HomeLatest ThreadsGreatest ThreadsForums & GroupsMy SubscriptionsMy Posts
DU Home » Latest Threads » Forums & Groups » Main » Latest Breaking News (Forum) » Colonial Pipeline Reporte...

Thu May 13, 2021, 12:49 PM

Colonial Pipeline Reportedly Paid $5M Ransom to Free Data System

Source: The Street

Colonial Pipeline Co. reportedly paid Eastern European hackers almost $5 million in ransom on Friday to free up its data system, after it had shut its East Coast pipeline system.

Two knowledgeable sources provided the information to Bloomberg. Their account conflicted with reports earlier this week that the company wouldn't pay ransom to the hackers.

The payment was made in the form of untraceable cryptocurrency within hours after the attack, which had led Colonial to close its pipeline for safety, the sources said.

Once the hackers got their money, they gave Colonial a decrypting tool to restore its frozen computer network, the sources said. The tool acted slowly, so the company continued using its own backups to restore the system, one of the sources said.

Read more: https://www.msn.com/en-us/money/markets/colonial-pipeline-reportedly-paid-5m-ransom-to-free-data-system/ar-BB1gHvVG



Unlike the Trump administration, which tried to hide the hacks to the US infrastructure, Biden should treat this like a terrorist attack originating from the country of the hackers.

https://apnews.com/article/donald-trump-politics-mark-levin-coronavirus-pandemic-hacking-6080f156125a4a46edef2a6dcf826611

Trump downplays Russia in first comments on hacking campaign

WASHINGTON (AP) — Contradicting his secretary of state and other top officials, President Donald Trump on Saturday suggested without evidence that China — not Russia — may be behind the cyber espionage operation against the United States and tried to minimize its impact.

In his first comments on the breach, Trump scoffed at the focus on the Kremlin and downplayed the intrusions, which the nation’s cybersecurity agency has warned posed a “grave” risk to government and private networks.

“The Cyber Hack is far greater in the Fake News Media than in actuality. I have been fully briefed and everything is well under control,” Trump tweeted. He also claimed the media are “petrified” of “discussing the possibility that it may be China (it may!).”

There is no evidence to suggest that is the case. Secretary of State Mike Pompeo said late Friday that Russia was “pretty clearly” behind the operation against the United States.

63 replies, 3298 views

Reply to this thread

Back to top Alert abuse

Always highlight: 10 newest replies | Replies posted after I mark a forum
Replies to this discussion thread
Arrow 63 replies Author Time Post
Reply Colonial Pipeline Reportedly Paid $5M Ransom to Free Data System (Original post)
TomCADem May 13 OP
Deminpenn May 13 #1
PSPS May 13 #6
Deminpenn May 13 #28
PSPS May 13 #31
Miguelito Loveless May 13 #2
TomCADem May 13 #5
Miguelito Loveless May 13 #8
DENVERPOPS May 13 #19
AllyCat May 13 #22
Warpy May 13 #27
JohnSJ May 13 #32
jmowreader May 13 #61
JohnSJ May 13 #62
melm00se May 13 #25
Miguelito Loveless May 13 #39
melm00se May 13 #48
Miguelito Loveless May 13 #60
ffr May 13 #43
ProudMNDemocrat May 13 #3
FailureToCommunicate May 13 #49
PSPS May 13 #4
getagrip_already May 13 #15
PSPS May 13 #26
Warpy May 13 #29
PSPS May 13 #30
Warpy May 13 #37
getagrip_already May 13 #35
getagrip_already May 13 #38
PSPS May 13 #45
getagrip_already May 13 #56
yaesu May 13 #7
ancianita May 13 #9
Chainfire May 13 #10
3825-87867 May 13 #11
Post removed May 13 #13
3825-87867 May 13 #16
AllyCat May 13 #23
3825-87867 May 13 #50
DENVERPOPS May 13 #17
AllyCat May 13 #24
DENVERPOPS May 13 #57
neohippie May 13 #44
DENVERPOPS May 13 #58
rockfordfile May 13 #59
TheFarseer May 13 #12
Rocknation May 13 #14
The Mouth May 13 #18
Evolve Dammit May 13 #20
Shanti Shanti Shanti May 13 #21
roamer65 May 13 #33
barbtries May 13 #34
neohippie May 13 #36
bucolic_frolic May 13 #40
Traildogbob May 13 #41
ffr May 13 #42
kimbutgar May 13 #46
kimbutgar May 13 #47
hamsterjill May 13 #51
DFW May 13 #52
FBaggins May 13 #53
NCjack May 13 #54
AllaN01Bear May 13 #55
Devil Child May 14 #63

