'I put the interests of the country first': Colonial Pipeline CEO on why oil biz paid off ransomware crooks

2021-06-09 16:28

The boss of Colonial Pipeline has appeared before a Senate Committee to explain the events which led to US East Coast fuel supplies running dry last month and some $5m being handed over in ransom.

Last week, Charles Carmakal, senior VP at cybersecurity firm Mandiant, which responded to the incident, revealed in an interview, that crooks accessed Colonial Pipeline's network using an old VPN and password thought to have fallen into the wrong hands via the dark web, although investigations are still ongoing.

Speaking yesterday, Blount added that the password used to gain access to the VPN was "Complex" - it wasn't just "Colonial123", he told the hearing.

"I know how critical our pipeline is to the country," Blount said in the hearing, "And I put the interests of the country first."

The operators of the Colonial Pipeline - which stretches 5,500 miles between Texas and New York, and can carry up to 3 million barrels of fuel per day - reportedly paid $5m to regain access to their systems.

As El Reg reported, the Department of Justice on Monday said it has recovered 63.7 Bitcoins, right now worth $2.1m and falling, of the 75 or so BTC the Colonial Pipeline operators paid the ransomware miscreants who infected the fuel provider's computers.

News URL

https://go.theregister.com/feed/www.theregister.com/2021/06/09/old_vpn_colonial_pipeline/

#CEO #ransomware