Welcome to DU!
The truly grassroots left-of-center political community where regular people, not algorithms, drive the discussions and set the standards.
Join the community:
Create a free account
Support DU (and get rid of ads!):
Become a Star Member
Latest Breaking News
General Discussion
The DU Lounge
All Forums
Issue Forums
Culture Forums
Alliance Forums
Region Forums
Support Forums
Help & Search
Economy
Related: About this forumColonial Pipeline Hack Shows Ransomware Emergence as Industrial-Scale Threat
The cyberattack that knocked offline an essential U.S. gasoline pipeline shows that a dangerous, professional-scale hacking-for-ransom threat is worsening, spreading rapidly and plaguing companies, schools, hospitals and other institutions
Link to tweet
BUSINESS
Colonial Pipeline Hack Shows Ransomware Emergence as Industrial-Scale Threat
Schools, hospitals, companies are targeted by cyber weapons of mass destruction
By Robert McMillan, Dustin Volz and Tawnell D. Hobbs
May 11, 2021 12:14 pm ET
The cyberattack that knocked offline an essential U.S. gasoline pipeline shows that a dangerous, professional-scale hacking-for-ransom threat is worsening, spreading rapidly and plaguing companies, schools, hospitals and other institutions.
While ransomware has been a challenge for small businesses for years, a confluence of factors have emboldened attackers in the past year, culminating in the shutdown on Friday of a critical gasoline pipeline to the U.S. East Coast. The pipelines operator, Colonial Pipeline Co., now says that service could be offline until the end of the week, threatening to raise prices at the pump for millions of Americans.
Attacks are growing in number and scale as millions of people around the country work or attend school remotely, in some cases opening back doors to networks without corporate or institutional security protections, security researchers say.
Hackers have grown adept at communicating about vulnerabilities on the so-called Dark Web, a network of computers that can share information anonymously. The ability to demand payment in cryptocurrency limits law-enforcement tracking capabilities. And the growth in insurance policies that cover ransomware payments has helped seed an increasingly professionalized ransomware industry.
Senior officials in the Biden administration have said ransomware is likely the most serious cybersecurity threat to the U.S. and that on its current trajectory the problem will only get worse in the years ahead. A senior Justice Department official likened the phenomenon to cyber weapons of mass destruction.
TO READ THE FULL STORY
SUBSCRIBE
SIGN IN
Colonial Pipeline Hack Shows Ransomware Emergence as Industrial-Scale Threat
Schools, hospitals, companies are targeted by cyber weapons of mass destruction
By Robert McMillan, Dustin Volz and Tawnell D. Hobbs
May 11, 2021 12:14 pm ET
The cyberattack that knocked offline an essential U.S. gasoline pipeline shows that a dangerous, professional-scale hacking-for-ransom threat is worsening, spreading rapidly and plaguing companies, schools, hospitals and other institutions.
While ransomware has been a challenge for small businesses for years, a confluence of factors have emboldened attackers in the past year, culminating in the shutdown on Friday of a critical gasoline pipeline to the U.S. East Coast. The pipelines operator, Colonial Pipeline Co., now says that service could be offline until the end of the week, threatening to raise prices at the pump for millions of Americans.
Attacks are growing in number and scale as millions of people around the country work or attend school remotely, in some cases opening back doors to networks without corporate or institutional security protections, security researchers say.
Hackers have grown adept at communicating about vulnerabilities on the so-called Dark Web, a network of computers that can share information anonymously. The ability to demand payment in cryptocurrency limits law-enforcement tracking capabilities. And the growth in insurance policies that cover ransomware payments has helped seed an increasingly professionalized ransomware industry.
Senior officials in the Biden administration have said ransomware is likely the most serious cybersecurity threat to the U.S. and that on its current trajectory the problem will only get worse in the years ahead. A senior Justice Department official likened the phenomenon to cyber weapons of mass destruction.
TO READ THE FULL STORY
SUBSCRIBE
SIGN IN
{no further information on Robert McMillan}
https://twitter.com/dnvolz
dustin.volz@wsj.com
https://twitter.com/tawnell
tawnell.hobbs@wsj.com
InfoView thread info, including edit history
TrashPut this thread in your Trash Can (My DU » Trash Can)
BookmarkAdd this thread to your Bookmarks (My DU » Bookmarks)
4 replies, 1035 views
ShareGet links to this post and/or share on social media
AlertAlert this post for a rule violation
PowersThere are no powers you can use on this post
EditCannot edit other people's posts
ReplyReply to this post
EditCannot edit other people's posts
Rec (1)
ReplyReply to this post
4 replies
= new reply since forum marked as read
Highlight:
NoneDon't highlight anything
5 newestHighlight 5 most recent replies
Colonial Pipeline Hack Shows Ransomware Emergence as Industrial-Scale Threat (Original Post)
mahatmakanejeeves
May 2021
OP
"The ability to demand payment in cryptocurrency limits law-enforcement tracking capabilities"
Pobeka
May 2021
#1
The threat is our major industries deciding not to pay for appropriate cyber defenses.
Midnight Writer
May 2021
#2
Pobeka
(4,999 posts)1. "The ability to demand payment in cryptocurrency limits law-enforcement tracking capabilities"
I was wondering yesterday if this might put a real damper on the cryptocurrency fad.
Warpy
(111,249 posts)4. They cracked Tor, they'll eventually crack cryptocurrencies.
Eventually, I can see governments banning cryptocurrency transactions and I'm a little surprised no one has done that yet.
In the meantime, it's just too good a way for Very Bad Men (TM) to move large quantities of ill gotten cash around.
Midnight Writer
(21,751 posts)2. The threat is our major industries deciding not to pay for appropriate cyber defenses.
We need national standards of security that software and corporations need to pass.
Warpy
(111,249 posts)3. You'd think the major hospital ransomware hack would heve clued them in
but cybersecurity was never addressed over the last 4 years because Dumdum didn't know enough about IT to know there was a real threat and there was no way he'd listen to anyone who did because he had to be the smartest guy who ever was.
We lost a lot of very important time thanks to that horribly damaged asshole.