image
The Biden administration has declared a state of emergency that covers 17 states and Washington D.C. in the wake of the ransomware attack on the Colonial Pipeline Co., and is working with Colonial to restart operations. On Monday morning, FireEye also confirmed to Threatpost that it’s been called in to help with the investigation, but it wasn’t at liberty to say anything more. The news came as security researchers mulled possible perpetrators of the attack, and warned that the incident could be a harbinger of things to come. 05102021 14:24 UPDATE: Shortly after this article was posted, in a terse statement, the FBI confirmed that DarkSide ransomware is behind the attack. The Biden declaration, which the government made on Sunday following Friday’s attack and pipeline shutdown, covers Alabama, Arkansas, D.C., Delaware, Florida, Georgia, Kentucky, Louisiana, Maryland, Mississippi, New Jersey, New York, North Carolina, Pennsylvania, South Carolina, Tennessee, Texas and Virginia. The government is working to keep the supply of gasoline, diesel, jet fuel and other refined petroleum products flowing to those states and the capital. Join Threatpost for “Fortifying Your Business Against Ransomware, DDoS & Cryptojacking Attacks” a LIVE roundtable event on Wednesday, May 12 at 2:00 PM EDT for this FREE webinar sponsored by Zoho ManageEngine. As well, the Cybersecurity & Infrastructure Agency (CISA) has posted ransomware guidance and resources, saying that it’s engaged with Colonial…

Source