Page 1 of 2 12 LastLast
Results 1 to 25 of 28
  1. #1
    Thailand Expat misskit's Avatar
    Join Date
    Dec 2009
    Last Online
    @
    Location
    Chiang Mai
    Posts
    48,094

    Cyber attack shuts down top U.S. fuel pipeline network

    NEW YORK, May 8 (Reuters) - Top U.S. fuel pipeline operator Colonial Pipeline has shut its entire network, the source of nearly half of the U.S. East Coast's fuel supply, after a cyber attack that the company said was caused by ransomware.


    The incident is one of the most disruptive digital ransom operations ever reported and has drawn attention to how critical U.S. energy infrastructure is vulnerable to hackers. The shutdown has raised fears of a price spike at gasoline pumps ahead of peak summer driving season if it persists.


    Colonial transports 2.5 million barrels per day of gasoline, diesel, jet fuel and other refined products through 5,500 miles (8,850 km) of pipelines linking refiners on the Gulf Coast to the eastern and southern United States.


    Colonial said it shut down systems to contain the threat after learning of the attack on Friday. That action also temporarily halted operations and affected some of its IT systems, the company said.


    While the U.S. government investigation is in early stages, one former official and two industry sources said the hackers are likely a professional cybercriminal group. The former official said investigators are looking at a group dubbed "DarkSide," known for deploying ransomware and extorting victims while avoiding targets in post-Soviet states.


    Colonial said the incident involved the use of ransomware, a type of malware designed to lock down systems by encrypting data and demanding payment to regain access.


    Colonial has engaged a cybersecurity firm to launch an investigation and contacted law enforcement and federal agencies, it said.


    Cybersecurity company FireEye has been brought in to respond to the attack, the cybersecurity industry sources said. FireEye declined to comment.


    U.S. government bodies said they were aware of the situation. The Department of Energy said it was monitoring potential impacts to the nation's energy supply, while both the Cybersecurity and Infrastructure Security Agency and the Transportation Security Administration told Reuters they were working on the situation.


    "We are engaged with the company and our interagency partners regarding the situation. This underscores the threat that ransomware poses to organizations regardless of size or sector," said Eric Goldstein, executive assistant director of the cybersecurity division at CISA.


    Colonial did not give further details or say how long its pipelines would be shut. The privately held, Georgia-based company is owned by CDPQ Colonial Partners L.P., IFM (US) Colonial Pipeline 2 LLC, KKR-Keats Pipeline Investors L.P., Koch Capital Investments Company LLC and Shell Midstream Operating LLC.


    "Cybersecurity vulnerabilities have become a systemic issue," said Algirde Pipikaite, cyber strategy lead at the World Economic Forum's Centre for Cybersecurity.


    "Unless cybersecurity measures are embedded in a technology's development phase, we are likely to see more frequent attacks on industrial systems like oil and gas pipelines or water treatment plants," Pipikaite added.


    After the shutdown was first reported on Friday, gasoline futures on the New York Mercantile Exchange gained 0.6% while diesel futures rose 1.1%, both outpacing gains in crude oil. Gulf Coast cash prices for gasoline and diesel edged lower on prospects that supplies could accumulate in the region.


    "As every day goes by, it becomes a greater and greater impact on Gulf Coast oil refining," said Andrew Lipow, president of consultancy Lipow Oil Associates. "Refiners would have to react by reducing crude processing because they've lost part of the distribution system."


    If the system is shut for four or five days, the market could see sporadic outages at fuel terminals that depend on the pipeline for deliveries, he said.


    Gulf Coast prices could weaken further, while prices in New York Harbor could rise, one market participant said - gains that could portend increases at the Northeast pumps.


    "This is a big deal, and if manual overrides or backups aren't available, the mitigation of this incident may take more time than we'd like," said Chris Bronk, an associate professor of computer information systems at the University of Houston and a former senior advisor to the U.S. State Department.


    The American Petroleum Institute, a top oil industry trade group, and the American Automobile Association both said they were monitoring the situation.


    Oil company Exxon Mobil Corp said its Gulf Coast plants were operating normally, and a Royal Dutch Shell PLC spokesman declined to comment. Phillips 66, which operates refineries on the Gulf Coast, said it was monitoring developments.


    Ben Sasse, a Republican senator from Nebraska and a member of the Senate Select Committee on Intelligence, said the cyberattack was a warning of things to come.


