Colonial Pipeline Paid Roughly $5 Million in Bitcoin to Hackers

Colonial Pipeline paid its extortionists roughly 75 Bitcoin, or nearly $5 million, to recover its stolen data, according to five people ...


Colonial Pipeline paid its extortionists roughly 75 Bitcoin, or nearly $5 million, to recover its stolen data, according to five people briefed on the transaction.

The payment came after hackers last week held up Colonial Pipeline’s business networks with ransomware, a form of malware that encrypts data until the victim pays, and threatened to release it online. Colonial Pipeline pre-emptively shut down its pipeline operations to keep the ransomware from spreading and because it had no way to bill customers with its business and accounting networks offline.

The shutdown of the company’s network, which includes 5,500 miles of pipeline that supplies nearly half the gas, diesel and jet fuel to the East Coast, triggered a cascading crisis that led to emergency meetings at the White House, a jump in gas prices, panic buying at the gas pumps, and forced some airlines to make fuel stops on long-haul flights.

The ransom payment was first reported by Bloomberg. A spokeswoman for Colonial declined to confirm or deny that the company had paid a ransom.

President Biden also declined to answer whether Colonial Pipeline had paid its extortionists in a press briefing on Thursday. He did not rule out the possibility that the administration would target the hackers, a ransomware outfit called DarkSide, with a retaliatory strike. He said the United States would pursue “a measure to disrupt their ability to operate.”

Jen Psaki, the White House press secretary, said in a separate briefing, “It’s the recommendation of the F.B.I. to not pay ransom in these cases,” because it can incentivize hackers to conduct more attacks. She added that “private sector entities or companies are going to make their own decisions.”

DarkSide has tried to distance itself from politics. In a statement on its website, the group said it tried to avoid being political — an effort perhaps to thwart a pre-emptive strike by the United States, which took a major ransomware conduit offline last year to head off an attack on the 2020 election.

On Thursday, eight websites associated with DarkSide were pulled offline. It was not immediately clear why. The United States Cyber Command referred questions to the National Security Council, which declined to comment.

It has taken several days for Colonial to begin bringing its pipeline back online, a process that officials said would take time. Mr. Biden encouraged Americans not to panic-buy gas and warned gas companies to refrain from price gouging.

“This is not like flicking on a light switch,” he said, noting that Colonial’s pipeline had never before been shut down.

Colonial has not shared many details about the incident, or why it was necessary to shut down the pipeline, which other operators sequester from their business operations for safety. Cybersecurity experts have said the attack and its fallout demonstrated a lack of cyber resilience and planning.

Kim Zetter, a cybersecurity journalist, first reported that Colonial had shut down its pipeline partly because its billing systems were taken offline and it had no way to charge customers.

Many organizations across the United States, including police departments, have opted to pay their ransomware extortionists rather than suffer the loss of critical data or incur the costs of rebuilding computer systems from scratch.

In a separate ransomware attack on the Washington, D.C., Metropolitan Police Department, hackers said the price the police offered to pay was “too small” and dumped 250 gigabytes of the department’s data online this week, including databases that track gang members and social media preservation requests.

“This is an indicator of why we should pay,” the hackers, called Babuk, said in a post online. “The police also wanted to pay us, but the amount turned out to be too small. Look at this wall of shame,” they wrote, “you have every chance of not getting there. Just pay us!”

Julian E. Barnes contributed reporting.

Source Link

COMMENTS

Name

Africa,822,Americas,4125,Art & Culture,14983,Arts,6510,Arts & Design,1676,Asia,3288,Automobile,464,Baseball,638,Basketball,531,Books,3903,Business,5356,Celebrity,2633,Cricket,648,Crime,158,Cryptocurrency,1588,Dance,672,Defense,836,Diplomatic Relations,2496,Economy,1151,Editorial,260,Education,1257,Elections,308,Energy & Environment,3076,Entertainment,22736,Environment,3627,Europe,4238,Faith & Religion,235,Family & Life,817,Fashion & Style,3276,Finance,20026,Food & Drink,3759,Football,1111,Games,97,Gossip,10289,Health & Fitness,4104,Health Care,937,Hockey,228,Home & Garden,920,Humour,994,Latin America,49,Lifestyle,17133,Media,527,Middle East,1538,Movies,1736,Music,2662,Opinion,3096,Other,11969,Other Sports,5058,Political News,11324,Political Protests,2324,Politics,17761,Real Estate,1872,Relationship,106,Retail,3116,Science,2643,Science & Tech,10067,Soccer,244,Space & Cosmos,349,Sports,12285,Technology,3448,Tennis,582,Theater,1692,Transportation,313,Travel,2580,TV,3697,US,305,US Sports,1481,Video News,3531,War & Conflict,1069,Weird News,998,World,16551,
ltr
item
Newsrust - US Top News: Colonial Pipeline Paid Roughly $5 Million in Bitcoin to Hackers
Colonial Pipeline Paid Roughly $5 Million in Bitcoin to Hackers
https://static01.nyt.com/images/2021/05/13/business/13economy-briefing-ransom/13economy-briefing-ransom-facebookJumbo.jpg
Newsrust - US Top News
https://www.newsrust.com/2021/05/colonial-pipeline-paid-roughly-5_13.html
https://www.newsrust.com/
https://www.newsrust.com/
https://www.newsrust.com/2021/05/colonial-pipeline-paid-roughly-5_13.html
true
732247599994189300
UTF-8
Loaded All Posts Not found any posts VIEW ALL Readmore Reply Cancel reply Delete By Home PAGES POSTS View All RECOMMENDED FOR YOU LABEL ARCHIVE SEARCH ALL POSTS Not found any post match with your request Back Home Sunday Monday Tuesday Wednesday Thursday Friday Saturday Sun Mon Tue Wed Thu Fri Sat January February March April May June July August September October November December Jan Feb Mar Apr May Jun Jul Aug Sep Oct Nov Dec just now 1 minute ago $$1$$ minutes ago 1 hour ago $$1$$ hours ago Yesterday $$1$$ days ago $$1$$ weeks ago more than 5 weeks ago Followers Follow THIS PREMIUM CONTENT IS LOCKED STEP 1: Share to a social network STEP 2: Click the link on your social network Copy All Code Select All Code All codes were copied to your clipboard Can not copy the codes / texts, please press [CTRL]+[C] (or CMD+C with Mac) to copy Table of Content