Federal Government Prepares to Take Lead in Protecting Industry Computer Networks

June 10, 2021 by Tom Ramstack
Federal Government Prepares to Take Lead in Protecting Industry Computer Networks
Colonial Pipeline CEO Joseph Blount testifies during a Senate Homeland Security and Government Affairs Committee hearing, Tuesday, June 8, 2021, on Capitol Hill, in Washington. (Graeme Jennings/Pool via AP)

WASHINGTON — Testimony at a congressional hearing Wednesday on last month’s Colonial Pipeline Co. ransomware attack demonstrated that a bigger role for the federal government is coming soon to protect private computer networks.

The Georgia-based company’s chief executive officer admitted to internal failures in protecting the 5,500-mile pipeline’s computer network but also expressed frustration in dealing with sophisticated, foreign-based cybercriminals.

“We need the government’s help to put pressure on these host countries,” said Joe Blount, Colonial Pipeline’s chief executive officer. 

The network was compromised on May 7 by a Russian gang of cybercriminals that use the name Darkside. They encrypted access to the Colonial Pipeline computer system in a way that blocked employees from using it.

Darkside released the encryption only after Colonial Pipeline paid a $4.4 million ransom through cryptocurrency into an anonymous account. By then, the ransomware attack shut down 45% of the fuel deliveries to the U.S. East Coast until the company restarted the pipeline on May 12.

The FBI recovered $2.3 million of the money this week by breaking into the account but did not lessen public outrage over the incident.

The outrage continued Wednesday among corporate executives and lawmakers at the House Homeland Security Committee hearing.

Colonial Pipeline has spent more than $200 million to protect its pipeline, including on cybersecurity, Blount said. Nevertheless, “The unfortunate reality is that those defenses were compromised.”

Charles Carmakal, chief technology officer for the cybersecurity firm FireEye Mandiant, said the Colonial Pipeline attack was traced to a single employee who used a company password designed for access to the network on more than one website. Hackers then tapped into the password on the second website and published it on the dark web, where Darkside picked it up.

Colonial Pipeline has hired Alexandria, Va.-based FireEye Mandiant to harden its computer networks against further intrusions.

Carmakal could not give assurances that the risks from cyberattacks will diminish soon in the United States.

“We are dealing with cyber intrusions every single day,” Carmakal said at the hearing. He also said that “threat actors will exert immense pressure” to get money.

Officials from JBS S.A., the world’s largest meatpacking company, said their cyber defenses were similarly overwhelmed on May 30 when Russian hackers launched an attack against their system. The attack shut down the Brazilian company’s plants in the United States and Australia until June 2.

The hearing preceded a meeting scheduled for June 16 between President Joe Biden and Russian President Vladimir Putin.

Biden has told the media the U.S. government is considering striking back against the Russian hackers in ways he did not disclose in detail. Putin has called any implication the Russian government sponsors or condones the attacks “nonsense.”

The Biden administration said the hacking attacks will be discussed during the summit meeting.

Meanwhile, several bills are pending in Congress that would expand the federal government’s leadership in guarding U.S. industry against cyberattacks.

One of them, introduced by Rep. John Katko, R-N.Y., would grant more authority to the U.S. Cybersecurity and Infrastructure Security Agency to coordinate government and industry responses to threats against computer networks.

“We must break the ransomware business model once and for all,” Katko said.

Another pending bill, introduced by Rep. Michael McCaul, R-Texas, and called the Cyber Diplomacy Act, would direct the U.S. State Department to take the lead in setting up international cybersecurity standards.

“I think we need to think about going on the offense and hitting them back,” McCaul said.

A+
a-
  • Colonial Pipeline
  • Congress
  • cybercrime
  • cybersecurity
  • House Homeland Security Committee
  • Joe Blount
  • In The News

    Health

    Voting

    Cybersecurity

    April 29, 2025
    by Tom Ramstack
    FBI Reports Sharp Increase in American Cybercrime Victims

    WASHINGTON — The FBI’s new Internet Crime Report released last week shows Americans lost $16.6 billion to cybercrime in 2024... Read More

    WASHINGTON — The FBI’s new Internet Crime Report released last week shows Americans lost $16.6 billion to cybercrime in 2024 despite an intensified government effort to stop it. The losses were up by one-third from a year earlier.  Fraud was the most common crime, particularly among... Read More

    December 31, 2024
    by Tom Ramstack
    Chinese Accused of Hacking US Treasury Dept. Computers

    WASHINGTON — A Chinese intelligence agency recently hacked the workstations and unclassified documents of the U.S. Treasury Department, the Biden... Read More

    WASHINGTON — A Chinese intelligence agency recently hacked the workstations and unclassified documents of the U.S. Treasury Department, the Biden administration announced Monday. The hack attack is one of several Chinese-sponsored incidents the U.S. Cybersecurity and Infrastructure Security Agency says have compromised the data privacy of... Read More

    The US and Microsoft Disrupt a Russian Hacking Group Targeting American Officials and Nonprofits

    WASHINGTON (AP) — A hacking group tied to Russian intelligence tried to worm its way into the systems of dozens... Read More

    WASHINGTON (AP) — A hacking group tied to Russian intelligence tried to worm its way into the systems of dozens of Western think tanks, journalists and former military and intelligence officials, Microsoft and U.S. authorities said Thursday. The group, known as Star Blizzard to cyberespionage experts,... Read More

    Americans Reporting Nationwide Cellular Outages From AT&T, Cricket Wireless and Others

    A number of Americans are dealing with cellular outages on AT&T, Cricket Wireless, Verizon, T-Mobile and other service providers, according... Read More

    A number of Americans are dealing with cellular outages on AT&T, Cricket Wireless, Verizon, T-Mobile and other service providers, according to data from Downdetector. AT&T had more than 73,000 outages around 9:30 a.m. ET, in locations including Houston, Atlanta and Chicago. The outages began at approximately... Read More

    States and Congress Wrestle With Cybersecurity at Water Utilities Amid Renewed Federal Warnings

    HARRISBURG, Pa. (AP) — The tiny Aliquippa water authority in western Pennsylvania was perhaps the least-suspecting victim of an international... Read More

    HARRISBURG, Pa. (AP) — The tiny Aliquippa water authority in western Pennsylvania was perhaps the least-suspecting victim of an international cyberattack. It had never had outside help in protecting its systems from a cyberattack, either at its existing plant that dates to the 1930s or the... Read More

    December 6, 2023
    by Dan McCue
    HHS Unveils Next Steps to Enhance Cybersecurity of Health Care Records

    WASHINGTON — The bad guys in cyberspace want your health care records.  Between 2018 and 2022, there was a 93%... Read More

    WASHINGTON — The bad guys in cyberspace want your health care records.  Between 2018 and 2022, there was a 93% increase in large breaches in the health care sector, with a 278% increase in large breaches involving ransomware, according to the Department of Health and Human... Read More

    News From The Well
    scroll top