- Sputnik International, 1920
World
Get the latest news from around the world, live coverage, off-beat stories, features and analysis.

Colonial Pipeline Has No Plans to Pay DarkSide Ransomware Hackers

© AFP 2023 / MICHAEL M. SANTIAGOFuel holding tanks are seen at Colonial Pipeline's Linden Junction Tank Farm on May 10, 2021 in Woodbridge, New Jersey. Alpharetta, Georgia-based Colonial Pipeline, which has the largest fuel pipeline, was forced to shut down its oil and gas pipeline system on Friday after a ransomware attack that has slowed down the transportation of oil in the eastern U.S. On Sunday, the federal government announced an emergency declaration that extends through June 8th and can be renewed. On Monday, the FBI confirmed that the cyberattack was carried out by DarkSide, a cybercrime gang believed to operate out of Russia.
Fuel holding tanks are seen at Colonial Pipeline's Linden Junction Tank Farm on May 10, 2021 in Woodbridge, New Jersey. Alpharetta, Georgia-based Colonial Pipeline, which has the largest fuel pipeline, was forced to shut down its oil and gas pipeline system on Friday after a ransomware attack that has slowed down the transportation of oil in the eastern U.S. On Sunday, the federal government announced an emergency declaration that extends through June 8th and can be renewed. On Monday, the FBI confirmed that the cyberattack was carried out by DarkSide, a cybercrime gang believed to operate out of Russia.  - Sputnik International, 1920, 13.05.2021
Subscribe
The Colonial Pipeline system recently shuttered after hacker group DarkSide infiltrated their servers and encrypted its data in a ransomware cyberattack. This cyberattack took almost 100GB of data, causing a shutdown of 5,550 miles of the pipeline, which works as the main source of gasoline, diesel and jet fuel for the US East Coast.

The Colonial Pipeline on Wednesday announced that it had no plans to pay to have their stolen data encrypted, and are instead working with cybersecurity firm Mandiant to restore and rebuild their data systems.

Republicans have warned US President Joe Biden that his administration needed to take the pipeline cyberattack very seriously. Biden addressed concerns on Monday, revealing that his administration would take additional steps, which include coordinating with the Federal Bureau of Investigations (FBI), as well as the respective US Departments of Defense and Homeland Security.

Biden touched on the cyberattack during a Wednesday address in which he was quoted as saying that there would be good news coming within the next 24 hours. Operators of the pipeline subsequently announced that they would be restarting operations. 

However, officials have also warned that it will take “several days” before operations will resume normal service.

The DarkSide group that attacked the pipeline operates under a ransomware-as-a-service (RaaS) business model, and first surfaced on a Russian language hacking forum in August 2020. DarkSide and their affiliates have launched a global hacking spree affecting organizations in more than 15 countries.

On Wednesday, DarkSide posted on its site that they were responsible for a cyberattack targeting three more companies, including a US-based tech company, a renewable energy company in Brazil and a construction company in Scotland.

The group also announced on Monday that they were not associated with any government and would vet each target they go after in order to avoid social consequences. The Cybersecurity and Infrastructure Security Agency (CISA) and the FBI released a Joint Cybersecurity Advisory (CSA) on Tuesday providing details on DarkSide and offering advice for preventing the ransomware threat. 

The latest development comes as the nation’s capital has recently been the target of cyberattacks by another ransomware group known as Babuk, which hacked the Metropolitan Police Department last month. The group published the data of over 20 personnel early Wednesday.

Newsfeed
0
To participate in the discussion
log in or register
loader
Chats
Заголовок открываемого материала