According to network sources, the largest American COLONIAL PIPELINE oil operator has been subjected to a cyberatka using the extortioner program. The company recorded the incident on May 7, after which all operations were suspended for the investigation.
According to two sources from the cybersecurity industry, an extortioner program has been used in the COLONIAL PIPELINE attack designed to block IT systems by encrypting data with the subsequent requirement of payment for the recovery of information. Malicious on this type often use cybercrime groups that are trying to benefit by offering the victim to decrypt the data for a certain fee.
At the moment, it is not known who is involved in the attack on Colonial Pipeline, as the company does not disclose the details associated with the incident. After finding the problem, it contacted an independent information security company to investigate the incident. Law enforcement agencies and other US federal agencies were notified. Earlier, information appeared that Colonial Pipeline suspended the work of gasoline and distillate production lines. How long the company’s pipelines will be idle until it is not known.
The COLONIAL PIPELINE pipeline network is used to deliver fuel from American oil refineries on the Gulf Coast, in the densely populated oriental and southern areas of the United States. A daily company transports 2.5 million barrels of gasoline, diesel fuel, aviation kerosene and other oil refining products with a length of more than 8,500 km.