Search results
People also ask
What happened to the Colonial Pipeline?
What was the Colonial Pipeline attack?
Is Colonial Pipeline vulnerable to a cyberattack?
What is the Colonial Pipeline hack?
May 7, 2023 · May 07, 2023. Jen Easterly, CISA Director. Tom Fanning, Chairman and CEO of Southern Company and Chair of CISA’s Cybersecurity Advisory Committee. Today marks two years since a watershed moment in the short but turbulent history of cybersecurity. On May 7, 2021, a ransomware attack on Colonial Pipeline captured headlines around the world with ...
May 12, 2021 · Colonial Pipeline cyberattack reveals economic impact of ransomware. May. 12, 2021. |. Stefan Schachinger. The series of severe cybersecurity attacks in 2021 is not stopping. Just a few months after a severe attack on U.S. water supplies, critical infrastructure has been hit again, this time the Colonial Pipeline has been attacked and is ...
- Stefan Schachinger
- Attack on Colonial Pipeline
- The Villains
- The Ransom
- Who Won
- Victims
- The Money
- What Now?
- Appendix I – Indicators of Compromise
During the period from May 7 to 12, fuel transportation over the Colonial Pipeline, the largest pipeline system for refined oil products in the US, was suspended. The cause of this was a cyberattack involving DarkSide ransomware. Colonial Pipelineis one of the largest pipeline operators in the United States. The company delivers about 45% of fuel f...
The impact of the attack was so severe that DarkSide developers published a statement on their website on May 10 to the effect that ‘third-party’ operators, rather than them, were responsible for the attack. The DarkSide threat actor used the Ransomware-as-a-Service (RaaS) scheme, under which the developers of the ransomware maintained and develope...
On May 12, CNN reported on its website, citing sources familiar with the matter, that the attackers had demanded a ransom of nearly $5 million from the victim company. However, according to one more trusted source of CNN, Colonial Pipeline, with help from the authorities, managed to retrieve stolen data that the attackers had not yet moved from int...
Once again it has turned out that information security issues are relevant to villains, too. The successful (though, it turns out, not that brilliant) operation which involved stealing data, doing encryption and receiving ransom from Colonial Pipeline was not the end of the story. On May 14, DarkSide developers announced that they had lost access t...
DarkSide first appeared on the radar in August 2020. According to DarkTracer, data of 99 victim companies has been leaked to the darkweb. Specifically, DarkSide was implicated in attacks on large energy companies. For example, in February 2021 the group targetedEletronuclear (a nuclear energy division of the Brazilian giant Eletrobras) and Copel (t...
On May 18, Elliptic, the company that identified the Bitcoin wallet used by DarkSide to receive the ransom payment from Colonial Pipeline, publishedinteresting data based on its blockchain transaction analysis. Elliptic experts did not limit their research to an analysis of one wallet – they analyzed all wallets used by DarkSide in the past nine mo...
The attack on a company that is part of the US critical infrastructure and the shutdown of the DarkSide service forced following the attack could affect the situation in the ransomware market as a whole: the story was too high-profile and the attack’s consequences were too severe – both for the victim company and for the attackers.
Infrastructure
Domain – IP – First seen – ASN More indicators are available for subscribers of Kaspersky Threat Intelligenceservice.
May 11, 2021 · NEW YORK (AP) — A cyberattack on a critical U.S. pipeline is sending ripple effects across the economy, highlighting cybersecurity vulnerabilities in the nation’s aging energy infrastructure. The Colonial Pipeline, which delivers about 45% of the fuel used along the Eastern Seaboard, shut down Friday after a ransomware attack by gang of ...
Apr 26, 2022 · Published: 26 Apr 2022. The Colonial Pipeline was the victim of a ransomware attack in May 2021. It infected some of the pipeline's digital systems, shutting it down for several days. The shutdown affected consumers and airlines along the East Coast.
- Sean Michael Kerner
- 3 min
May 12, 2021 · May 11, 2021. On May 8, 2021, the Colonial Pipeline Company announced that it had halted its pipeline operations due to a ransomware attack, disrupting critical supplies of gasoline and other refined products throughout the East Coast.
May 7, 2022 · The cyberattack on Colonial Pipeline a year ago led to a series of actions by the U.S. government and corporations to help prepare for and mitigate future attacks.