Response to TomCADem (Original post)

Thu May 13, 2021, 12:50 PM

1. US cybersecurity experts will be interested in the decrytion key

code, I'm sure

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Deminpenn (Reply #1)

Thu May 13, 2021, 01:00 PM

6. The decryption key is unique to each infection.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to PSPS (Reply #6)

Thu May 13, 2021, 03:01 PM

28. Would think it's like bombs, though

where every bomb is unique, but there is a discernable signature.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Deminpenn (Reply #28)

Thu May 13, 2021, 03:07 PM

31. No. RSA encryption means, without the unique key for that individual infection, you've had it.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to TomCADem (Original post)

Thu May 13, 2021, 12:58 PM

2. I would think this, right here,

would be a reason to ban cryptocurrency.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Miguelito Loveless (Reply #2)

Thu May 13, 2021, 12:59 PM

5. Exactly. What legitimate purpose does cryptocurrency serve...

...but I bet that if Biden supports, watch Republicans immediately jump on the side of terrorists again.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to TomCADem (Reply #5)

Thu May 13, 2021, 01:12 PM

8. When I ask this of crypto proponents

they give me all sorts of arguments that pretty much sound the same as the nonsense I get from gun advocates who tell me guns maintain "freedom" and "protect" us from tyrannical government.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to TomCADem (Reply #5)

Thu May 13, 2021, 02:14 PM

19. It serves the purpose

of ending all MONEY LAUNDERING by all the white collar mob......and tyrants around the world.....

Reply to this post

Back to top Alert abuse Link here Permalink


Response to DENVERPOPS (Reply #19)

Thu May 13, 2021, 02:38 PM

22. How does cryptocurrency end money laundering by the white collar mob?

And tyrants? It seems that it is just easier for them to launder money through virtual currency.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to DENVERPOPS (Reply #19)

Thu May 13, 2021, 02:58 PM

27. Actually, they have a perfect money laundry in London

especially the tyrants.

Cryptocurrency is how drug lords and other scum move their money around.

Oh, it started out high minded, defeat the man, increase privacy, blah blah blah. Now it's a pure Ponzi scheme being exploited by some Very Bad Men (TM).

I would love to see governments unite to ban these scams, uniting in this is what it will take since new ones keep popping up like poison mushrooms.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to TomCADem (Reply #5)

Thu May 13, 2021, 03:10 PM

32. Two legitimate purposes Tom

1. Money laundering
2. Ponzi scheme

Reply to this post

Back to top Alert abuse Link here Permalink


Response to JohnSJ (Reply #32)

Thu May 13, 2021, 09:50 PM

61. You forgot buying illegal items off the Dark Web...

...also drug deals and paying ransom.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to jmowreader (Reply #61)

Thu May 13, 2021, 09:53 PM

62. Gosh, it is sooooo flexible

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Miguelito Loveless (Reply #2)

Thu May 13, 2021, 02:55 PM

25. The genie is out of the bottle

Not sure how you can undo that.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to melm00se (Reply #25)

Thu May 13, 2021, 03:42 PM

39. Seems to me this only works if

crypto can be exchanged for legal tender. Stop that, and the party is over. Also, treat any bank/business that facilitates crypto, or any person facilitating is engaged in money laundering.

The major purpose of crypto that I have seen is to facilitate crimes such as blackmail, extortion, money laundering, and tax evasion.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Miguelito Loveless (Reply #39)

Thu May 13, 2021, 05:11 PM

48. Unfortunately

you would have to prove that.

The state cannot assume that the possessor of cryptocurrency is going to break the law.

