according to exclusive reporting from The Washington Post.

The directives are expected to arrive within the week and will require pipeline companies in the US to report any cyberattacks they suffer to the TSA and the Cybersecurity Infrastructure and Security Agency. Such attacks will be reported by newly designated “cyber officials” to be named by every pipeline company, who will be required to have 24/7 access to the government agencies, The Washington Post reported. Companies that refuse to comply with the directives will face penalties...."

 

Gandalf_The_Grey

Level 76
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 24, 2016
6,506
Colonial Pipeline's $4.4 million ransom payment caught the government crime fighters beating the hackers by surprise. They thought they were winning.
Colonial Pipeline paid a $4.4 million ransom to a cybercrime group on May 8 amid a gas crisis.
That same day, federal agencies worked to stop the criminals from stealing the company's data.
Congress plans to question Colonial in two weeks about the payment and communication with agencies.
 

Stopspying

Level 19
Verified
Top Poster
Well-known
Jan 21, 2018
814
"Secret Chats Show How Cybergang Became a Ransomware Powerhouse

As the ransomware industry exploded, a Russian-speaking outfit called DarkSide offered would-be computer crooks not just the tools, but also customer support. We got an inside look..."

 

Kuttz

Level 13
Verified
Top Poster
Well-known
May 9, 2015
625
U.S. law enforcement officials say they have recovered millions worth of Bitcoin that Colonial Pipeline paid to ransomware hackers.

The first thing is Never pay to ransomware hackers no matter what the consequence is. Secondly the company should sensitize its personnel about ransomware, its working, how to deal with them etc. A simple negligence resulting a huge multi million dollar losses and inconvenience can be easily prevented if people become little more aware of what they are doing.
 

Paul.R

Level 17
Verified
Well-known
May 16, 2013
844
The first thing is Never pay to ransomware hackers no matter what the consequence is. Secondly the company should sensitize its personnel about ransomware, its working, how to deal with them etc. A simple negligence resulting a huge multi million dollar losses and inconvenience can be easily prevented if people become little more aware of what they are doing.
All planed stay to the course. June and July big months for the stock market and banks :)
 

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top