The FBI said Monday that the ransomware gang known as "Darkside" was the group responsible for the attack over the weekend that forced the shutdown of the Colonial Pipeline networks responsible for carrying gasoline from Texas to the Northeast.
"The FBI confirms that the Darkside ransomware is responsible for the compromise of the Colonial Pipeline networks," the FBI said in a statement Monday. "We continue to work with the company and our government partners on the investigation."
A senior Department of Justice source told FOX Business that the investigation into the attack is ongoing due to the involvement of ransomware, labeling the sophistication of the tools involved "very high."
Darkside announced its existence in August 2020, and claims it does not attack medical, educational or government targets – only large corporations – and that it donates a portion of what it takes to charity.
The group will harvest data from a victim’s server, then encrypt it and request a ransom. The group then will upload the data to a leak website on the dark web, which will publish should it not receive the ransom, risking sensitive data loss for any victim organization.
Darkside has advertised stolen documents from more than 80 companies across the U.S. and Europe on its website.
Read More: foxbusiness.com
Comments
Post a Comment