One the largest attacks on a national infrastructure in 2021.
The FBI has confirmed that Darkside ransomware is responsible for the compromise of the Colonial Pipeline networks in Unites States. The federal agency will continue to work with the company and government partners on the investigation.
Colonial Pipeline Networks learnt it was the victim of a cybersecurity attack on the 8th of May and has since determined that the incident involved ransomware.
Quickly after learning of the attack, Colonial proactively took certain systems offline to contain the threat. These actions temporarily halted all pipeline operations and affected some of our IT systems, which we are actively in the process of restoring.
Leading, third-party cybersecurity experts were also immediately engaged after discovering the issue and launched an investigation into the nature and scope of this incident. We have remained in contact with law enforcement and other federal agencies, including the Department of Energy who is leading the Federal Government response.
Maintaining the operational security of our pipeline, in addition to safely bringing our systems back online, remain our highest priorities. Over the past 48 hours, Colonial Pipeline personnel have taken additional precautionary measures to help further monitor and protect the safety and security of its pipeline.
The Colonial Pipeline operations team is developing a system restart plan, noted the company in a statement.
“While our mainlines (Lines 1, 2, 3 and 4) remain offline, some smaller lateral lines between terminals and delivery points are now operational,” it stated. “We are in the process of restoring service to other laterals and will bring our full system back online only when we believe it is safe to do so, and in full compliance with the approval of all federal regulations.”
According to the company its primary focus continues to be the safe and efficient restoration of service to our pipeline system, while minimising disruption to its customers and all those who rely on Colonial Pipeline.
“Colonial Pipeline is continuing to work in partnership with third-party cybersecurity experts, law enforcement, and other federal agencies to restore pipeline operations quickly and safely,” it noted in a statement. “While this situation remains fluid and continues to evolve, the Colonial operations team is executing a plan that involves an incremental process that will facilitate a return to service in a phased approach.”
The BBC new service noted, “the hack on Colonial Pipeline is being seen as one of the most significant attacks on critical national infrastructure in history”.
According to the news service the pipeline transports nearly half of the east coast’s fuel supplies and prices at pumps are expected to rise if the outage is long lasting.