    "This is a play that will be run again, and we're not adequately prepared," he said, adding lawmakers should pass an infrastructure plan that hardens sectors against these attacks.


    Colonial had previously shut down its gasoline and distillate lines during Hurricane Harvey, which hit the Gulf Coast in 2017. That contributed to tight supplies and gasoline price rises in the United States after the hurricane forced many Gulf refineries to shut down.


    East Coast gasoline cash prices rose to the highest since 2012 during Hurricane Harvey and have not gone higher since, while diesel prices rose to a more than two-year high, Refinitiv Eikon data showed.


    Cyber attack shuts down top U.S. fuel pipeline network

  2. #2
    In Uranus
    bsnub's Avatar
    Join Date
    Jun 2009
    Last Online
    @
    Posts
    30,429
    Quote Originally Posted by misskit View Post
    Colonial Pipeline
    It could not have happened to a more nasty company of trumpanzee right wing morons partially owned by the last Kock brother.

    Fuck them.

  3. #3
    Thailand Expat russellsimpson's Avatar
    Join Date
    Oct 2016
    Last Online
    26-03-2024 @ 05:23 AM
    Location
    vancouver
    Posts
    1,785
    Terrible.

    I'll bet it turns out to be those nasty Soviets, or Chinese, or Iranians or some right wing groups or, or, or....

    One thing we do know for sure is when prices go up they never return to price levels before the incident.

    We'll have to wait and see.
    A true diplomat is a person who can tell you to go to hell in such a manner that you will be asking for directions.

  4. #4
    Member

    Join Date
    Jan 2020
    Last Online
    01-08-2023 @ 11:33 PM
    Posts
    510
    "We're just a utility company no one's ever heard of, we'll never be a target."

  5. #5
    Thailand Expat HermantheGerman's Avatar
    Join Date
    Mar 2006
    Last Online
    27-03-2024 @ 05:25 AM
    Location
    Germany/Satthahip
    Posts
    6,675
    Quote Originally Posted by russellsimpson View Post

    One thing we do know for sure is when prices go up they never return to price levels before the incident.
    now that's a line of crap

  6. #6
    Thailand Expat
    Klondyke's Avatar
    Join Date
    Aug 2014
    Last Online
    26-09-2021 @ 10:28 PM
    Posts
    10,105
    Quote Originally Posted by russellsimpson View Post
    Terrible.

    I'll bet it turns out to be those nasty Soviets, or Chinese, or Iranians or some right wing groups or, or, or....

    One thing we do know for sure is when prices go up they never return to price levels before the incident.

    We'll have to wait and see.
    (Exceptionally, by somebody else. But you never know...)

    Biden says no evidence Russian government was involved in pipeline hack
    Biden said that Putin still bears "some responsibility" to respond since DarkSide, a cybercrime gang the FBI says is responsible for the attack on a U.S. gasoline line.

    WASHINGTON — President Joe Biden said Monday that there was no evidence that the Russian government was involved with the Colonial Pipeline ransomware attack that shut down a major United States fuel pipeline on Friday.

    "I'm going to have a conversation, I'm going to be meeting with President Putin," Biden said. "And, so far, there is no evidence based on, from our intelligence people, that Russia is involved, although there is evidence that the actor's ransomware is in Russia. They have some responsibility to deal with this."

    Biden did not say when or where he would meet with Putin, although he has previously said he hoped to meet with the Russian leader in Europe in June. The FBI said Monday that the DarkSide ransomware, a Russian cybercrime gang referred to by the same name, was responsible for the attack.

    Read more
    Biden says no evidence Russian government was involved in pipeline hack

  7. #7
    Member

    Join Date
    Jan 2020
    Last Online
    01-08-2023 @ 11:33 PM
    Posts
    510

    DarkSide ransomware vows to vet targets after pipeline cyberattack

    A penitent ransomware gang?

    The DarkSide ransomware gang posted a new "press release" today stating that they are apolitical and will vet all targets before they are attacked. Last week, the ransomware gang encrypted the network for the Colonial Pipeline, the largest fuel pipeline in the United States.

    Today, the DarkSide ransomware gang issued a press statement stating that their organization is 'apolitical' and is not associated with any government.

    https://www.bleepstatic.com/images/n...ss-release.jpg

    DarkSide is operated as a Ransomware-as-a-Service, which consists of two groups of people. One group is the core operators and developers of the ransomware, and the other is its affiliates that are recruited to hack networks and deploy the ransomware.

