The disruption caused to the Colonial Pipeline on the east coast of the United States following a ransomware attack is understandably huge news, with President Joe Biden himself saying publicly that he is taking an active interest and is being briefed on a regular basis about the situation.
Meanwhile, in a terse statement, the FBI says it has confirmed that the DarkSide ransomware gang was responsible for the attack on Colonial Pipeline’s network.
So, what do you do if you’re a ransomware gang which has just caught the attention of not just the world’s media, but also the FBI and the President of the United States?
My hunch is that you would be shitting yourself.
Sure enough, check out the statement in rather broken English that DarkSide has published on the website where it normally leaks data stolen from compromised organisations.
We are apolitical, we do not participate in geopolitics, do not need to tie us with a defined goverment and look for other our motives. Our goal is to make money. and not creating problems for society. From today we introduce moderation and check each company that our partners want to encrypt to avoid social consequences in the future.
If that doesn’t sound like a ransomware gang knowing that it might have bitten off more than it can chew, I’m not sure what is.
Previously, DarkSide has claimed on its professional-looking website that it will not target medical facilities, funeral services, educational establishments, non-profit organisations, and governments.
If I were a member of the DarkSide gang I’d certainly be worried that US law enforcement are likely to be putting significant resources into uncovering my identity, and that someone might be tempted to share information about me with the Feds.
Found this article interesting? Follow Graham Cluley on Twitter to read more of the exclusive content we post.