U.S. pipeline hackers say their aim is cash, not chaos

imageCommodities16 minutes ago (May 10, 2021 01:11PM ET)

2/2
(C) Reuters. FILE PHOTO: A hooded man holds a laptop computer as cyber code is projected on him in this illustration picture taken on May 13, 2017. Top U.S. fuel pipeline operator Colonial Pipeline has shut its entire network after a cyber attack, the company said on

2/2

By Raphael Satter

WASHINGTON (Reuters) – The ransomware group accused of crippling the leading U.S. fuel pipeline operator said on Monday that its goal was to make money and not sow mayhem, a statement that experts saw as a sign the cybercriminals’ scheme had gone farther than they had intended.

The FBI accused the group that calls itself DarkSide of a digital extortion attempt that prompted Colonial Pipeline to shut down its network, potentially causing extraordinary disruption as gasoline deliveries dry up.

In a statement on Monday, Colonial said it expected to “substantially” restore operational service by the end of the week.

The terse news release posted to DarkSide’s website early on Monday did not directly mention Colonial Pipeline but, under the heading “About the latest news,” it noted that “our goal is to make money, and not creating problems for society.”

The statement did not say how much money the hackers were seeking. Colonial Pipeline did not immediately offer comment on the hackers’ statement. The hackers have yet to return repeated Reuters requests to their website for further comment.

DarkSide’s statement said its hackers would launch checks on fellow cybercriminals “to avoid social consequences in the future.” It added the group was “apolitical” and that observers “do not need to tie us” with any particular government.

The statement, which had several spelling and grammatical errors, appeared geared toward lowering the political temperature around one of the most disruptive digital ransom schemes ever reported.

Some security experts interpreted the statement as an indication that the DarkSide hackers were now trying to put some distance between themselves and the chaos they had unleashed.

“This isn’t the first time a threat group has gotten in over their heads,” said Lior Div, the co-founder and chief executive of Boston-based security company Cybereason.

He said that ransomware groups like DarkSide depended on being able to squeeze their victims discreetly, without attracting too much law enforcement scrutiny.

“The global backlash is hurting their business,” said Div. “It is the only reason they are offering a mea culpa.”

The crippling of Colonial’s IT system has led to isolated sales restrictions at retail pumps and is pushing benchmark gasoline prices to a three-year high.

On Sunday the largest U.S. refinery – Motiva Enterprises LLC’s 607,000 barrel-per-day (bpd) Port Arthur, Texas, refinery – shut two crude distillation units because of the outage at Colonial, according to people familiar with the matter.

In an interview with Reuters, a senior official with the U.S. Department of Homeland Security’s cyber arm, CISA, said that the dramatic hack should serve as a wakeup call for people well beyond the energy industry.

“All organizations should really sit up and take notice and make urgent investments to make sure that they’re protecting their networks against these threats,” said Eric Goldstein, CISA’s executive assistant director for cybersecurity.

U.S. pipeline hackers say their aim is cash, not chaos

Disclaimer: Fusion Media would like to remind you that the data contained in this website is not necessarily real-time nor accurate. All CFDs (stocks, indexes, futures) and Forex prices are not provided by exchanges but rather by market makers, and so prices may not be accurate and may differ from the actual market price, meaning prices are indicative and not appropriate for trading purposes. Therefore Fusion Media doesn`t bear any responsibility for any trading losses you might incur as a result of using this data.

Fusion Media or anyone involved with Fusion Media will not accept any liability for loss or damage as a result of reliance on the information including data, quotes, charts and buy/sell signals contained within this website. Please be fully informed regarding the risks and costs associated with trading the financial markets, it is one of the riskiest investment forms possible.

About the author

Related

JOIN THE DISCUSSION