Security News > 2021 > May > Colonial Pipeline was looking to hire cybersecurity manager before ransomware attack shut down operations

Stricken US bulk hydrocarbon conveyor Colonial Pipeline advertised for a new cybersecurity manager a month before that ransomware attack forced operators to shut down the pipeline as a pre-emptive safety measure.

The job advert came to light in the wake of the ransomware attack, which shut down one of America's largest pipelines on Friday 7 May. "Employees find exciting opportunities to grow and develop their careers at a stable company which offers a generous compensation and benefits package that includes annual incentive bonuses, retirement plans, insurance coverage and a host of other features that support a happy, active, productive and rewarding life," says the advertisement.

The Darkside ransomware gang is said to be responsible for the attack.

Infosec firm Secureworks reckons the Russia-based criminals have been operating since August last year as a commission-based affiliate operation, and are an offshoot of the notorious REvil ransomware crew.

South Korea ordered a review of its energy infrastructure's digital security in the wake of the Colonial Pipeline shutdown.

A minister said the Asian nation would be checking "Whether cybersecurity preparations and countermeasures for our energy-related infrastructure are properly in place." Next to South Korea is North Korea, a well-known hotbed of malicious people who use ransomware to fund their pariah state.

News URL

https://go.theregister.com/feed/www.theregister.com/2021/05/13/colonial_pipeline_hiring_cybersecurity_manager/