World The Colonial Pipeline is coming back online
Colonial Pipeline Has New Outage with 11,000 Gas Stations Shut, Prices at 7-Year Highs
While the company said that the newest shutdown wasn't related to another ransomware attack, consumers remain scared of continued shortages.On Tuesday, Colonial Pipeline announced that ongoing "hardening efforts" to restore fuel delivery had caused its pipeline's second shutdown. Unlike the pipeline's May 7 shutdown, the Tuesday shutdown was "not related to the ransomware or any type of reinfection," the company said in a series of tweets.
A major oil pipeline is coming back online after a several-day outage resulting from a cyberattack that caused gas prices to surge and gas stations in multiple states to experience shortages. After nearly a week of being shut down, the Colonial Pipeline Company announced on Wednesday that it was restarting pipeline operations and that the supply chain would “return to normal” within the next several days.
“Colonial Pipeline initiated the restart of pipeline operations today at approximately 5 p.m. ET,” the company said in a statement. “Some markets served by Colonial Pipeline may experience, or continue to experience, intermittent service interruptions during the start-up period. Colonial will move as much gasoline, diesel, and jet fuel as is safely possible and will continue to do so until markets return to normal.”
Colonial Pipeline gas shortages worsen as lines grow at the pump
Colonial Pipeline gas shortages worsen as lines grow at the pumpColonial Pipeline gas shortages widen: State-by-state breakdown
A ransomware attack from what appears to be a criminal hacker group based in Eastern Europe took the pipeline down, causing the Biden administration to declare a regional state of emergency to keep some of the oil supply moving until pipeline service was restored. The cyberattack looks to be theon an American energy system, and yet another example of cybersecurity vulnerabilities that President Joe Biden has promised to address.
The Colonial Pipeline Company reported on May 7 that it was the victim of a “cybersecurity attack” that “involves ransomware,” forcing the company to take some systems offline and disabling the pipeline. The Georgia-based companyit operates the largest petroleum pipeline in the United States, carrying 2.5 million barrels a day of gasoline, diesel, heating oil, and jet fuel on its 5,500-mile route from Texas to New Jersey.
Lindsey Graham Calls Out Biden on Colonial Pipeline Hack Response: 'Weak'
"Is anybody in Russia afraid of hitting us again?" the Republican senator said.A recent cyberattack forced the Colonial Pipeline to shutdown operations, resulting in widespread fuel shortages in several states. As of this weekend, the pipeline has resumed normal operations but Colonial reportedly paid millions of dollars in ransom to the cyber criminal group DarkSide.
The pipeline provides nearly half of the East Coast’s fuel supply, and a prolonged shutdown would have caused price increases and shortages to. That appears to have been averted with the restart, but price increases and shortages happened anyway, largely due to panic rather than supply. By Wednesday, the national average price for a gallon of regular gas had $3 for the first time since 2014 (though the price was already on an upswing before the pipeline shutdown), with bigger jumps in some states the pipeline serves, including Georgia, the Carolinas, and Virginia. Georgia Gov. Brian Kemp has the state’s gas tax to compensate for the increased prices. have put price gouging laws into effect.
Gas stationshas been another issue, though it’s believed those shortages are due to panic buying rather than a lack of supply. Despite various officials assuring that the shutdown will not significantly affect the gas supply and urging the public not to hoard it, gas stations — mostly in Southern states — have been swarmed by desperate customers until their tanks ran dry.
US pipeline still days away from operating after cyberattack
The closure will hurt fuel availability, push up prices and force refiners to cut production with no way to ship gas.The privately owned Colonial Pipeline Company said on Monday it was working on restarting in phases with “the goal of substantially restoring operational service by the end of the week.
“It’s more likely that fuel shortages will be a result of panic buying from consumers watching the headlines unfold, as opposed to shortages directly caused by the attack,” Marty Edwards, former director of, and vice president of operational technology security for Tenable, told Recode. “This is something we saw with Covid and grocery stores selling out of household items. Regardless, it shows the impact cybersecurity has on our everyday lives.”
“It’s much easier to understand the impact of a cyberattack if it directly impacts your day-to-day life,” he added.
The FBIthat the ransomware used is linked to the hacker group called DarkSide, believed to be based in Eastern Europe. DarkSide does not appear to be linked to any nation-states, that “our goal is to make money, [not to create] problems for society” and that it is apolitical.
Video: Governors push for cyber security infrastructure after pipeline attack (FOX News)
According to cybersecurity company Check Point, however, DarkSide supplies its ransomware services to its partners. “This means we know very little on the real threat actor behind the attack on Colonial, who can be any one of the partners of DarkSide,” Lotem Finkelstein, Check Point’s head of threat intelligence, told Recode. “What we do know is that to take down extensive operations like the Colonial pipeline reveals a sophisticated and well-designed cyber attack.”
U.S. Gasoline Futures Rise 1.5% After Colonial Pipeline Ransomware Attack
A cyberextortion attempt on the Colonial Pipeline, a major U.S. transport for gasoline and other fuel, sent gasoline costs soaring on Monday after a ransomware attack brought pipeline operations to a halt. © Mark Lennihan, File/AP Photo In this Sept. 8, 2008 file photo traffic on I-95 passes oil storage tanks owned by the Colonial Pipeline Company in Linden, N.J. A major pipeline that transports fuels along the East Coast says it had to stop operations because it was the victim of a cyberattack.
