p>Here are my takeaways:
/p>
p>The Colonial Pipeline is an important piece of US infrastructure. https://controlc.com/d8a6c6d1 </p>
p>It is responsible for transporting around 45 percent of East Coast fuel. It covers more than 5,500 miles. It transports 2.5 millions barrels of diesel, gasoline and jet fuel every day. The pipeline's shut down has not caused any disruptions, but it is something that should be possible.
/p>
p>This is akin to an underground criminal syndicate.
/p>
p>DarkSide? the ransomware company which claimed credit for the Colonial Pipeline Attack is a Russian-based ransomware group. It is believed that it leases its software to other hackers. The US has not explicitly linked DarkSide? to the Russian government, but rather believes that the group is operating to make money.
/p>
p>Similar DarkSide?: Learn more about DarkSide?
/p>
p>It appears that this is going to get worse.
/p>
p>"All of our industries are experiencing some kind of digital transformation, which means that they're becoming more connected and making use of things like cloud-based resources. This connectivity allows adversaries to gain access to these systems and can compromise them," Rob Lee, the CEO of Dragos an cybersecurity firm said to CNN's Jim Sciutto Monday.
/p>
p>There are big targets as well as small targets.
/p>
p>As Colonial Pipeline races to get fully operational, a large portion of the nation could be impacted by rising gasoline prices and shortages of jet fuel. This is a huge attack.
/p>
p>A smaller number of people were directly injured when the DC Police Department was targeted and hackers threatened to release information about confidential informants.
/p>
p>The number of targets available is huge.
/p>
p>"Everybody is vulnerable," said Lee. We'll all be the victims of attacks. The real question is how do we be more responsive and more resilient to these attacks, so that the consequence doesn't impact our daily lives."
/p>
p>There is so much we aren't aware of.
/p>
p>The company's statements don't reveal the exact nature of the Colonial Pipeline Attack, including whether there were any demands or the extent to which it was discovered. PCMag published an article in April on the capability of ransomware extortionists to read messages and pressure companies to pay ransoms to prevent sensitive data being divulged to customers.
/p>
p>For every attack you hear about, there are others that you don't.
/p>
p>Experts estimate that more than two dozen US government agencies have been targeted this year. Alejandro Mayorkas, Homeland Security Secretary has raised the alarm about these attacks in a speech last week before Colonial Pipeline was struck. He called them an "existential risk" to businesses.
/p>
p>More than $350 million in victim funds -- essentially ransom - was paid as a result of ransomware in the last year, and the rate of ransomware attacks has increased over the prior year by more than 300%, he said.
/p>
p>This will affect the debate about Biden's plans to upgrade US infrastructure.
/p>
p>Look for a coming debate over the question of whether Biden's $2 trillion plan to update the country's infrastructure will be enough to shield it from cyberattacks. Politico reported in April that the plan for securing new infrastructure wasn't given enough attention. However, the existing infrastructure is prone to attack.
/p>
p>Government hacks vs. ransomware attacks.
/p>
p>The main US security breach that occurred this year was not caused by ransomware pirates looking to make a quick buck, but rather by Russian hackers who were potentially looking for intelligence. They got in through hacking software from SolarWinds? which is a Texas company. They infiltrated at least nine US government agencies, including that of Homeland Security, and scores of private firms. https://www.click4r.com/posts/g/5988377/what-is-the-most-reliable-server-in-world-of-warcraft </p>
p>Additionally, a Chinese-linked hack of Microsoft Exchange servers across the globe could have compromised data and could lead to more attacks.
/p>
p>There's a possibility that there's a small functional difference between ransomware pirates and foreign governments hacking US systems.
/p>
p>Chris Krebs, who was director of DHS' Cybersecurity and Infrastructure Security Agency Chris Krebs, who was DHS' Cybersecurity and Infrastructure Security Agency director, has shared this inspiring quote. CNN reported that he stated that the distinction between a Russian state actor and an organized criminal network operating within Russia is "increasingly illegible."
/p>
p>He said that Ransomware crews were operating from Russia for many years with huge impact on schools, local and state government agencies, and on our health facilities. "They have the tacit approval from the Russian government, and it has to be stopped."
/p>
p>A lot of the infrastructure we rely on is privately owned.
/p>
p>I am struck in CNN's reports at the clear line that separates Colonial Pipeline, the private company that is carrying fuel through the pipeline and the US infrastructure that depends on it.
/p>
p>Liptak's story caught my attention because Colonial Pipeline had not asked for help from the government.
/p>
p>"This weekend's events have put the spotlight on the crucial fact that our nation's infrastructure is mostly owned and operated by private sector companies," said Elizabeth Sherwood-Randall, the White House homeland security adviser. "When these companies are targeted they are as the first line of defense and we rely on their efficiency to defend us."
/p>
p>Anne Neuberger, the top cybersecurity official on the National Security Council, stated that Colonial Pipeline had not asked for support from the federal government, but that federal officials were available and "standing ready" to assist if needed.
/p>
p>Neuberger would also not say if Colonial Pipeline had paid ransom but he did say that the companies are in the "difficult situation."
/p>
![[PukiWiki]](image/pukiwiki.png "[PukiWiki]")