    As part of this arrangement, the core operators earn approximately 20-30% of any ransom payment, and the rest goes to the affiliate.


  8. #8
    Thailand Expat tomcat's Avatar
    Join Date
    Nov 2005
    Last Online
    @
    Posts
    17,216
    ...lock 'em up...

  9. #9
    Thailand Expat OhOh's Avatar
    Join Date
    Jul 2010
    Last Online
    Yesterday @ 08:43 PM
    Location
    Where troubles melt like lemon drops
    Posts
    25,222
    Wrong thread
    Last edited by OhOh; 13-05-2021 at 03:20 PM.

  10. #10
    Thailand Expat
    Klondyke's Avatar
    Join Date
    Aug 2014
    Last Online
    26-09-2021 @ 10:28 PM
    Posts
    10,105
    Cannot they just send some people and open the valve?

    Cyber attack shuts down top U.S. fuel pipeline network-pipeline-jpg

  11. #11
    Member

    Join Date
    Jan 2020
    Last Online
    01-08-2023 @ 11:33 PM
    Posts
    510
    And still Colonial paid the $5 million ransom ---- last Friday.

    Bloomberg - Are you a robot?

  12. #12
    Thailand Expat
    Klondyke's Avatar
    Join Date
    Aug 2014
    Last Online
    26-09-2021 @ 10:28 PM
    Posts
    10,105
    Quote Originally Posted by TTraveler View Post
    And still Colonial paid the $5 million ransom ---- last Friday.

    Bloomberg - Are you a robot?
    Pity, such a big nuisance and not to throw it on Russia?

  13. #13
    Thailand Expat harrybarracuda's Avatar
    Join Date
    Sep 2009
    Last Online
    @
    Posts
    96,555
    I must admit the sight of trumpanzees filling plastic bags with petrol is amusing.

    It seems the operator has paid around $5 million to make it go away.

  14. #14
    Thailand Expat harrybarracuda's Avatar
    Join Date
    Sep 2009
    Last Online
    @
    Posts
    96,555
    Quote Originally Posted by TTraveler View Post
    A strong signal that they are operating from a country that effectively gives them protection, but which is probably a bit upset that it now faces reprisals.

    Trivia question: Which country called Russia would try and use this 'press release; to try and distance itself from its proteges?

  15. #15
    Thailand Expat OhOh's Avatar
    Join Date
    Jul 2010
    Last Online
    Yesterday @ 08:43 PM
    Location
    Where troubles melt like lemon drops
    Posts
    25,222
    Quote Originally Posted by TTraveler View Post
    And still Colonial paid the $5 million ransom ---- last Friday.
    Paid in bitcoin to an anonymous wallet, allegedly.

    Does The Lord posses one 'arry?

    Quote Originally Posted by harrybarracuda View Post
    Which country called Russia
    Nigeria?

    Aren't you on holiday?

    Where's your report from the Myanmar border?

  16. #16
    Thailand Expat misskit's Avatar
    Join Date
    Dec 2009
    Last Online
    @
    Location
    Chiang Mai
    Posts
    48,094
    Servers Of Colonial Pipeline Hacker Darkside Forced Down: Security Firm


    Servers for Darkside were taken down by unknown actors Friday, a week after the cyber extortionist forced the shutdown of a large US oil pipeline in a ransomware scam, a US cyber security firm said.


    Recorded Future, the security firm, said in a post that the allegedly Russia-based Darkside had admitted in a web post that it lost access to certain servers used for its web blog and for payments.


    Accessed via TOR on the dark web, the Darkside site address showed a notice saying it could not be found.


    Recorded Future threat intelligence analyst Dmitry Smilyanets said he found a Russian language comment on a ransomware website ostensibly from "Darksupp", described as the operator of Darkside.


    "A few hours ago, we lost access to the public part of our infrastructure, namely: Blog. Payment server. DOS servers," Darksupp wrote.


    "The Darkside operator also reported that cryptocurrency funds were also withdrawn from the gang's payment server, which was hosting ransom payments made by victims," said Recorded Future.


    While there was no evidence of who might have forced down Darkside's website, the twitter account of a US military cyber warfare group, the 780th Military Intelligence Brigade, retweeted the Recorded Future report on Friday.

