Colonial Pipeline has responded to claims by the Ransomed.vc gang regarding a ransomware attack, confirming there have been no disruptions to their operations or systems.
Furthermore, they dismissed the gang’s assertions, stating that the files posted online appeared to be related to a third-party data breach and unrelated to Colonial Pipeline. The gang had attempted to extort Colonial Pipeline and shared a zip file containing documents tied to the company. The 2021 ransomware attack on Colonial Pipeline had significant consequences, resulting in regulatory changes and the company’s $5 million ransom payment.
Colonial Pipeline’s infrastructure spans 5,500 miles, delivering various oil products throughout the Southern and Eastern U.S. Following the 2021 attack, it became a prominent case in the realm of ransomware, prompting government-level responses and cybersecurity regulations.
In June, the U.S. government employed digital surveillance powers to identify the responsible individual and recover a substantial portion of the ransom paid in bitcoin. Despite the arrest of one individual connected to the attack in Russia in 2022, it remains uncertain if they were convicted.
Ransomed.vc, the group claiming responsibility for the recent threats, has previously made headlines by warning victims of potential European data breach fines if ransoms for stolen data are not paid. The group defaced a Hawaiʻi state government website and reportedly prompted an investigation by Japanese manufacturing giant Sony regarding data theft claims.
However, the legitimacy of Ransomed.vc is questioned, as none of the victims added to their leak site since its emergence in August 15 have reported incidents, and it remains unclear if the group employs ransomware.
References:
