Fuel tanks at a Colonial plant in Charlotte, North Carolina, this Monday.DRONE BASE / Reuters
The FBI confirmed that the criminal group known as DarkSide was responsible for the massive cyber attack suffered last weekend by Colonial, one of the largest oil pipeline networks in the United States, and that it has affected the supply of crude oil.
The attack occurred a few days after the White House presented what it intends to be its cybersecurity roadmap in the Administration, which may fall short in cases like this.
Colonial supplies crude from Houston (Texas) to large population centers in the eastern and southern United States, including the New York metropolitan region, hence the severity of the attack.
Its energy supply is especially important on the east coast of the country, accounting for almost half of the transportation of fuel in that area.
The White House is confident that the company will resume operations by the end of this week.
Despite initial fears, the president, Joe Biden, assured that there is no proof that Russia is behind the attack and ruled out canceling his next meeting with Vladimir Putin, scheduled for June.
More information
What cyber attack will there be today?
This is how spoofing is detected before it occurs
The largest pipeline network in the United States suspends operations after suffering a cyberattack
"The FBI confirms that DarkSide is responsible for the cyber data hijacking that compromised the Colonial pipeline network," the agency said in a statement.
"We continue to work on the investigation with the company and our partners in government," concluded the FBI.
The White House, Homeland Security, the Department of Defense, the Department of Transportation and the Department of Energy are working to ensure that the supply interruption is as short as possible.
FBI Statement on Compromise of Colonial Pipeline Networks https://t.co/XxHgezpref pic.twitter.com/McrRFOil64
- FBI (@FBI) May 10, 2021
The interruption of supply adds upward pressure to the price of fuels. In addition, at the end of the month,
Memorial Day is
celebrated, a holiday that usually causes millions of trips and the consequent rise in the price of gasoline.
According to sources in the investigation cited by the US media, DarkSide is a criminal network located in Eastern Europe that acquired 100 gigabytes of information from Colonial in a few hours. After the attack, the company received a ransom request - of which the figure is not known - which, if not paid, would have the consequence that the company would never again have access to its data and would make part of it public. of them on the internet. This Monday the
hackers
assured in a statement that their intention was not to "create problems" for citizens.
The attack on Colonial comes just before the president of the United States unveils regulations this week to strengthen the cybersecurity of federal agencies and the companies that outsource to them. Although the cyber attack on Colonial raises doubts as to whether the presidential order does not fall short, because it shows that attacks on a private company can end up causing the collapse of transportation in the country.
The
Colonial
hack
has shown, once again, the great vulnerability of the United States in terms of cyberattacks. In fact, the order presented this week is intended to set the nation's cyber defense roadmap, with a series of digital directives for federal agencies and contractors developing
software
for the US government. For example, it is It will impose a double authentication code - like the one that consumers use when they must enter a code for a bank or a purchase when they log on to the web - and the "zero trust" law will be imposed on those who sell computer programs, leaving them only access federal systems when strictly necessary.
Joe Biden's White House decided to take action on the matter after the massive cyberattack, the one with the traces of Russia, which spied for months last year - with Donald Trump as president - on numerous government departments.
So the hackers used updates to a program that all departments use, created by a Texas company, Solarwinds, to break into systems and steal information.
DarkSide is relatively new to the cyber kidnapping world.
Born in August of last year, she is estimated to have pocketed between $ 200,000 and $ 2 million from her extortions.
DarkSide is considered a Robin Hood of hackers, as it prides itself on a code of conduct whereby it does not attack hospitals, schools, non-profit companies or government agencies.
Subscribe here
to the
EL PAÍS América
newsletter
and receive all the informative keys of the current situation in the region.