Colonial Pipeline says operations back to normal, as the US blames Darkside for a ransomware attack

Summary

Colonial Pipeline operates the most significant fuel pipeline network in the USA, serving 50 million consumers; major points are as follows:

• A cyberattack shut down servers that controlled the pipeline.
•  A Russian-based criminal gang probably carried out this attack.
• In a ransomware attack, Darkside demanded millions in return for not attacking Colonial Pipeline servers.
• Possible that US officials had likely exerted heavy pressure on the Russian leadership to shut down the hackers.
• Panic buying of fuel made the situation worse.
• Within a few days, the pipeline returned to normal.

References

• May 2021 CSO  Security Info Home page
• May 2021 The Atlantic The Next Big Gasoline Shortage Is Coming
• May 2021 BBC News US fuel pipeline 'paid hackers $5m in ransom'
• May 2021 Washington Post DarkSide group that attacked Colonial Pipeline drops from sight online