Security News > 2021 > May > What the pipeline attack means for critical infrastructures
The big news in critical infrastructure security is the ransomware-triggered shutdown of the Colonial gasoline pipeline - the largest such pipeline in the USA. The attack has been attributed to the DarkSide ransomware group.
Even without evidence that the attack has migrated into ops, the organization might shut everything down in an abundance of caution, like they did in the Norsk Hydro attack in 2019.
How well protected are critical infrastructures generally against these targeted ransomware operations?
Targeted ransomware groups, whether they target industrial networks deliberately or only accidentally, are a real threat to a lot of critical infrastructures.
Critical infrastructures are critical - this is the point.
Critical infrastructure organizations need a clear understanding of what they're up against, and they need defenses in place to keep everything that is critical working.
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/lix_0GwxtcE/
Related news
- New IOCONTROL malware used in critical infrastructure attacks (source)
- Iran-linked crew used custom 'cyberweapon' in US critical infrastructure attacks (source)
- Cleo patches critical zero-day exploited in data theft attacks (source)
- CISA confirms critical Cleo bug exploitation in ransomware attacks (source)
- CISA warns of critical Oracle, Mitel flaws exploited in attacks (source)
- Hackers exploit critical Aviatrix Controller RCE flaw in attacks (source)
- Critical SimpleHelp Flaws Allow File Theft, Privilege Escalation, and RCE Attacks (source)
- Zyxel CPE devices under attack via critical vulnerability without a patch (CVE-2024-40891) (source)