Colonial has not said if it paid the ransom or how much was demanded, but thethe company had no plans to do so and instead was working with a cybersecurity firm to restore the missing data and get its systems back online.
generally use malware to lock companies out of their own systems until a ransom is paid. They’ve surged in the past few years and paid alone — not counting those that aren’t reported, or any associated costs with having systems offline until the ransom is paid. Ransomware attacks have targeted everything from private businesses to the government to . The latter are especially attractive targets, given how urgent it is to get their systems back up as soon as possible.
have also been a target of ransomware and cyberattacks. The cybersecurity of America’s energy infrastructure has been a particular concern in recent years, with the Trump administration in May 2020 meant to secure America’s bulk power system with an executive order that would forbid the acquisition of equipment from countries that pose an “unacceptable risk to national security or the security and safety of American citizens.”
From dog poop to Nutella: the world's weirdest heists
There have been some incredibly ambitious heists around the world, stealing things one might expect like jewels, paintings, and cold hard cash. But what about those strange delinquents who aren’t out for an easy payday? From the strangely specific to the utterly inexplicable, check out this gallery to see some of the weirdest things people have ever stolen.
Details on how the hackers were able to gain access to Colonial’s systems haven’t been made public yet, butthat the attack began on May 6, with nearly 100 gigabytes of data stolen before Colonial’s computers were locked up. A ransom was demanded, both to stop the data from being leaked on the internet and to unlock the affected systems.
With the pipeline down, the company and its fuel suppliers are hoping that fuel trucks and possibly tankers will make up for some of the shortage. Colonialthat nearly 1 million barrels of oil have been delivered using alternative means, with plans to deliver 2 million more. Emergency waivers were given by the Department of Transportation to for trucks and some companies are chartering tankers to deliver the fuel by ship. The latter option would likely mean , a 1920 law that requires domestic shipping to be done on ships that are built, owned, and operated by American citizens or permanent residents. This has been done for other temporary fuel crises; for example, in the wake of Hurricanes Katrina, Rita, and Sandy. But these measures won’t be enough to fully replace the oil that the pipeline delivers.
Concern over the attack underscores two of the Biden administration’s stated priorities: improving American infrastructure, and cybersecurity. The large-scale Russian, disclosed in December 2020, was shown to have affected several federal government systems. Biden said then that as president, “my administration will make cybersecurity a top priority at every level of government — and we will make dealing with this breach a top priority from the moment we take office. ... I will not stand idly by in the face of cyber assaults on our nation.”
United States: Cyber attack on a pipeline operator, the state of emergency has been declared
© Via Reuters - Colonial Pipeline Petroleum Storage Site of Colonial Pipeline Company in Charlotte, North Carolina (Image D 'drawing). In the United States, the fuel supply of the coast is heavily disturbed after a cyber attack. The operation targeted the largest oil pipeline. President Joe Biden has just declared the state of emergency. with our correspondent in the United States, Loubna Anaki is a race against the watch that takes place at this moment in colonial Pipeline .
Biden has also unveiled athat includes $100 billion to modernize the electrical grid, which cybersecurity experts hoped would improved cybersecurity measures. Biden also suspended the Trump bulk power system executive order to roll out .
And, on Wednesday, Bidenmeant to strengthen the federal government’s cybersecurity standards for software and technology services it uses, which a senior administration official described as a fundamental shift in the federal government’s approach to cybersecurity incidents — away from spot responses and toward trying to prevent them from happening in the first place. The order has been in the works since shortly after Biden took office, the official said.
But these measures are more focused on preventing another SolarWinds-like attack. Federal officialsthey don’t think the order does enough to prevent a sophisticated attack, nor would it apply to a privately held company like Colonial. The oil pipeline attack might strengthen demands for cybersecurity standards for companies that play an important role in Americans’ lives. As it stands, it’s often left up to them about the security measures they use to protect critical systems.
“Ransomware is about extortion and extortion is about pressure,” James Shank, chief architect of community services at cybersecurity company Team Cymru, told Recode. “Impacting fuel distribution gets peoples’ attention right away. ... This emphasizes the need for a coordinated effort that bridges public and private sector capabilities to protect our national interests.”
Assuming the pipeline’s services are fully restored soon, it shouldn’t cause a major or prolonged disruption to the fuel supply chain or hit consumers’ wallets too hard. But the next one — and many cybersecurity experts fear there will be a next one, or several next ones — could be a lot worse if measures aren’t taken at the highest levels to prevent it.
“The shutdown of the Colonial Pipeline by cyber-criminals highlights a massive problem — many of the companies running our critical infrastructure have left their systems vulnerable to hackers through dangerously negligent cybersecurity,” Sen. Ron Wyden (D-OR) said in a statement. “Congress must take action to hold critical infrastructure companies accountable and force them to secure their computer systems.”
a colonial pipeline paralysis cyberset that routes 45% of fuels consumed on the east coast of the United States .
© supplied by the colonial Pipeline Tribune, one of the largest operators of American pipelines, has had to cease all its operations Friday 7 May After being a victim of a cyberrattaker, the company has shown the company that routes gasoline and diesel on more than 8,800 km of pipelines across the United States.