    Darkside, which only surfaced online late last year, was behind the attack on Colonial Pipeline that forced the shutdown of its network shipping gasoline, diesel and aviation fuel across much of the eastern half of the United States.


    After Darkside froze Colonial's computer systems last week and demanded millions in ransom to unlock them, Colonial shut down its pipeline, sparking fuel shortages and long lines at gas stations across much of the southeast.



    Activision's Rally Is Paused. One Analyst Says the Stock Is Ready to Break Out. | Barron's

  17. #17
    Member

    Join Date
    Jan 2020
    Last Online
    01-08-2023 @ 11:33 PM
    Posts
    510
    Now it's being reported that DarkSide is shutting down permanently.
    "The criminal group believed to be behind a cyber attack that disrupted U.S. gasoline deliveries has told associates it is closing, say security research firms"

    Colonial Pipeline Hacker DarkSide Says It Will Shut Operations - WSJ

  18. #18
    Member

    Join Date
    Jan 2020
    Last Online
    01-08-2023 @ 11:33 PM
    Posts
    510
    Coincidently: Popular Russian hacking forum XSS bans all ransomware topics

    Popular Russian hacking forum XSS bans all ransomware topics

  19. #19
    Thailand Expat harrybarracuda's Avatar
    Join Date
    Sep 2009
    Last Online
    @
    Posts
    96,555
    Irish Health Service has been hit.

    AXA Thailand has been hit.

  20. #20
    Thailand Expat misskit's Avatar
    Join Date
    Dec 2009
    Last Online
    @
    Location
    Chiang Mai
    Posts
    48,094
    US recovers millions in cryptocurrency paid to Colonial Pipeline ransomware hackers

    Washington (CNN)US investigators have recovered millions in cryptocurrency they say was paid in ransom to hackers whose attack prompted the shutdown of the key East Coast pipeline last month, the Justice Department announced Monday.


    The announcement confirms CNN's earlier reporting about the FBI-led operation, which was carried out with cooperation from Colonial Pipeline, the company that fell victim to the ransomware attack in question.


    Specifically, the Justice Department said it seized approximately $2.3 million in Bitcoins paid to individuals in a criminal hacking group known as DarkSide. The FBI said it has been investigating DarkSide, which is said to share its malware tools with other criminal hackers, for over a year.


    The ransom recovery, which is the first seizure undertaken by the recently created DOJ digital extortion taskforce, is a rare outcome for a company that has fallen victim to a debilitating cyberattack in the booming criminal business of ransomware.

    MORE Colonial Pipeline: US recovers millions in cryptocurrency paid to ransomware hackers - CNNPolitics

  21. #21
    Thailand Expat harrybarracuda's Avatar
    Join Date
    Sep 2009
    Last Online
    @
    Posts
    96,555
    I hope they keep it.

  22. #22
    Thailand Expat OhOh's Avatar
    Join Date
    Jul 2010
    Last Online
    Yesterday @ 08:43 PM
    Location
    Where troubles melt like lemon drops
    Posts
    25,222
    From anonymous uncrackable bitcoin wallets.

    Store of value, until ....




  23. #23
    Thailand Expat harrybarracuda's Avatar
    Join Date
    Sep 2009
    Last Online
    @
    Posts
    96,555
    Quote Originally Posted by OhOh View Post
    From anonymous uncrackable bitcoin wallets.
    You don't understand, do you?

  24. #24
    Thailand Expat OhOh's Avatar
    Join Date
    Jul 2010
    Last Online
    Yesterday @ 08:43 PM
    Location
    Where troubles melt like lemon drops
    Posts
    25,222
    Quote Originally Posted by OhOh View Post
    From anonymous uncrackable bitcoin wallets.
    Quote Originally Posted by misskit View Post
    seized approximately $2.3 million in Bitcoins paid to individuals
    Obviously not.

    Please explain how an allegedly foreign "anonymous uncrackable bitcoin wallet" can be "seized", by ameristan.

  25. #25
    Thailand Expat lom's Avatar
    Join Date
    Jan 2006
    Last Online
    @
    Location
    on my way
    Posts
    11,453
    Quote Originally Posted by OhOh View Post
    Please explain how an allegedly foreign "anonymous uncrackable bitcoin wallet" can be "seized", by ameristan.
    Who said they cracked it? They only need the password..

Page 1 of 2 12 LastLast

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •