💰💣
Colonial Pipeline Security Incident
8/05/2021
1509 days ago
Resolved
Incident Overview
Situation Description
Colonial Pipeline experienced a ransomware attack by the DarkSide group on May 8, 2021, forcing the shutdown of its operations.
Event Types
Ransomware
Malware / Destructive Attack
Industry Sector
EnergyGeographic Scope
National (US)Response Actions
Isolated Compromised Systems
Took Systems or Services Offline
Restored Systems from Secure Backups
Impact Analysis
Event Types (2 identified)
Ransomware
Malware / Destructive Attack
Financial Impact
$0 USDRecords Affected
0Data Types Compromised
PII (Personally Identifiable Information)
Operational / System Data
Primary Impacts
Operational Disruption
Financial Loss
Reputational Damage
Key Decisions Made
Colonial Pipeline proactively cut off business system networks to prevent the spread of malware to operational industrial control systems (ICS).; Colonial Pipeline suspended all pipeline operations until they were sure that no ICS networks were compromised.; Operations will slowly be brought back online with hope of full operations by the end of the week.
Technical Analysis
Attack Method
Unknown
Threat Actor Attribution
DarkSide
Additional Information
Quick Facts
- Company:
- Colonial Pipeline
- Date:
- 8/05/2021
- Status:
- Resolved
- Decision Maker:
- nan
- Position:
- nan
- Published:
- 10/05/2021
Source Information
Original Query
Colonial Pipeline stock price impact and long-term recovery post DarkSide attackTimeline
Information Published
10/05/2021
Incident Occurred
8/05/2021 (1509 days ago)
Status: Resolved
Estimated resolution based on age