Skip to main content

Ransomware, and the US fuel hack

In May, a criminal group hacked a major US fuel pipeline. This was a ransomware attack, where the group DarkSide infiltrated Colonial Pipeline’s network, locking the data on computers and servers and demanding a ransom. But how did it happen, and how can you keep your business safe against cyber attacks?

The US fuel pipeline hack

The US fuel pipeline hack was headline news in May, as the ransomware attack took down Colonial Pipeline for five days. The pipeline is 5,500 miles long, and carries 2.5 million barrels a day along the East Coast of the US. 

The attack had a huge impact on fuel costs, sending the price of petrol rocketing. It was confirmed a few days later, after some states had declared the incident an emergency, that Colonial Pipeline paid around £3.6 million in ransom to the hackers. 

How did the hack happen?

Although it isn’t clear how exactly this hack occurred, one possibility is a phishing email. This is a very simple, low risk and low cost option for hackers. A phishing email is sent to someone (or in some cases, multiple people) within the organisation they are targeting. 

The victim clicks a link in the email, which immediately triggers a download of the encryption software. From there, the victim’s computer or device, and any connected computers or devices are encrypted, making all of them inaccessible.

In a ransomware attack, this is where hackers can simply request the fee to unencrypt the systems. Without this decryption key, all of the systems that have been encrypted remain inaccessible to users, effectively crippling the organisation.

It’s important to remember that a huge amount of the systems running modern services are digital, meaning more connections, devices and services to encrypt and exploit. In this ransomware attack, diesel, petrol and jet fuel was simply cut off.

What can businesses do to stay safe?

Although this was a huge hack, SMEs are particularly vulnerable to ransomware. This is due to the huge financial cost that hacks can have on companies. Even when businesses do not pay the ransom, the cost of attempting to recover data, the financial side of overhauling the network security and loss of customers can cause businesses to close.

However, there are some preventative measures that you can take to ensure that your business doesn't fall victim to ransomware attacks. The most important thing is to educate your employees. Ensuring that your staff know what to look out for in a phishing email can help stop hacks before they even start.

A key part of the ransomware attack is the way that the business is disabled, and for that reason backups are essential for SMEs. Backups are essentially save points for your business, so if something goes wrong, you can get your business back to normal. When you work with Transcendit, we can offer you cloud-based backups as well as physical backup solutions.

We also offer businesses disaster recovery plans. This is a plan that we create with you so that you’re prepared for whatever happens, and you know exactly what steps to follow whilst we’re getting your business back up and running again. 

Worried about ransomware? Give us a call on 0191 482 0444


The Transcendit Way

Transcendit understand that when you choose to work with us, whether we're taking care of your IT, app or web development, you're trusting us with part of your business. So whether we're looking after your computers, phone systems or servers we always do things 'the Transcendit way'.

The whole of our team adhere to the same values, beliefs and policies - the principles that were written when Transcendit first formed in 2000. Whether you come to us for cloud services or recovery backup you can be confident that you'll always receive the same excellent service.

The Transcendit way outlines how we do business; following the same straightforward principles with every client and customer, regardless of how big or small they may be.

That means we get to know you and your business. We offer you a friendly, professional and efficient service, and we'll always be honest with you.
We understand that not everybody speaks fluent IT, so we try to explain things in a way that is simple and clear. We always spend as much time as is necessary explaining things to you.
If you need to talk to us about something, no matter how insignificant, we are only ever a phone call away – and we’re never too busy to make you a cup of tea and have a sit down with you in person.
We understand how frustrating it can be when things are late. When we schedule an appointment with you, we are there when you’re expecting us. If something prevents us from getting there, we always call you in advance to let you know.
Sometimes things can go wrong, but we never lie to you or try to cover something up. If things go askew we tell you what’s happened and how we plan to prevent it affecting your business.
We want you to continuously benefit from working with us. We regularly discuss your business and make suggestions for improving systems and processes wherever we can – but we never try to push you into a purchase.
When we quote a fixed price, that's always the amount we charge – you won’t find any nasty surprises on a bill from us. If you are paying by time and materials, we inform you if our approximations could change.
We understand the importance of privacy for your business and your customers. We respect the confidentiality of your data, and we will never pass on your information to third parties.
We appreciate it when you take the time to give us feedback. A system called CustomerSure records our client's responses, so you can trust that our reviews are from real people.
Find out what they're saying here.
As always the support team are efficient and effective. Darlington Golf Club

Based on 12075 reviews our customers rate us 9.8/10. Reviews and ratings by Customersure. 09-October-2024

Transcendit are proud sponsors of CHUF, the Children's Heart Unit Fund.

Transcendit is a Living Wage employer
Transcendit is a Microsoft Gold certified partner
VMWARE partner
Vipre partner
IPCortex partner
WithSecure partner
DELL partner
Barracuda partner
Veeam partner
N-Able partner