DarkSide hackers speak out, the US still does not apologize to Russia

DarkSide hackers speak out, the US still does not apologize to Russia

Sputnik quoted news from the technology news website Bleepingcomputer as saying that hackers from the DarkSide group have just posted a line apologizing to the United States on this group’s website for shutting down the network of the Colonial Pipeline fuel pipeline. disrupted supplies in dozens of US states.

DarkSide news is spreading, My van doesn't ask for forgiveness
Colonial Pipeline’s fuel pipeline system

The group of hackers insisted that they never planned to cause such significant disturbances to society and promised to examine their targets carefully in the future.

In addition to apologizing to the United States for the situation they are in right now, DarkSide did not apologize to Russia, although it also emphasized that the group is not affiliated with any government and acted alone, Bleepingcomputer cited the statement. father of this group.

“We’re apolitical, we don’t engage in geopolitics, don’t tie us to a defined government, and look for our other motives. Our goal is to make money, not create problems for society.

From today, we’re introducing censorship and auditing each company that our partners want to encrypt to avoid future social consequences,” DarkSide said in a statement.

The group claimed it was possible that one of their “branches” carried out the attack. The group claims not to be directly involved in attacks on companies or government networks, as was the case with Colonial Pipeline. Instead, they develop software for these attacks and negotiate ransom payments with victims in favor of affiliates who deliberately use their tools. According to the report, DarkSide’s core team receives between 20% and 30% ransom for its services.

But the latest victim targeted by DarkSide affiliates has been identified as critical infrastructure in the US – a pipeline responsible for about 45% of fuel supplies in more than a dozen US states across the country. South and East Coast.

DarkSide did not say how much ransom it or its affiliates demanded in this target.

DarkSide news is spreading, My van doesn't ask for forgiveness
US President Joe Biden said Russia was not the culprit but still bears responsibility.

US President Joe Biden said on May 10: “As of right now, our intelligence agencies have no evidence that Russia is involved.” However, he also emphasized that the malicious code was used “within Russia” and for that, Moscow still had to bear “part of the responsibility”.

Meanwhile, US media, citing unnamed sources, revealed that the DarkSide cybercrime organization, based in a “Russian-speaking country”, was the culprit behind the attack.

Colonial Pipeline, based in Alpharetta, Georgia, is the largest refined product pipeline system in the United States. The company’s system connects oil refineries on the Gulf of Mexico coast to markets in the southern and eastern United States through an 8,850-kilometer pipeline system, transporting 2.5 million barrels per day of gasoline. , diesel, jet fuel and other refined products.

According to Colonial Pipeline and US authorities, the company was attacked with ransomware and the perpetrators may be cybercriminal groups that often steal data and computer networks to get cryptocurrency.

Ransomware can cause enormous damage to an organization’s network by locking up important data or causing computers to crash beyond repair. However, the impact on the activities of energy companies is different.

A serious cyberattack against Saudi Aramco in 2012 crippled the Saudi oil giant’s computer systems but did not affect output. In contrast, a similar Norsk Hydro incident prompted the aluminum producer not to automate smelters.

DarkSide news is spreading, My van doesn't ask for forgiveness
Hackers say sorry for cyberattack that caused social consequences in the US

Experts say the severity of the Colonial Pipeline case will depend on whether the ransomware has penetrated the technology operating system. Earlier this year, US authorities announced that a cyberattack on a compressed air plant spread to the technology operating system, forcing the facility to close completely for two days.

US authorities are working together to help the Colonial Pipeline recover, while avoiding a more serious impact on fuel supplies if pipeline closures continue.

Colonial Pipeline’s pipeline network serves many major airports in the US such as Hartsfield Jackson in Atlanta, Georgia – the airport with the largest passenger traffic in the world. Fuel supplies to the region could be affected, and fuel prices could also be affected, experts warn.

Colonial Pipeline announced on May 9 that it is developing a plan to restart the pipeline system. The main pipeline is still down, but the smaller branches between the hubs and deliveries are back up and running.

Hai Lam


Related Posts