In the recent Colonial Pipeline cyberattack, hackers demanding $5 million in ransom caused massive disruption to the East Coast’s gasoline supply. The ransomware attack effectively held hostage the data from systems that Colonial Pipeline relied on for the running of its business. Systems were shut-down for days as they assessed the impact to ensure that it is safe to put systems back online in order to get business operations back to normal.
In this security brief, we examine how hackers were able to cause major societal disruption, what the government response was and the unique nature of the cyber criminal organization itself.