Additionally, all it takes is one state to allow the exchange of cryptocurrency for legal tender and the system breaks down.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to melm00se (Reply #48)

Thu May 13, 2021, 09:02 PM

60. All banks must deal withe Federal Reserve

so any state that decides it wants to exchange crypto can find itself cut off from the Federal banking system. A currency can't exist without gov't tolerance at least. I would subject crypto to the same reporting requirements as regular cash. Transactions over $10K must be explained and documented.

Cryptocurrency is a financial ghost gun. Sure it MIGHT have a legitimate use, but not in practice. It pretty much exists to facilitate crime.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Miguelito Loveless (Reply #2)

Thu May 13, 2021, 03:51 PM

43. Or regulate it.

That'll force the Dark Web scum that use it, to run back to cash.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to TomCADem (Original post)

Thu May 13, 2021, 12:58 PM

3. Of course, consumers will repay the ransom.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to ProudMNDemocrat (Reply #3)

Thu May 13, 2021, 05:15 PM

49. Especially since Colonial didn't HAVE to turn off the tap, but since they did, prices shot up. They

will reap more than enough to cover the ransom, AND still claim they have to have the rest of us pay for their lax, hackable systems.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to TomCADem (Original post)

Thu May 13, 2021, 12:59 PM

4. "untraceable cryptocurrency" is a widely-believed falsehood

The owner of the "wallet" can be identified and the funds can be frozen and clawed back.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to PSPS (Reply #4)

Thu May 13, 2021, 01:32 PM

15. While that is true of some crypto currencies, others are much harder to trace....

Guess which they tell you to use?

Reply to this post

Back to top Alert abuse Link here Permalink


Response to getagrip_already (Reply #15)

Thu May 13, 2021, 02:58 PM

26. They're all traceable.

It's just not talked about very often for obvious reasons but it is mentioned in several indictments I've read.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to PSPS (Reply #26)

Thu May 13, 2021, 03:03 PM

29. The FB( cracked Tor

so I think by now they've managed to crack Bitcoin, which is how the scammers have been traced to China.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Warpy (Reply #29)

Thu May 13, 2021, 03:05 PM

30. China? Virtually all ransomware attacks originate in russia or eastern europe.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to PSPS (Reply #30)

Thu May 13, 2021, 03:28 PM

37. I read it earlier, now I can't find the article

It was likely premature.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Warpy (Reply #29)

Thu May 13, 2021, 03:24 PM

35. hint - cyber criminals don't use bitcoin, and it wasn't china..... n/t

Reply to this post

Back to top Alert abuse Link here Permalink


Response to PSPS (Reply #26)

Thu May 13, 2021, 03:32 PM

38. not all are as easy to track as bitcoin.....

Not all use standard blockchain and go to great lengths to obscure traceability.

Ever hear of Monero, Zcash, Komodo, or Horizen?

Not your daddies block chain.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to getagrip_already (Reply #38)

Thu May 13, 2021, 04:23 PM

45. They're all traceable. Don't believe the sizzle.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to PSPS (Reply #45)

Thu May 13, 2021, 06:49 PM

56. and aes 2048 can be broken - but....

At what cost, and what level of effort, and in what timeframe.

Untraceable doesn't mean unbreakable, just impractical.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to TomCADem (Original post)

Thu May 13, 2021, 01:01 PM

7. tRump gave the words crime pays a whole new meaning. nt

Reply to this post

Back to top Alert abuse Link here Permalink


Response to TomCADem (Original post)

Thu May 13, 2021, 01:16 PM

9. Now, can they follow the money?

Reply to this post

Back to top Alert abuse Link here Permalink


Response to TomCADem (Original post)

Thu May 13, 2021, 01:17 PM

10. Putin's hold on Trump still intact

Once again, Trump goes to bat for his buddy.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to TomCADem (Original post)

Thu May 13, 2021, 01:19 PM

11. Guess who lost here!

For 5 million, they could have had a rather good backup system and better security. But, hey, who cares when you really get down to it?
The company isn't going to lose on this. The "ransom" will be paid by its customers through rate increases (temporary til 2100 A.D., of course) or special fees.

Sounds like a good plan to allow companies to raise prices and set blame elsewhere and in reality, lose nothing.

The Russians didn't screw an American Company, they just stuck it up the asses of the American People. And I wouldn't be surprised if more happens.

