FBI identifies hacker group responsible for pipeline shutdown
By Paul Ragusa
Updated 2:25 PM CDT, Mon May 10, 2021
WASHINGTON—The Federal Bureau of Investigation (FBI) issued a statement today confirming that “Darkside ransomware is responsible for the compromise of the Colonial Pipeline networks,” noting that it is working with Colonial to investigate the incident and get the pipeline up and running again. Meanwhile, experts expect gas and oil prices to rise as government officials and energy companies scramble to get resources to the East coast.
On May 7, Colonial Pipeline Company learned it was the victim of a cybersecurity attack and has since determined that the incident involved ransomware. “Quickly after learning of the attack, Colonial proactively took certain systems offline to contain the threat,” the company said in a statement. “These actions temporarily halted all pipeline operations and affected some of our IT systems, which we are actively in the process of restoring.”
Colonial Pipeline said today that it continues to dedicate “vast resources to restoring pipeline operations quickly and safely. Segments of our pipeline are being brought back online in a stepwise fashion, in compliance with relevant federal regulations and in close consultation with the Department of Energy, which is leading and coordinating the Federal Government’s response.
“Restoring our network to normal operations is a process that requires the diligent remediation of our systems, and this takes time. In response to the cybersecurity attack on our system, we proactively took certain systems offline to contain the threat, which temporarily halted all pipeline operations, and affected some of our IT systems. To restore service, we must work to ensure that each of these systems can be brought back online safely.”
The company said that it is executing a plan that involves a phased approach to returning full service. “This plan is based on a number of factors with safety and compliance driving our operational decisions, and the goal of substantially restoring operational service by the end of the week.”
President Biden also announced an executive order in an effort to strengthen cybersecurity for federal agencies and contractors, especially related to protection of critical infrastructure.
For more on the Colonial Pipeline hack and cybersecurity, click here.
Comments