IT Pro is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Learn more

US pipelines ordered to strengthen cyber defenses

DHS raises IT security standards after Colonial Pipeline hack

Man carrying a larger pipe

For the first time, US pipeline operators will be required to conduct a cyber security assessment, according to a new federal rule that's coming down in the wake of the recent ransomware hack that disrupted gasoline supplies in the Southeast.

The Department of Homeland Security (DHS) issued a new security directive Thursday. Until now, American pipeline companies operated under purely voluntary cyber security guidelines.

The new directive requires pipeline owners and operators to report any cyber incidents to the federal government, according to Reuters and the Associated Press. They also must have a designated cyber security coordinator available 24/7 to work with authorities in the event of an attack.

Pipeline owners and operators are required to review their cyber security practices and identify any potential gaps or risks. They have 30 days to report these to the Transportation Security Administration. 

Failing to comply could result in fines starting at $7,000 per day.

"The recent ransomware attack on a major petroleum pipeline demonstrates that the cybersecurity of pipeline systems is critical to our homeland security," DHS Secretary Alejandro Mayorkas said.

Related Resource

Defend your organisation from evolving ransomware attacks

Learn what it takes to reduce risk and strengthen operational resiliency

Defend your organisation from evolving ransomware attacks - whitepaper from VeritasDownload now

In the recent Colonial Pipeline cyber attack, Colonial's CEO has confirmed the pipeline company paid $4.4 million to cyber criminals who hit it with a ransomware attack in early May.

CEO Joseph Blount said he approved the payment because executives were unclear how extensive the attack was, how far it had penetrated systems, and the time it would take to bring company operations back to normal.

When DarkSide hackers attacked Colonial, they forced it to shut down 5,500 miles of pipeline between Texas and New York, disrupting the fuel supply to large swaths of the East Coast. They also took 100GB of data from the network before locking computers and extorting the company for a ransom payment. 

Once Colonial paid, the hackers sent a decryption tool to fix its computer systems. However, the tool was slow to fix problems, leaving the pipeline company relying on backups to restore systems.

According to the FBI, the hackers, known as Darkside, are in Eastern Europe or Russia.. Darkside reportedly expressed regret at the amount of damage it caused the Colonial. The hackers said they were "apolitical" and didn't "participate in geopolitics."

Featured Resources

Accelerating AI modernisation with data infrastructure

Generate business value from your AI initiatives

Free Download

Recommendations for managing AI risks

Integrate your external AI tool findings into your broader security programs

Free Download

Modernise your legacy databases in the cloud

An introduction to cloud databases

Free Download

Powering through to innovation

IT agility drive digital transformation

Free Download

Recommended

LockBit 2.0 ransomware disguised as PDFs distributed in email attacks
Security

LockBit 2.0 ransomware disguised as PDFs distributed in email attacks

27 Jun 2022
Best free malware removal tools 2022
Security

Best free malware removal tools 2022

22 Jun 2022
A guide to cyber security certification and training
Careers & training

A guide to cyber security certification and training

16 Jun 2022
What is shoulder surfing?
social engineering

What is shoulder surfing?

10 Jun 2022

Most Popular

FCC commissioner urges Apple and Google to remove TikTok from app stores
data protection

FCC commissioner urges Apple and Google to remove TikTok from app stores

29 Jun 2022
LockBit 2.0 ransomware disguised as PDFs distributed in email attacks
Security

LockBit 2.0 ransomware disguised as PDFs distributed in email attacks

27 Jun 2022
Former Uber security chief to face fraud charges over hack coverup
data breaches

Former Uber security chief to face fraud charges over hack coverup

29 Jun 2022