Search
  • Vitality Solutions

The DarkSide of the Ransomware Pipeline




Late on Friday, May 7th, one of the US’s largest gasoline pipelines was preemptively shut down by operator Colonial Pipeline, because their corporate computer networks were affected by Ransomware-as-a-Service authored and maintained by the group DarkSide. This 5500 mile pipeline transports about 45% of the East Coast’s fuel supplies, and at the time of this blog, Colonial Pipeline had not returned to full operation. Now, mind you, the ransomware did not directly cause the pipeline to shut down - rather, Colonial shut down operations voluntarily out of an abundance of caution. But until they can be sure that the adversary leveraging the DarkSide ransomware for the attack does not have the ability to affect operations, the pipeline will remain dry. Colonial is hoping to get the pipeline back to operation by the end of this week.

https://www.splunk.com/en_us/blog/security/the-darkside-of-the-ransomware-pipeline.html


Here are some great and informative links to this Ransomware attack:


https://www.fireeye.com/blog/threat-research/2021/05/shining-a-light-on-darkside-ransomware-operations.html


https://www.wired.com/story/darkside-ransomware-colonial-pipeline-response/


https://www.zdnet.com/article/colonial-pipeline-ransomware-attack-everything-you-need-to-know/



Feel free to let us know if you have any questions or if you want to know how we protect your business from a Ransomware attack!


Thanks,


IT Support



5 views