Security News > 2020 > February > U.S. Pipeline Disrupted by Ransomware Attack
A ransomware attack has hit a natural gas compression facility in the U.S., the feds have warned.
The attack resulted in a two-day pipeline shutdown as the unnamed victim worked to bring systems back online from backups.
Security firm Dragos said that despite limited technical details, previous ransomware attacks provide a possible attack blueprint: "Current trends in ransomware leverage initial access into victim environments to capture credentials or compromise Windows Active Directory to gain widespread access to the victim's entire network," it said in a blog post on Wednesday.
The attack did not impact any programmable logic controllers, which are responsible for directly reading and manipulating those processes in industrial environments - this was because the attack was limited to Windows-based systems.
"While many organizations operate under the assumption that their ICS systems are isolated, increased connectivity, poor security awareness and human mistakes continue to expose critical infrastructure to attack. While the effect of these attacks might not be catastrophic, ransomware can cause significant disruption, bring systems down and further erode the public's confidence in the security of our critical systems."
News URL
https://threatpost.com/pipeline-disrupted-ransomware-attack/153049/
Related news
- AutoCanada says ransomware attack "may" impact employee data (source)
- Microsoft Identifies Storm-0501 as Major Threat in Hybrid Cloud Ransomware Attacks (source)
- Embargo ransomware escalates attacks to cloud environments (source)
- JPCERT shares Windows Event Log tips to detect ransomware attacks (source)
- Ransomware attack forces UMC Health System to divert some patients (source)
- Underground ransomware claims attack on Casio, leaks stolen data (source)
- Casio confirms customer data stolen in a ransomware attack (source)
- Schools bombarded by nation-state attacks, ransomware gangs, and everyone in between (source)
- BianLian ransomware claims attack on Boston Children's Health Physicians (source)
- Microsoft: Ransomware Attacks Growing More Dangerous, Complex (source)