Colonial pipeline hack: Key takeaways from Biden’s first energy crisis

Link: https://www.axios.com/colonial-pipeline-hack-biden-energy-crisis-e004b745-43ee-4963-81d7-b10765215a9d.html

Excerpt:

It’s a stunning real-world example of how many types of infrastructure remain vulnerable to hackers.

The Atlantic Council’s Cynthia Quarterman, a top Transportation Department official in the Obama era, said it “exposes the soft underbelly of the nation’s critical energy infrastructure.”

Quarterman, in comments on the council’s site, notes that if a company like Colonial can be breached, smaller companies are even more vulnerable to attack.

Author(s): Ben Geman

Publication Date: 13 May 2021

Publication Site: Axios

How To Stop Ransomware Attacks? 1 Proposal Would Prohibit Victims From Paying Up

Link: https://www.npr.org/2021/05/13/996299367/how-to-stop-ransomware-attacks-1-proposal-would-prohibit-victims-from-paying-up

Excerpt:

Colonial has acknowledged that its computer networks were hit by a ransomware attack — in essence, an attack in which a hacker or criminal group breaks in and encrypts the contents of a victim’s computers until a ransom is paid. And while the company has declined to say whether it has offered a ransom, the attack is focusing new attention on a potentially radical proposal to stem the growing threat posed by ransomware: making it illegal for targets to pay their attackers.

….

Callow says a ban is just part of the answer, and in its report, the ransomware task force said governments would need to ease the transition before moving to a world where ransom payments are prohibited. Changes would need to be phased in, it said, and allow time for governments to set up protection and support programs for victims. A bipartisan bill introduced last year in the Senate, for example, called for study into the creation of a federal fund to help support the recovery and response to significant cyber-incidents.

The clock may already be ticking — at least for some. In what is likely a first, the global insurance company Axa announced last week that it would stop offering policies in France that reimburse customers for extortion payments made to cybercriminals.

Author(s): Jason Breslow

Publication Date: 13 May 2021

Publication Site: NPR

Petrol supplies dwindle in US south-east amid pipeline outage blamed on DarkSide cyber attack

Link: https://www.abc.net.au/news/2021-05-12/us-petrol-supplies-dwindle-amid-pipeline-outage-darkside-cyber/100132902?fbclid=IwAR10_bx4CrmZ6gPu3Zy2x8JzWBacbPI8fcK44IOWkJNy9izpoN2dTinCt2U

Graphic:

Excerpt:

Panic buying has driven demand up by 20 per cent, one tracking firm says

Unleaded petrol reached its highest price since November 2014

The FBI accused the DarkSide criminal gang of carrying out the ransomware attack

Publication Date: 12 May 2021

Publication Site: ABC News Australia

Several states declare emergency over Colonial Pipeline shutdown

Link: https://www.axios.com/colonial-pipeline-shutdown-fuel-shortages-lines-ef087928-de36-41b4-ba26-a7fc0bf74439.html?mc_cid=c0c5baa839&mc_eid=983bcf5922

Excerpt:

Reports of fuel shortages across the U.S. emerged on Tuesday as the national average for gasoline prices soared to its highest level since 2014 amid a key fuel pipeline shut down, per Bloomberg.

What’s happening: Operator Colonial Pipeline aims to have service restored by the week’s end following last Friday’s ransomware attack that shut down some 5,500 miles of pipeline from Texas to New Jersey. The governors of FloridaGeorgiaVirginia and North Carolina declared states of emergency Tuesday due to shortage concerns.

Author(s): Rebecca Falconer

Publication Date: 12 May 2021

Publication Site: Axios

What the Colonial Pipeline ransomware attack can teach us about national cybersecurity defense

Link: https://thenextweb.com/news/what-the-colonial-pipeline-ransomware-attack-can-teach-us-about-national-cybersecurity-defense-syndication?mc_cid=c0c5baa839&mc_eid=983bcf5922

Excerpt:

There are no easy solutions to shoring up U.S. national cyber defenses.

Software supply chains and private sector infrastructure companies are vulnerable to hackers.

Many U.S. companies outsource software development because of a talent shortage, and some of that outsourcing goes to companies in Eastern Europe that are vulnerable to Russian operatives.

U.S. national cyber defense is split between the Department of Defense and the Department of Homeland Security, which leaves gaps in authority.

Author(s): Terry Thompson

Publication Date: 12 May 2021

Publication Site: The Next Web

Ransomware crooks post cops’ psych evaluations after talks with DC police stall

Link: https://arstechnica.com/gadgets/2021/05/ransomware-crooks-post-cops-psych-evaluations-after-talks-with-dc-police-stall/?mc_cid=c0c5baa839&mc_eid=983bcf5922

Excerpt:

A ransomware gang that hacked the District of Columbia’s Metropolitan Police Department (MPD) in April posted personnel records on Tuesday that revealed highly sensitive details for almost two dozen officers, including the results of psychological assessments and polygraph tests; driver’s license images; fingerprints; social security numbers; dates of birth; and residential, financial, and marriage histories.

….

The operators demanded $4 million in exchange for a promise not to publish any more information and provide a decryption key that would restore the data.

“You are a state institution, treat your data with respect and think about their price,” the operators said, according to the transcript. “They cost even more than 4,000,000, do you understand that?”

“Our final proposal is to offer to pay $100,000 to prevent the release of the stolen data,” the MPD negotiator eventually replied. “If this offer is not acceptable, then it seems our conversation is complete. I think we understand the consequences of not reaching an agreement. We are OK with that outcome.”

Author(s): Dan Goodin

Publication Date: 11 May 2021

Publication Site: Ars Technica