The cybersecurity attack has been common these. The last year saw an ample amount of attacks. Colonial Pipeline attack has shown us one of the biggest attacks in history by a group of ransomware attackers.
The country’s largest fuel pipeline had been shut down for over a week. Since the previous Thursday, the company restarted the operation.
As per the latest news, they have already paid $4.4 million ransom.
The service was stopped for a few days, triggering the hike in gas prices in the South East USA.
I know that’s a highly controversial decision. I didn’t make it lightly. I will admit that I wasn’t comfortable seeing money go out the door to people like this.” He added, “But it was the right thing to do for the country.
– CEO, Joseph Blount, interview to The Wall Street Journal.
We got the first public announcement of payment from such a company.
Ransomware Attackers Disappear from the web
But in the meantime, we saw another twist on the web. Some of the ransomware attackers suddenly disappear after the Colonial Pipeline attack. This move follows after the DarkSide that was blamed for the Colonial Pipeline attack goes offline.
According to Allan Liska, a researcher in the cybersecurity researcher firm, Recorded Future, two websites run by “AKO” and “Everest” have been unreachable.
These two names are the bigger names in the hackers’ world. He told Reuters,
It’s unusual to see two of the bigger names go down for 24 hours. That makes me think it’s a conscious choice to take their site offline.
After the US government’s pressure on the hackers, two other big names such as Avaddon and REvil also have been scaling back their operation. He added,
We’ve seen this song and dance before. It remains to be seen whether this is something they are going to follow through on or whether they are putting out releases to get good press.
The whole incident is still obscure. It is unclear whether the shutdown or scaling back of the operation is planned by the US government.