• About Us
  • Contact Us
Account
GTB
  • Home
  • News
  • Premium
  • Business
  • Personal Finance
  • Lifestyle
    • Travel
    • Health
    • Retail/Fashion
  • Podcast
    • Business Chat
    • Retiring Richly
    • Sika Nkommo
  • Videos
  • Analysis/Features
No Result
View All Result
  • Home
  • News
  • Premium
  • Business
  • Personal Finance
  • Lifestyle
    • Travel
    • Health
    • Retail/Fashion
  • Podcast
    • Business Chat
    • Retiring Richly
    • Sika Nkommo
  • Videos
  • Analysis/Features
No Result
View All Result
Account
Ghana Talks Business
No Result
View All Result

Russian cybercriminals just pulled off a devastating attack inside the US

11/05/2021
Reading Time: 4 mins read
US Pipeline cybercrime
405
SHARES
Share on FacebookShare on TwitterShare on WhatsApp

Unless operations are restored by Tuesday at the major US fuel pipeline that a Russian gang of cybercriminals hit with a ransomware attack on Friday, problems are going to start mounting, rapidly. First impacting the Atlanta area as well as Tennessee, and then snowballing all the way up to New York State, according to a worst-case scenario prediction that oil market analyst Gaurav Sharma has shared with the BBC.

In other words, the fallout from the attack on Colonial Pipeline, which runs the largest US fuel pipeline system, could get ugly really fast. By late Sunday evening, word was only just beginning to circulate about the culprits believed to be responsible for this attack against what one official described as no less than the “jugular” of the US pipeline system. “It’s the most significant, successful attack on energy infrastructure we know of in the United States.,” energy researcher Amy Myers Jaffe told Politico. And rather than well-resourced hackers working with the imprimatur and backing of a nation-state (like China or Iran), experts have zeroed in on an outfit called DarkSide, described as a relatively new but experienced band of Russian hackers who have a quasi-professional operation and basically exploded onto the hacking scene.

It was only a little over a week ago now when we last noted that Russian hackers are getting increasingly brazen in their attacks on targets in the US — like the one against the Washington DC Metropolitan Police Department, which was targeted by a ransomware group calling itself Babuk. Unless the cops paid up, the hackers threatened to publicize sensitive information stolen from the department’s computer network.

The Colonial Pipeline attack, of course, is exponentially worse. For one thing, its network carries 45% of the fuel consumed by the US East Coast. Major installations like the Hartsfield-Jackson Atlanta International Airport, which until this year was ranked as the world’s busiest airport, receive fuel from Colonial Pipeline, as do military bases across the pipeline’s footprint.

Other key facts about Colonial Pipeline, and this security incident:

  • Colonial’s 5,500-mile system stretches from Houston, Texas, all the way up to New Jersey, and it transports more than 2.5 million barrels of fuel each day.
  • Don’t start looking for an impact on prices at the pump until the pipeline outage has lasted longer than three days, one expert told Reuters. (An important caveat: If Americans start rushing out to buy gas, thinking prices are going to spike soon and they want to beat that upswing, that could help cause the very problem they want to avoid).
  • The Southeast US seems to be most vulnerable, as things stand now. Major population centers on the East Coast can source fuel from elsewhere, including Europe if needed (though that brings its own problems). For a bit of additional historical context, when a leak in the Colonial Pipeline system in Georgia required the line to be shut down for more than a week in 2016, that led gas prices to climb by more than 30 cents a gallon.

President Biden on Sunday declared a state of emergency over this ransomware incident, which includes the hackers stealing almost 100GB of data from the pipeline operator’s network prior to locking the system and demanding payment.

On Sunday, Colonial Pipeline released a statement that read, in part: “While our mainlines (Lines 1,2,3, and 4) remain offline, some smaller lateral lines between terminals and delivery points are now operational. We are in the process of restoring service to other laterals and will bring our full system back online only when we believe it is safe to do so, and in full compliance with the approval of all federal regulations.”https://9125e40a17d2c8d7f0da29fa67d47e08.safeframe.googlesyndication.com/safeframe/1-0-38/html/container.html

Cybersecurity-focused journalist Kim Zetter has a fantastic Substack newsletter, Zero Day, that took a closer look at this incident in a new edition over the weekend. Among some of the highlights that jumped out at me in her reporting, she was told by a source who works for “a large midstream oil company that feeds fuel into Colonial’s pipeline” that his own company is having to scramble to figure out what to do with fuel in the meantime that they have sitting in tanks which needs to be delivered to Colonial. “We gotta find storage for refiners (and we) might run out (of storage) if it takes too long,” the source told Zetter. “Then refineries (will have to) cut back. Problem escalates.”

And even though Colonial has said only its corporate IT network was infected by the Russian gang’s ransomware — and that Colonial shut down its operational network out of caution — the unnamed source mentioned above also told Zero Day that he suspects, but doesn’t know for sure, that something Colonial needs in order to restart the pipeline might be locked in the ransomware attack. His guess is Colonial’s system for billing customers.

Source: bgr.com

Previous Post

#FixTheCountry Campaign – Government’s response and the #NanaIsFixingIt hashtag

Next Post

National Development Bank to commence operations in July 2021- What this means

Related Posts

carbon emissions

Ghana Begins Receiving Payments for Reducing Carbon Emissions in Forest Landscapes

30/01/2023
Employers and employees

The silent war between employers and employees will have no winner 

27/01/2023
Electric cars in Africa, ghanatalksbusiness.com

Africa’s push for electric vehicles

24/01/2023
Functioning dddress system, ghanatalksbusiness.com

The next “AMAZON” in Africa will need a Functioning Address System

23/01/2023
Catalyst fund, ghanatalksbusiness.com

Catalyst Fund announces $2 million investment into 10 startups accelerating Africa’s adaptation and resilience to climate change

20/01/2023
shifts in globalisation

Globalisation Redefined as Manufacturing Moves Closer to Home

20/01/2023
Next Post
African banks

National Development Bank to commence operations in July 2021- What this means

Blockchain and cryptocurrency

Embracing the Future: How your business will benefit from Blockchain & Cryptocurrency

  • About Us
  • Disclaimer
  • Privacy Policy
  • Advertising
  • Contact Us

© 2021 Ghana Talks Business

No Result
View All Result
  • Home
  • News
  • Premium
  • Business
  • Personal Finance
  • Lifestyle
    • Travel
    • Health
    • Retail/Fashion
  • Podcast
    • Business Chat
    • Retiring Richly
    • Sika Nkommo
  • Videos
  • Analysis/Features
  • Login

© 2021 Ghana Talks Business

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In