World Russia Denies Involvement in Colonial Pipeline Cyber Attack: Kremlin
Major US pipeline halts operations after ransomware attack
WASHINGTON (AP) — The federal government is working with the Georgia-based company that shut down a major pipeline transporting fuel across the East Coast after a ransomware attack, the White House says. The government is planning for various scenarios and working with state and local authorities on measures to mitigate any potential supply issues, officials said Saturday. The attack is unlikely to affect gasoline supply and prices unless it leads to a prolonged shutdown, experts said. Colonial Pipeline did not say what was demanded or who made the demand.
Russia has emphatically denied any involvement in the ransomware attack that, forcing the company to shut down operations and prompting the Biden administration to on Sunday.
The pipeline, which stretches more than 5,500 miles and carries 45 percent of the East Coast's supply of diesel, petrol and jet fuel, was taken offline over the weekend, disrupting fuel supply across eastern parts of the country and pushing prices up.
What is ransomware? Everything you need to know about one of the biggest menaces on the web
Updated: Everything you need to know about ransomware: how it started, why it's booming, how to protect against it.What is ransomware?
The company was forced to take IT systems offline and shut down operations on Friday last week as it announced it had hired a third-party cybersecurity firm to investigate the targeted ransomware attack.
Hacker grouphas since , even issuing an apology, saying its goal was not in "creating problems for society" but "to make money." However, many have speculated Russian involvement in the hack.
Addressing reporters on Tuesday, Kremlin Spokesman Dmitry Preskov denied any such allegations. "Russia has nothing to do with these hacker attacks, nor with the previous hacker attacks," Preskov said, as reported by Russian news agency TASS. "We categorically reject any accusation against us."
EXPLAINER: Why the Colonial Pipeline hack matters
NEW YORK (AP) — A cyberattack on a critical U.S. pipeline is sending ripple effects across the economy, highlighting cybersecurity vulnerabilities in the nation's aging energy infrastructure. The Colonial Pipeline, which delivers about 45% of the fuel used along the Eastern seaboard, shut down Friday after a ransomware attack by gang of criminal hackers that calls itself DarkSide. Depending on how long the shutdown lasts, the incident could impact millions of consumers. © Provided by Associated Press FILE - In this Sept. 20, 2016 file photo vehicles are seen near Colonial Pipeline in Helena, Ala.
A number of cybersecurity researchers, including firms contacted byNews, speculated that the cybercriminal gang could be Russian, as their software avoids encrypting any computer systems where the language is set as Russian.
During a White House briefing on Monday, Presidentsaid that although U.S. intelligence had found no evidence to link the attack with the Russian government, he believed the country had "some responsibility to deal with" the issue since some evidence did indicate that the ransomware may have originated in Russia.
Ransomware attacks typically involve a hacker taking control of a computer system and installing software that requires the user to pay a fee before their computer system is returned to them.
"I'm going to be meeting with President Putin and so far there is no evidence, based on our intelligence people, that Russia is involved," Biden said. "Although, there's evidence that the actors' ransomware is in Russia, they have some responsibility to deal with this."
Colonial Pipeline wasn't the first and won't be the last cyber pirate attack
The fact that an apparent group of cyber pirates -- a secret criminal nerd syndicate -- can take down the aorta of fuel for the East Coast should be sending shockwaves through the country. © Michael M. Santiago/Getty Images WOODBRIDGE, NEW JERSEY - MAY 10: Fuel holding tanks are seen at Colonial Pipeline's Linden Junction Tank Farm on May 10, 2021 in Woodbridge, New Jersey. We've all read this year about the pandemic threatening supply chains and about climate change causing more freak weather that threatens power grids.
However, Preskov hit back saying the U.S. is "refusing to cooperate" to counter cyber-threats.
"We can only regret that the U.S. is refusing to cooperate with us in any way to counter cyber-threats," Preskov said. "We believe that such cooperation - both international and bilateral - could indeed contribute to the common struggle against this scourge [known as] cyber-crime."
Hacking group DarkSide described themselves as "apolitical" in aon Monday.
"We are apolitical, we do not participate in geopolitics, [you] do not need to tie us with a defined government and look for ... our motives," the group reportedly wrote. "Our goal is to make money, and not creating problems for society. From today we introduce moderation and check each company that our partners want to encrypt to avoid social consequences in the future."
DarkSide is a relatively new group that, since August 2020, has used ransomware cyberattacks to hack various companies in the U.S. and Europe. They have attempted to extort companies with threats, for instance, of leaking personal data. The group claims to give part of the money it makes to charity organizations.
Pipeline officials hope most service will be back by weekend
WASHINGTON (AP) — Hit by a cyberattack, the operator of a major U.S. fuel pipeline said it hopes to have services mostly restored by the end of the week as the FBI and administration officials identified the culprits as a gang of criminal hackers. U.S. officials sought to soothe concerns about price spikes or damage to the economy by stressing that the fuel supply had so far not experienced widespread disruptions, and the company said Monday that it was working toward “substantially restoring operational service” by the weekend. © Provided by Associated Press A company that operates a major U.S.
Fact check: Viral image of plastic bags filled with gas is from 2019 .
An image claiming to show gas-filled plastic bags amid the shutdown of the Colonial Pipeline was actually taken in 2019 in Mexico.The 5,500-mile Colonial Pipeline, which delivers about 45% of fuel for the East Coast, shut down on May 7 following a ransomware attack by a hacking group called DarkSide. Pipeline operations resumed on May 12.