A ransomware cyberattack has forced the temporary shutdown of Colonial Pipeline a major gas pipeline that supplies 45 percent of all fuel consumed on the East Coast. The attack highlights heightened concerns over the danger to major U.S. infrastructure.
The cyberattack against Colonial Pipeline began at 7:00 p.m. on Friday night, according to a Federal Emergency Management Agency report.
Colonial Pipeline, which runs from Houston to Linden, New Jersey, transports about a million gallons of fuel daily.
However, the hackers actually began their hacking against the company a day earlier, stealing a large amount of data before locking computers with ransomware and demanding payment, according to a report from Bloomberg.
The attack was perpetrated by the cybercrime group DarkSide. The group stole nearly 100 gigabytes of data out of the company’s network in just two hours on Thursday, officials involved in the investigation said.
Many believe that the hackers are located outside the United States since when domestic hackers attack infrastructure, it usually isn’t economically motivated.
The extortion scheme has been a common tactic of DarkSide. Colonial was threatened that the stolen data would be leaked to the internet while the information that was encrypted by the hackers on computers inside the network would remain locked unless it paid a ransom, said the sources to the Bloomberg piece.
Gas and fuel prices are expected to rise over the shutdown of the pipeline. If the shutdown lasts more than a few days, the prices of fuel are expected to experience a spike similar to the one following Hurricane Sandy.
A ransomware cyberattack has forced the temporary shutdown of Colonial Pipeline a major gas pipeline that supplies 45 percent of all fuel consumed on the East Coast. The attack highlights heightened concerns over the danger to major U.S. infrastructure.
The cyberattack against Colonial Pipeline began at 7:00 p.m. on Friday night, according to a Federal Emergency Management Agency report.
Colonial Pipeline, which runs from Houston to Linden, New Jersey, transports about a million gallons of fuel daily.
However, the hackers actually began their hacking against the company a day earlier, stealing a large amount of data before locking computers with ransomware and demanding payment, according to a report from Bloomberg.
The attack was perpetrated by the cybercrime group DarkSide. The group stole nearly 100 gigabytes of data out of the company’s network in just two hours on Thursday, officials involved in the investigation said.
Many believe that the hackers are located outside the United States since when domestic hackers attack infrastructure, it usually isn’t economically motivated.
The extortion scheme has been a common tactic of DarkSide. Colonial was threatened that the stolen data would be leaked to the internet while the information that was encrypted by the hackers on computers inside the network would remain locked unless it paid a ransom, said the sources to the Bloomberg piece.
Gas and fuel prices are expected to rise over the shutdown of the pipeline. If the shutdown lasts more than a few days, the prices of fuel are expected to experience a spike similar to the one following Hurricane Sandy.
A Concerted Effort Is Launched to Address the Attack on Colonial Pipeline
Map of the Colonial Pipeline that runs from Texas to New Jersey. It supplies 45 percent of the fuel used on the East Coast. (Fox News illustration)
Colonial said it became aware of the hack on Friday night and opted to shut down the pipeline.
“In response, we proactively took certain systems offline to contain the threat, which has temporarily halted all pipeline operations and affected some of our IT systems,” the company released in a statement.
The FBI, Department of Energy (DoE), and Cybersecurity and Infrastructure Security Agency (CISA) have all said they are collaborating with Colonial Pipeline to get to the bottom of the attack.
FireEye Inc., a U.S.-based cybersecurity firm, is also investigating the attack, having been hired by Colonial to manage the investigation.
Eric Goldstein, the executive assistant director of CISA’s cybersecurity division, said in a statement Saturday that they’re working with the company and their partners on the situation.
“This underscores the threat that ransomware poses to organizations regardless of size or sector,” he said. “We encourage every organization to take action to strengthen their cybersecurity posture to reduce their exposure to these types of threats.”
The White House released a statement saying President Biden was appraised of the situation.
An official from the White House told CNN that analysis is ongoing to determine whether supply could become an issue following the event. The White House is working with state and local authorities to determine what possible steps may need to be taken to help lessen the potential impact on supply.
The Increasing Risk of Cyberattacks on Physical Infrastructure
Cyberattack on government infrastructure as portrayed in the film Skyfall that highlighted government systems being shut down. (MGM)
This brings to the forefront the thorny issue of U.S. infrastructure. As infrastructure becomes more and more reliant on cyberspace it also becomes more vulnerable to cyberattacks and cybersecurity becomes much more important.
Cybersecurity issues have risen to prominence with the SolarWinds hack perpetrated by Russian hackers and the hack of the Microsoft Exchange that affected email servers worldwide. The latter was linked to a network of hackers called Hafnium, a group that Microsoft “assessed to be state-sponsored and operating out of China.”
Colonial’s 5,500-mile pipeline has two main pipelines, one for gasoline and another for diesel, jet, and other fuels. Colonial shut down the pipeline twice in 2016, once for an underground leak and another for a fire that occurred in Alabama.
Earlier last week, Homeland Security Secretary Alejandro Mayorkas gave an ominous warning that cyberattacks, specifically ransomware attacks, are on the rise and hackers are targeting government agencies down to small businesses.
Speaking at the U.S. Chamber of Commerce’s Now & Then Speaker series, Mayorkas said, “The threat is real. The threat is upon us. The risk is to all of us,” adding, “Inform oneself. Educate oneself and defend oneself.”
As someone who’s seen what happens when the truth is distorted, I know how unfair it feels when those who’ve sacrificed the most lose their voice. At SOFREP, our veteran journalists, who once fought for freedom, now fight to bring you unfiltered, real-world intel. But without your support, we risk losing this vital source of truth. By subscribing, you’re not just leveling the playing field—you’re standing with those who’ve already given so much, ensuring they continue to serve by delivering stories that matter. Every subscription means we can hire more veterans and keep their hard-earned knowledge in the fight. Don’t let their voices be silenced. Please consider subscribing now.
One team, one fight,
Brandon Webb former Navy SEAL, Bestselling Author and Editor-in-Chief
Barrett is the world leader in long-range, large-caliber, precision rifle design and manufacturing. Barrett products are used by civilians, sport shooters, law enforcement agencies, the United States military, and more than 75 State Department-approved countries around the world.
PO Box 1077 MURFREESBORO, Tennessee 37133 United States
Scrubba Wash Bag
Our ultra-portable washing machine makes your journey easier. This convenient, pocket-sized travel companion allows you to travel lighter while helping you save money, time and water.
Our roots in shooting sports started off back in 1996 with our founder and CEO, Josh Ungier. His love of airguns took hold of our company from day one and we became the first e-commerce retailer dedicated to airguns, optics, ammo, and accessories. Over the next 25 years, customers turned to us for our unmatched product selection, great advice, education, and continued support of the sport and airgun industry.
COMMENTS
There are on this article.
You must become a subscriber or login to view or post comments on this article.