 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 by AFP Staff Writers Washington (AFP) May 10, 2021
President Joe Biden said Monday that a Russia-based group was behind the ransomware attack that forced the shutdown of the largest oil pipeline in the eastern United States. The FBI identified the group behind the hack of Colonial Pipeline as DarkSide, a shadowy operation that surfaced last year and attempts to lock up corporate computer systems and force companies to pay to unfreeze them. "So far there is no evidence ... from our intelligence people that Russia is involved, although there is evidence that actors, ransomware is in Russia," Biden told reporters. "They have some responsibility to deal with this," he said. Three days after being forced to halt operations, Colonial said Monday it was moving toward a partial reopening of its 5,500 miles (8,850 kilometers) of pipeline -- the largest fuel network between Texas and New York. At the White House, Deputy National Security Advisor Elizabeth Sherwood-Randall said Biden was being kept updated on the incident, which threatened to crimp supplies of gasoline, diesel fuel and jet fuel across much of the eastern United States. Colonial said in a statement that "segments of our pipeline are being brought back online." "Colonial has told us that it has not suffered damage and can be brought back online relatively quickly," Sherwood-Randall said, with no fuel disruptions so far. - Seeking ransom - The ransomware forced the company to shut down pipeline controls system for safety reasons. DarkSide began attacking medium and large-sized companies mostly in Western Europe, Canada and the United States last year, reportedly asking for anywhere from a few hundred thousand dollars to a few million dollars, to be paid in Bitcoin. In return, DarkSide supplies the company with a program that will unlock the its computing systems. They also download and retain large amounts of data from the company, threatening to release it publicly if the company does not pay up. In a statement on their website on the dark net, they rejected allegations that they had any official backing. "We are apolitical, we do not participate in geopolitics, do not need to tie us with a defined government and look for other our motives," it said. "Our goal is to make money, and not creating problems for society. " Dmitri Alperovitch, one of the foremost cybersecurity experts who cofounded the firm CrowdStrike, said his group believes DarkSide enjoys official protection in Russia. "A ransomware group we believe is operating (and likely harbored) by Russia has shutdown a company that is moving 45% of petroleum supplying the East Coast. Is it a criminal act? Sure," he tweeted. He said it also "undoubtedly" has "huge" national security implications, especially in US-Russia relations. Another cybersecurity expert, Brett Callow of Emsisoft, told NBC News that an indication of the group's origins is that its software is designed to not work on computers whose default languages are Russian or several other eastern European languages. "DarkSide doesn't eat in Russia," Callow told NBC. Anne Neuberger, deputy national security adviser for cyber, said most ransomware comes from transnational criminal groups. Asked if Colonial Pipeline or other companies should pay the ransom, she said the Biden adminstration has not offered advice on that. "They have to balance the cost-benefit when they have no choice with regard to paying a ransom," she said. "Typically that is a private sector decision."
IS 'blows up' Iraq oil wells, kills policeman: officials Kirkuk, Iraq (AFP) May 5, 2021 Jihadists on Wednesday killed a policeman before blowing up two oil wells in Kirkuk, a northern province claimed by both Iraq's federal government and the Kurds, officials said. A security official told AFP that "Islamic State group assailants" killed a policeman and "wounded two others". The attackers then "blew up wells 177 and 183 at the Bay Hassan field," the oil ministry said in a statement. The first fire was "brought under control in record time", but "firemen are still active at the ... read more
|
|||||||||||||
|
|
| The content herein, unless otherwise known to be public domain, are Copyright 1995-2024 - Space Media Network. All websites are published in Australia and are solely subject to Australian law and governed by Fair Use principals for news reporting and research purposes. AFP, UPI and IANS news wire stories are copyright Agence France-Presse, United Press International and Indo-Asia News Service. ESA news reports are copyright European Space Agency. All NASA sourced material is public domain. Additional copyrights may apply in whole or part to other bona fide parties. All articles labeled "by Staff Writers" include reports supplied to Space Media Network by industry news wires, PR agencies, corporate press officers and the like. Such articles are individually curated and edited by Space Media Network staff on the basis of the report's information value to our industry and professional readership. Advertising does not imply endorsement, agreement or approval of any opinions, statements or information provided by Space Media Network on any Web page published or hosted by Space Media Network. General Data Protection Regulation (GDPR) Statement Our advertisers use various cookies and the like to deliver the best ad banner available at one time. All network advertising suppliers have GDPR policies (Legitimate Interest) that conform with EU regulations for data collection. By using our websites you consent to cookie based advertising. If you do not agree with this then you must stop using the websites from May 25, 2018. Privacy Statement. Additional information can be found here at About Us. |
del.icio.us
Digg
Reddit
Google
