It turns out that a pipeline company that was attacked by ransomware paid a ransom of 500 million yen or more
It turns out that Colonial Pipeline, the largest oil pipeline company in the United States, which had been
Colonial Pipeline Paid Hackers Nearly $ 5 Million in Ransom --Bloomberg
https://www.bloomberg.com/news/articles/2021-05-13/colonial-pipeline-paid-hackers-nearly-5-million-in-ransom
Colonial Pipeline paid $ 5 million ransom to hackers
https://www.cnbc.com/2021/05/13/colonial-pipeline-paid-ransom-to-hackers-source-says.html
Colonial Pipeline paid ransomware hackers $ 5 million, US official says
https://www.nbcnews.com/tech/security/colonial-pipeline-paid-ransomware-hackers-5-million-us-official-n1267286
The Colonial Pipeline was attacked on May 9, 2021 local time. There was concern that if the Colonial Pipeline, which has a total length of more than 8,000 km on the east coast, would be shut down for a long period of time, it would have a major impact on people's lives .
The attack was carried out by a cybercriminal group called 'Dark Side'. The group is roughly divided into a group that develops tools and a group that receives and attacks the tools, and the developers 'do not want to cause problems in society, just want to make money' 'This time the attack group Goal selection mistake ' .
Colonial Pipeline resumed operations on May 12, 2021. It was not initially clear how the problem was resolved, but Bloomberg and others were told by officials that a ransom of about $ 5 million was paid. understood.
Colonial Pipeline asked Mandiant, a cybersecurity company, to handle this issue. Mandiant commented, 'We will not pay directly to the group that has been attacking the ransomware on behalf of the client,' while admitting that the Colonial Pipeline could also take the 'pay ransom' option. I am.
In addition, National Security Adviser Anne Neuberger told reporters that although it was not a direct reference to the matter, in the past the FBI 'paid a ransom to encourage malicious activities of the attacking group. I have warned that I might do it. '
Related Posts:
in Security, Posted by logc_nt