Security News > 2021 > May > What the pipeline attack means for critical infrastructures
The big news in critical infrastructure security is the ransomware-triggered shutdown of the Colonial gasoline pipeline - the largest such pipeline in the USA. The attack has been attributed to the DarkSide ransomware group.
Even without evidence that the attack has migrated into ops, the organization might shut everything down in an abundance of caution, like they did in the Norsk Hydro attack in 2019.
How well protected are critical infrastructures generally against these targeted ransomware operations?
Targeted ransomware groups, whether they target industrial networks deliberately or only accidentally, are a real threat to a lot of critical infrastructures.
Critical infrastructures are critical - this is the point.
Critical infrastructure organizations need a clear understanding of what they're up against, and they need defenses in place to keep everything that is critical working.
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/lix_0GwxtcE/
Related news
- US charges Chinese hackers linked to critical infrastructure breaches (source)
- CISA tags critical Ivanti EPM flaws as actively exploited in attacks (source)
- Critical PHP RCE vulnerability mass exploited in new attacks (source)
- CISA: Medusa ransomware hit over 300 critical infrastructure orgs (source)
- Critical RCE flaw in Apache Tomcat actively exploited in attacks (source)
- Critical GitHub Attack (source)
- Critical Cisco Smart Licensing Utility flaws now exploited in attacks (source)
- Ongoing Cyber Attacks Exploit Critical Vulnerabilities in Cisco Smart Licensing Utility (source)
- UAT-5918 Targets Taiwan's Critical Infrastructure Using Web Shells and Open-Source Tools (source)
- Critical auth bypass bug in CrushFTP now exploited in attacks (source)