Colonial Pipeline ransomware attack

Rethinking Networking to Derail Ransomware

Posted on June 15, 2021 by Frank Ohlhorst

Despite the best efforts of many organizations, ransomware attacks are still on the rise; perhaps indicating that those “best efforts” are just not good enough. Take, for example, the recent ransomware attack on the Colonial Pipeline, prompting a shut… Continue reading Rethinking Networking to Derail Ransomware→

Try This One Weird Trick Russian Hackers Hate

Posted on May 17, 2021 by BrianKrebs

In a Twitter discussion last week on ransomware attacks, KrebsOnSecurity noted that virtually all ransomware strains have a built-in failsafe designed to cover the backsides of the malware purveyors: They simply will not install on a Microsoft Windows computer that already has one of many types of virtual keyboards installed — such as Russian or Ukrainian. So many readers had questions in response to the tweet that I thought it was worth a blog post exploring this one weird cyber defense trick. Continue reading Try This One Weird Trick Russian Hackers Hate→

DarkSide Ransomware Gang Quits After Servers, Bitcoin Stash Seized

Posted on May 14, 2021 by BrianKrebs

The DarkSide ransomware affiliate program responsible for the six-day outage at Colonial Pipeline this week that led to fuel shortages and price spikes across the country is running for the hills. The crime gang announced it was closing up shop after its servers were seized and someone drained funds from an account the group uses to pay affiliates. Continue reading DarkSide Ransomware Gang Quits After Servers, Bitcoin Stash Seized→

Responding to the Colonial Pipeline Breach & CISA Ransomware Alert

Posted on May 13, 2021 by Edgard Capdevielle

The recent DarkSide ransomware attack on Colonial Pipeline, a critical infrastructure supplier of about 45% of the United States’ east coast gasoline, diesel and jet fuel, infected the company’s IT network. Learn about the threat posed by ransomware an… Continue reading Responding to the Colonial Pipeline Breach & CISA Ransomware Alert→

A Closer Look at the DarkSide Ransomware Gang

Posted on May 11, 2021 by BrianKrebs

The FBI confirmed this week that a relatively new ransomware group known as DarkSide is responsible for an attack that caused Colonial Pipeline to shut down 5,550 miles of pipe, stranding countless barrels of gasoline, diesel and jet fuel on the Gulf Coast. Here’s a closer look at the DarkSide cybercrime gang, as seen through their negotiations with a recent U.S. victim that earns $15 billion in annual revenue. Continue reading A Closer Look at the DarkSide Ransomware Gang→