• Contact Us
  • Generic selectors
    Exact matches only
    Search in title
    Search in content
    Post Type Selectors
    our-leadership
    post
    page
    we-are-upto
    our-team
    our-culture
Colonial Pipeline: Ransomware Is Not Slowing Down

Colonial Pipeline: Ransomware Is Not Slowing Down

Date: May 17, 2021
Tags: ,

Colonial Pipeline Company — one of the nation’s largest pipeline operators, supplying fuel across a 5,500-mile distance from Texas to New York — was recently attacked by ransomware. The ransomware attack forced Colonial Pipeline to shut down its systems and pause all operations. This attack will go down in history as one of the largest cyberattacks on U.S. critical infrastructure that has impacted millions of consumers and businesses.

The Federal Bureau of Investigation (FBI) has since confirmed that DarkSide was responsible for this ransomware incident. DarkSide is a criminal actor (as opposed to a nation-state actor) whose sole purpose is to profit from organizing ransomware attacks and share the proceeds with other ransomware developers.

According to the FBI’s Internet Crime Report, the Internet Crime Complaint Center received 2,474 complaints that were classified as ransomware in 2020 alone, accounting for a loss of $29.1 million, more than triple the amount in 2019. Ransomware is a growing problem.

Additionally, the increase in remote work caused by COVID-19 can also be attributed to the increase in ransomware attacks in 2020. Ransomware attacks have debilitating effects on information technology (IT) and operational technology (OT) across industries, especially those that support the nation’s critical infrastructure. So, what exactly is a ransomware attack? According to the Cybersecurity & Infrastructure Security Agency (CISA),

“Ransomware is an ever-evolving form of malware designed to encrypt files on a device, rendering any files and the systems that rely on them unusable. Malicious actors then demand ransom in exchange for decryption.”

What can you do to prevent ransomware? CISA, in collaboration with the Multi-State Information Sharing and Analysis Center (MS-ISAC), has developed a Ransomware Guide (September 2020) to include prevention and response tips and best practices. Some prevention best practices include:

  • Maintain offline and encrypted backups of your data and be sure to regularly test these backups
  • Develop a cyber incident response plan and associated communications plan
  • Conduct regular vulnerability scanning, patch and software updates
  • Ensure all devices are properly configured and security features are enabled
  • Implement best practices for use of Remote Desktop services
  • Disable or block Server Message Block (SMB) protocol outbound and remove or disable outdated versions

“As critical OT industries, such as  energy and renewables, continue to digitally transform, they can mitigate damages by implementing a cyber resiliency approach that leverages zero-trust architectures throughout the OT supply chain, restricting the attacker’s ability to move latterly in all environments,” says Jyoti Wadhwa, T-Rex’s lead Cybersecurity Solutions Architect.

In addition to the above best practices, learn more about preventing various types of cyber-attacks. Read our blog post on Modern Cybersecurity: Modern Resilience.

recently posted
Driving Federal Mission Success: T-Rex’s Strategic Value as an AWS Advanced Tier Partner

Driving Federal Mission Success: T-Rex’s Strategic Value as an AWS Advanced Tier Partner

Amazon Web Services (AWS) Advanced Tier is a top-tier designation in the AWS Partner Network. This designation signifies deep understanding of AWS services and a proven track record of customer success. Federal agencies that leverage AWS Advanced Tier Partners benefit […]

Read More
T-Rex Achieves AWS Advanced Tier Partner Status

T-Rex Achieves AWS Advanced Tier Partner Status

T-Rex Solutions, a leading technology solutions provider, is proud to announce its recognition as an Amazon Web Services (AWS) Advanced Tier Services Partner. This prestigious designation highlights T-Rex’s ongoing commitment to delivering cloud innovation and its outstanding contributions to major […]

Read More
T-REX RECEIVES 2025 HIRE VETS MEDALLION AWARD FROM THE U.S. DEPARTMENT OF LABOR

T-REX RECEIVES 2025 HIRE VETS MEDALLION AWARD FROM THE U.S. DEPARTMENT OF LABOR

The U.S. Department of Labor has recognized T-Rex Solutions as one of the record-breaking 887 recipients of the 2025 HIRE Vets Medallion Award. T-Rex earned the platinum award. The Honoring Investments in Recruiting and Employing American Military Veterans Act (HIRE […]

Read More
T-Rex’s Zero Trust Reference Architecture: Multi-Cloud

T-Rex’s Zero Trust Reference Architecture: Multi-Cloud

Agencies should closely manage their Zero Trust program when considering a multi-cloud architecture to ensure a secure and zero trust compliant multi-cloud environment. Agencies can maximize these benefits: Agency maintains and improves Zero Trust Pillars Agency gains security capabilities Agency […]

Read More
  • This field is for validation purposes and should be left unchanged.