Should companies pay ransoms to hackers?
qz.com › 2009286 › should-colonial-pipeline-have-paid-a-ransom-to-darkside-hackers
This story seems to be about:
This story seems to be about:
It cost just under $5 million for Colonial Pipeline, the company that operates the largest fuel pipeline in the US, to pay off a gang of cybercriminals that hacked its servers, shut off the flow of oil and gas, and disrupted fuel supplies across the east coast. The company caved to hackers’ ransom demands within hours of the attack, Bloomberg News reported.
In a ransomware attack, criminals encrypt a company’s data and demand an extortion payment in exchange for a special key that will restore the company’s access to its files. Colonial Pipeline’s decision to pay the hackers flies in the face of most official recommendations. US policy—and the standing advice of many other national governments and intelligence agencies—is clear: Companies should not pay ransoms to hackers.
But in practice, it’s a bit messier than that. From time to time, the FBI will privately tell a hacked company it understands if executives choose to pay off the hackers. At a press conference following the Colonial Pipeline Attack, top White House cybersecurity official Anne Neuberger acknowledged that sometimes companies have no other choice: “We recognize, though, that companies are often in a difficult position if their data are encrypted and they do not have backups and cannot recover the data,” she said.
Read the rest of this story on qz.com. Become a member to get unlimited access to Quartz’s journalism.