For the first time, Joseph Blount, CEO of Colonial Pipeline Co., told The Wall Street Journal that he authorized the ransom payment of $4.4 million on the evening of May 7 after a ransom note from hackers was found on a control room computer. He was unsure how deep the ransomware penetrated the network controlling the pipeline systems but was obligated to immediately resolve the issue as the pipeline provides approximately 45% of the fuel for the US East Coast.
Article from Zero Hedge.
This is Blount’s first public acknowledgment about the company paying the ransom to DarkSide, the cybercriminal gang believed to be based in Eastern Europe or Russia.
“I know that’s a highly controversial decision,” he said. “I didn’t make it lightly. I will admit that I wasn’t comfortable seeing money go out the door to people like this.”
“But it was the right thing to do for the country,” Blount added.
DarkSide operates a “ransomware as a service” business model where they find ways to breach private networks and install malicious software designed to block access to a computer system unless a ransom is paid.
✔️ Boost your immune system with Nutraceutical by Dr. Zev Zelenko
✔️ Beat supply chain issues and future pharmaceutical tyranny with 5 Antibiotics Delivered to Your Home
✔️ Be ready to help yourself and your family with the World’s Best Med Kit
The Federal Bureau of Investigation usually advises companies not to pay the ransom due to the uncertainty of receiving ransomware tools to restore computer systems after payment. Also, it would set precedence and make the ransomware business flourish.
However, Blount quickly paid the ransom after consultation with cybersecurity experts. The payment was made the same day the ransomware was discovered, on May 7, in the form of Bitcoin. The company then received a decryption tool from DarkSide. Still, it wasn’t enough the restore the entire 5,500-mile pipeline system from Gulf Coast to Linden, New Jersey, resulting in six days of fuel stoppage and the eventual gas shortage at fueling stations up and down the East Coast. This also rocketed fuel prices to a 6.5-year high.
Last Thursday, Bloomberg said Colonial paid the hackers within hours of the attack in “untraceable” Bitcoin.
Blount told WSJ that Colonial had had segments of its pipeline closed for days or weeks due to Gulf Coast hurricanes, but having the entire system closed for nearly a week was unprecedented. In many ways, it was more devastating than any natural disaster previously seen.
He said the ransomware was found on a control room computer at 0530 ET on May 7. When workers found the ransomware, it was quickly escalated up the company’s chain of command to Blount within 30 minutes.
A short time later, Colonial shut the entire system down, spanning 13 states and Washington, DC, to prevent the infection from spreading.
Over the day, Colonial executives were in constant contact with FBI’s offices in Atlanta and San Francisco and a Cybersecurity and Infrastructure Security Agency representative, Blount said.
The CEO went onto say, through the shutdown period, the Energy Department worked alongside Colonial to provide multiple federal agencies involved in the response effort with updates.
Blount’s quick action resolved what could’ve resulted in widespread chaos across the East Coast for weeks. The pipeline’s fuel flow has returned to normal, but Blount said restoration work to recover some business systems could take months and tens of millions of dollars.
“We were perfectly happy having no one know who Colonial Pipeline was, and unfortunately that’s not the case anymore,” he said. “Everybody in the world knows.”
Still, the lingering effects of the pipeline shutdown continue Wednesday, with as many as 9.5k fuel stations are without gas.
Big improvements! Gas outages by state, 8am CT, chg since last update:
AL 6% -1%
DC 60% -7%
DE 2% N/C
FL 14% -1%
GA 35% -3%
KY 2% N/C
LA 2% N/C
MD 19% -3%
MS 6% N/C
NC 41% -3%
NJ 1% N/C
SC 38% -3%
TN 21% -2%
TX 2% N/C
VA 21% -4%
WV 5% N/C
TOTAL 9,508 stns without gas— Patrick De Haan ⛽️📊 (@GasBuddyGuy) May 19, 2021
In a blog post Tuesday, London-based blockchain analytics firm Elliptic who identified the bitcoin wallet used by DarkSide to collect ransom payments from its victims, said the group and its affiliates collected $90 million bitcoin ransom payments over the past nine months from 47 victims.
On Tuesday, Colonial experienced another round of issues where it issued a brief statement that read: “Colonial is currently experiencing network issues impacting customers’ ability to enter and update nominations.”
So after collecting nearly $90 million in ransomware payments over the nine months and then resulting in the grand finale of paralyzing almost 50% of the US East Coast fuel system, DarkSide appears to have closed down.
Yes, We Need Your Help
I hate being “that guy” who asks people to donate because I think our conservative news network is so crucial, but here I am…
When I left my cushy corporate job in 2017, I did so knowing that my family would have to make sacrifices. But I couldn’t continue to watch the nation slip into oblivion and was inspired by President Trump’s willingness to fight the good fight even at his own personal expense. What I didn’t realize then is that conservative media would be so heavily attacked, canceled, and defunded that the sacrifices would be extreme.
Many in this nation are struggling right now even though we weren’t struggling just a few years ago. I’m not alone. But I wake up every morning and operate the sites we’ve been able to build because there’s really no other choice. I refuse to be beholden to Big Tech like so many other conservative news outlets, which is why you won’t see Google ads here. With that said, it’s often challenging to pay the bills and it’s even harder to expand so we can get the America First message out to a wider audience.
The economic downturn has forced me to make a plea for help. Between cancel culture, lockdowns, and diminishing ad revenue, we need financial assistance in order to continue to spread the truth. We ask all who have the means, please donate through our Giving Fuel. Your generosity is what keeps these sites running and allows us to expand our reach so the truth can get to the masses. We’ve had great success in growing but we know we can do more with your assistance.
We currently operate:
- NOQ Report
- Conservative Playlist
- Uncanceled News
- Based Underground
- Five other conservative news sites
I would even be willing to entertain investments and partnerships at this stage. I’ve turned them down in the past because editorial purity is extremely important. I’ll turn them down again if anyone wants us to start supporting RINOs or avoid “taboo” topics like voter fraud, vaccines, or transgender supremacy. But I’d talk to fellow America First patriots who want to help any (or all) of our 10 news sites. Hit me up at jdrucker (at) substack (dot) com if you’re interested.
For those who have the means and just want to help keep the mission of spreading a conservative, Christian message to the nation, please consider a generous donation.
All ORIGINAL content on this site is © 2021 NOQ Report. All REPUBLISHED content has received direct or implied permission for reproduction.
With that said, our content may be reproduced and distributed as long as it has a link to the original source and the author is credited prominently. We don’t mind you using our content as long as you help out by giving us credit with a prominent link. If you feel like giving us a tip for the content, we will not object!
JD Rucker – EIC
@jdrucker