Putin moved into 21st Century Warfare while we're still on the beach waiting for supplies that Republicans (R - Russian) claim cost too much.

And the Pipeline Company? Do you think they really care? If they did then they should have had better preparation and while their almighty bottom line is their reason to exist, they WILL get their money back (from us) and then some.

SAPs - Stupid American People

Reply to this post

Back to top Alert abuse Link here Permalink


Response to 3825-87867 (Reply #11)


Response to Post removed (Reply #13)

Thu May 13, 2021, 01:35 PM

16. Excuse me?

I guess I needed to add the sarcasm note.

WOW! No words!

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Post removed (Reply #13)

Thu May 13, 2021, 02:40 PM

23. Uh, no. Not pro-Putin. Try reading it again.

Completely agree with the poster. The American people get screwed and the corporation can do it again and probably make some money in the process. Unbridled American capitalism at work again...for the corporations!

Reply to this post

Back to top Alert abuse Link here Permalink


Response to AllyCat (Reply #23)

Thu May 13, 2021, 05:16 PM

50. Thank you Allycat

Reply to this post

Back to top Alert abuse Link here Permalink


Response to 3825-87867 (Reply #11)

Thu May 13, 2021, 02:00 PM

17. The cost is passed along

the corporations never absorb the costs of their poor decisions...........

Just wait until the good ol' USA becomes a wholly owned subsidiary of the UCA......United Corps of America.
That will just become an automatic thing when the republicans install their Corporate Fascist Tyranny.

No one has heard much from Trailer Trash Barbie and her husband Jared. Maybe Putin set them up as a malware franchisee of Putin's very own Russian hackers.........

All roads lead to Putin..............was it Pelosi that said that?

And Putin is still going after the U.S. via Kompromat he has on countless Republican leaders.........

Reply to this post

Back to top Alert abuse Link here Permalink


Response to DENVERPOPS (Reply #17)

Thu May 13, 2021, 02:41 PM

24. The UCA? The United Cities of America?

I am a Death Stranding fan

Reply to this post

Back to top Alert abuse Link here Permalink


Response to AllyCat (Reply #24)

Thu May 13, 2021, 06:49 PM

57. United Corporations of America

or better yet......United Corporations of Fascist America......

has a nice ring to it, don't you think? THE REPUBLICANS sure as hell do..........

Reply to this post

Back to top Alert abuse Link here Permalink


Response to DENVERPOPS (Reply #17)

Thu May 13, 2021, 04:02 PM

44. many businesses have cyber insurance

Our company went through one of these attacks and the I think most of the expenses related to it were covered by our insurance many of these policies cover extortion and then the costs to help prevent future attacks as well.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to neohippie (Reply #44)

Thu May 13, 2021, 07:06 PM

58. The insurance premiums are probably

just short of how much the cyber thieves would demand...........

and a ton more to pay for future security costs of improvement......

Soon, all these corporations will figure out a way to ask the Politicians to make a law that the federal gov't will cover the costs for a small token of what the insurance companies want for the coverage.

Crazy?

What about the Federal Insurance program for flood insurance???? No insurance company would touch flood insurance for any amount of money, so the feds offer the insurance for a considerably cheaper price. When you see all those coastline uber wealthy homes that get totaled in a hurricane????? You can be sure that a large portion is subsidized by taxpayers thru that gov't flood insurance...........

Reply to this post

Back to top Alert abuse Link here Permalink


Response to 3825-87867 (Reply #11)

Thu May 13, 2021, 07:52 PM

59. I agree

Reply to this post

Back to top Alert abuse Link here Permalink


Response to TomCADem (Original post)

Thu May 13, 2021, 01:20 PM

12. We need to get serious

About finding these people and hunting them down.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to TomCADem (Original post)

Thu May 13, 2021, 01:29 PM

14. Either someone is lying to us

Last edited Sun Jun 6, 2021, 10:41 PM - Edit history (1)

or Colonial plans to use the payment as an excuse to jack up post-hack gas prices...though I find it quite interesting that former President Putin Pal has started playing his "No Collusion with Russia" broken record again.

https://www.democraticunderground.com/10142742123


rocktivity

Reply to this post

Back to top Alert abuse Link here Permalink


Response to TomCADem (Original post)

Thu May 13, 2021, 02:03 PM

18. Should be an instant and lethal visit

from a SEAL team when they figure out who it was.

