x

Society

US Pipeline Company Halts Operations After Cyberattack

WASHINGTON — A U.S. energy company says a cyberattack forced it to temporarily halt all operations on a major pipeline that delivers roughly 45% of all fuel consumed on the East Coast.

Colonial Pipeline said the attack took place Friday and also affected some of its information technology systems. The company transports gasoline, diesel, jet fuel and home heating oil from refineries primarily located on the Gulf Coast through pipelines running from Texas to New Jersey.

The Alpharetta, Georgia-based company said it hired an outside cybersecurity firm to investigate the nature and scope of the attack and has also contacted law enforcement and federal agencies.

"Colonial Pipeline is taking steps to understand and resolve this issue," the company said in a late Friday statement. "At this time, our primary focus is the safe and efficient restoration of our service and our efforts to return to normal operation. This process is already underway, and we are working diligently to address this matter and to minimize disruption to our customers and those who rely on Colonial Pipeline."

Oil analyst Andy Lipow said the impact of the attack on fuel supplies and prices depends on how long the pipeline is down. An outage of one or two days would be minimal, he said, but an outage of five or six days could causes shortages and price hikes, particularly in an area stretching from central Alabama to the Washington, D.C., area.

Lipow said a key concern about a lengthy delay would be the supply of jet fuel needed to keep major airports operating, like those in Atlanta and Charlotte, North Carolina. 

The precise nature of the attack was unclear, including who launched it and what the motives were. A Colonial Pipeline spokeswoman declined to say whether the company had received a ransom demand, as is common in attacks from cyber criminal syndicates.

Ransomware scrambles a victim organization's data with encryption. The criminals leave instructions on infected computers for how to negotiate ransom payments and, once paid, provide software decryption keys. While there have long been fears about U.S. adversaries disrupting American energy suppliers, ransomware attacks are much more common and have been soaring lately.

Mike Chapple, teaching professor of IT, analytics and operations at the University of Notre Dame's Mendoza College of Business and a former computer scientist with the National Security Agency, said systems that control pipelines should not be connected to the internet and vulnerable to cyber intrusions.

"The attacks were extremely sophisticated and they were able to defeat some pretty sophisticated security controls, or the right degree of security controls weren't in place," Chapple said. 

Colonial Pipeline said it transports more than 100 million gallons of fuel daily, through a pipeline system spanning more than 5,500 miles. 

The FBI and the White House's National Security Council did not immediately return messages seeking comment. The federal Cybersecurity Infrastructure and Security Agency referred questions about the incident to the company. 

A hacker's botched attempt to poison the water supply of a small Florida city raised alarms about how vulnerable the nation's critical infrastructure may be to attacks by more sophisticated intruders. 

Anne Neuberger, the Biden administration's deputy national security adviser for cybersecurity and emerging technology, said in an interview with The Associated Press in April that the government was undertaking a new effort to help electric utilities, water districts and other critical industries protect against potentially damaging cyberattacks. She said the goal was to ensure that control systems serving 50,000 or more Americans have the core technology to detect and block malicious cyber activity.

Since then, the White House has announced a 100-day initiative aimed at protecting the country's electricity system from cyberattacks by encouraging owners and operators of power plants and electric utilities to improve their capabilities for identifying cyber threats to their networks. It includes concrete milestones for them to put technologies into use so they can spot and respond to intrusions in real time. The Justice Department has also announced a new task force dedicated to countering ransomware attacks in which data is seized by hackers who demand payment from victims in order to release it.

RELATED

WASHINGTON — The White House on Thursday announced more steps to make the antiviral treatment Paxlovid more accessible across the U.

Top Stories

General News

FALMOUTH, MA – The police in Falmouth have identified the victim in an accident involving a car plunging into the ocean on February 20, NBC10 Boston reported.

General News

NEW YORK – Meropi Kyriacou, the new Principal of The Cathedral School in Manhattan, was honored as The National Herald’s Educator of the Year.

General News

PHILADELPHIA – The Federation of Hellenic Societies of Philadelphia and Greater Delaware Valley announced that the Evzones, the Presidential Guard of Greece will be participating in the Philadelphia Greek Independence Day Parade on March 20.

Video

Prime Minister Kyriakos Mitsotakis Speaks, Is Honored at Boston College Graduation

BOSTON – Prime Minister of Greece Kyriakos Mitsotakis was the keynote speaker at the 146th commencement ceremony of Boston College, where he was awarded an honorary doctorate.

Enter your email address to subscribe

Provide your email address to subscribe. For e.g. abc@xyz.com

You may unsubscribe at any time using the link in our newsletter.