Colonial Pipeline Company fell victim to a cyber attack that resulted in 5,500 miles of its US fuel pipelines being shut down, causing public distress and fears of fuel shortages. The attack was attributed to the ransomware group “DarkSide”, but was likely conducted by one of its affiliates. The group responded quickly to the attack, claiming that DarkSide’s only motive is financial gain, and that they do not want to create problems for society. They also announced that the group will begin approving or denying encryption of any companies the group’s affiliates want to target, to avoid future social consequences. Regardless of such efforts to distance the group from the attack, the consequences could be significant for DarkSide; the involvement of US government agencies and law enforcement will likely add pressure to the group’s operations, and the arrest of DarkSide’s members and/or the responsible affiliate is a realistic possibility.

Threat Intel Fan?
Sign up below to get our TI updates delivered to your inbox!
Other content in this Stream

ShadowTalk host Chris alongside gives you the latest in threat intelligence.

ShadowTalk host Nicole alongside guests Rick, Ivan and Dean give you the latest in threat intelligence.

As the holiday season approaches, my family has a tradition of watching all of our favorite holiday movies—my favorite being ...

The tail end of the calendar year represents arguably the most important period for retailers and companies working in e-commerce, ...

In our first blog in this series, we covered how ransomware groups go about their recruitment, with their large teams ...

Sporting events, like the upcoming FIFA World Cup Qatar 2022 (Qatar 2022 World Cup), attract massive attention from every corner ...

As we move towards the end of 2022, now is the time to take a look back at the major ...