I'd love to interrogate one of those 'hackers'.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to TomCADem (Original post)

Thu May 13, 2021, 02:21 PM

20. Ex-Pres. seems pretty cool with Extorsion. Of course.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to TomCADem (Original post)

Thu May 13, 2021, 02:25 PM

21. So the criminals have a name now?

Reply to this post

Back to top Alert abuse Link here Permalink


Response to TomCADem (Original post)

Thu May 13, 2021, 03:13 PM

33. A nice attack on the Russian oil and gas industry would be nice.

Go at Rosneft.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to TomCADem (Original post)

Thu May 13, 2021, 03:21 PM

34. i really hope they had not.

crime pays.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to TomCADem (Original post)

Thu May 13, 2021, 03:25 PM

36. The vast majority of these ransomware attacks

These cyber gangs are most likely linked and backed by nation states that are the enemies of the US.

North Korea, Russia and even Arabic actors are know to use these kinds of crimes to move billions of dollars from European and North American targets of ransomware attacks using crypto-currencies. The crypto-currencies allow these countries to avoid international banking and US sanctions, they allow them to get around embargos etc...


And yes the attacks all use unique decryption keys.

Its not just the crypto-currencies that allow this to happen, its also email services that allow the users to remain anonymous too that are needed so that these criminals can evade being traced as well, so they are constantly hiding behind other hacked systems to launch new attacks and jumping from one email account to another so that they are harder to trace back to the gangs or track their locations

This is a huge international problem and it will be while these nation states allow this to happen and give the criminals safe harbor

Reply to this post

Back to top Alert abuse Link here Permalink


Response to TomCADem (Original post)

Thu May 13, 2021, 03:42 PM

40. Gee, I wonder who needed and got the money

Just askin'

Reply to this post

Back to top Alert abuse Link here Permalink


Response to TomCADem (Original post)

Thu May 13, 2021, 03:47 PM

41. Equates to pennies for them.

Right off loss on taxes, will raise price enough to get it back in a day.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to TomCADem (Original post)

Thu May 13, 2021, 03:47 PM

42. $5M more to hire more talent and improve their ransomeware practices

FFS!

Reply to this post

Back to top Alert abuse Link here Permalink


Response to TomCADem (Original post)

Thu May 13, 2021, 04:35 PM

46. I don't understand why President Biden is to blame for a private company being hacked!







Reply to this post

Back to top Alert abuse Link here Permalink


Response to TomCADem (Original post)


Response to TomCADem (Original post)


Response to TomCADem (Original post)

Thu May 13, 2021, 05:25 PM

52. That seems to be the going rate

About 2 years ago, they tried this with my outfit, too, and asked $5 million to ransom us. But our IT department anticipates this kind of attack all the time, and backs everything up offline every few hours. Back then, it was every day, but as it cost us a few days of reconstruction for that one day, we now do it every few hours. The good news is that we didn't pay those assholes a dime (or a ruble), but they probably just shrug their shoulders and move on to the next victim, and hope for better luck next time.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to TomCADem (Original post)

Thu May 13, 2021, 05:36 PM

53. "(K)nowledgeable sources" doesn't necessarily mean truthful sources

The company has reason to want people to believe that they didn't pay a ransom (or need to)... but the hackers have a reason to want people to believe that paying them is a rational decision.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to TomCADem (Original post)

Thu May 13, 2021, 06:02 PM

54. Fire the CEO and reduce his termination pay by $5M. Then, we will

see CEOs get serious about computer security.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to TomCADem (Original post)

Thu May 13, 2021, 06:45 PM

55. so, now they will be embolden to do more of this .

Reply to this post

Back to top Alert abuse Link here Permalink


Response to TomCADem (Original post)

Fri May 14, 2021, 11:14 AM

63. This is terrorism and I hope Biden responds appropriately, like a drone-strike on the hackers homes.

Reply to this post

Back to top Alert abuse Link here Permalink

Reply to this thread