U.S. markets close in 2 hours 46 minutes

  • S&P 500

    4,229.16
    -3.44 (-0.08%)
     

  • Dow 30

    35,008.46
    +230.70 (+0.66%)
     

  • Nasdaq

    13,553.59
    -198.65 (-1.44%)
     

  • Russell 2000

    2,249.68
    -21.95 (-0.97%)
     

  • Crude Oil

    64.95
    +0.05 (+0.08%)
     

  • Gold

    1,837.70
    +6.40 (+0.35%)
     

  • Silver

    27.53
    +0.05 (+0.19%)
     

  • EUR/USD

    1.2160
    -0.0009 (-0.07%)
     

  • 10-Yr Bond

    1.5900
    +0.0130 (+0.82%)
     

  • GBP/USD

    1.4137
    +0.0147 (+1.05%)
     

  • USD/JPY

    108.8270
    +0.2450 (+0.23%)
     

  • BTC-USD

    57,640.01
    +89.56 (+0.16%)
     

  • CMC Crypto 200

    1,541.04
    -20.25 (-1.30%)
     

  • FTSE 100

    7,123.68
    -6.03 (-0.08%)
     

  • Nikkei 225

    29,518.34
    +160.52 (+0.55%)
     

US pipeline giant shuts down major fuel line following cyberattack

Jon Fingas
·Associate Editor
·1 min read

A cyberattack just led to a significant disruption of American infrastructure. Reuters reports that industry giant Colonial Pipeline has temporarily shut down all its fuel line operations and parts of its network after learning of a breach that compromised "some of [its] IT systems."

The company said it was already in the midst of returning to normal, but the operator handles about 45 percent of the US East Coast's fuel supply — this is a shutdown that will affect many people and businesses that need gas, oil, and diesel. There was no estimated timing for a full recovery.

Colonial didn't outline the nature of the attack or try to identify who might be responsible. The company has already tapped an unnamed "leading" cybersecurity firm to investigate, and is talking to law enforcement as well as federal agencies.

This isn't necessarily a state-backed attack. Colonial could be the victim of a ransomware campaign, for instance. This comes mere months after the SolarWinds hack, however, and it's no secret that countries like Russia have targeted US infrastructure in the past. While this could just be a high-profile target for a relatively pedestrian cybercriminal hack, a more coordinated, state-backed effort would raise more than a few alarms.

Recommended Stories

  • Pipeline cyberattack was likely the work of a ransomware gang

    A ransomware gang may be the culprit behind the Colonial Pipeline cyberattack that hobbled oil and gas.

  • Oil in focus as cyberattack knocks out U.S. pipeline

    Yahoo Finance’s Julie Hyman, Myles Udland, Brian Sozzi, and Jared Blikre discuss the Colonial Pipeline outage and what it means for oil and gas prices.

  • Will Colonial fuel pipeline shutdown mean U.S. pump prices rise?

    NEW YORK (Reuters) -The largest U.S. fuel pipeline system, Colonial Pipeline, shut down on Friday after a cyberattack. Retail prices across much of the United States follow the lead of benchmark New York gasoline futures. Retail prices began to creep up at the weekend.

  • Explainer-Will Colonial Pipeline shutdown spike U.S. pump prices?

    The largest U.S. fuel pipeline system, Colonial Pipeline, shut down on Friday after a cyber attack, prompting worries about a spike in gasoline and diesel prices ahead of the peak summer driving season if the outage does not end soon. WHAT IS COLONIAL PIPELINE? "The challenges brought on by the Colonial Pipeline shutdown would only develop after a few days of outage," said Patrick DeHaan, head of petroleum analysis at GasBuddy.

  • Impossible Burgers are coming to US schools

    Impossible Foods has secured Child Nutrition Labels for its products, which means they can now be part of school nutrition programs in the US.

  • Martin Truex Jr. Throws It Back to Low Downforce Dominance at Darlington

    The win is the third for the Gibbs No. 19 team, and no one else has more than one.

  • U.S. Southeast braces for fuel price rises after pipeline shutdown

    The southeastern United States will be the first to see price rises at the pumps due to the supply disruption caused by the shutdown of the country's top fuel pipeline network - and demand has already picked up as drivers fill their tanks, industry experts said on Sunday. The attack forced Colonial Pipeline to shut down its entire system on Friday. The network ships more than 2.5 million barrels per day (bpd) of gasoline, diesel and jet fuel from the Gulf Coast to populous southeast and northeast states.

  • Oil slips as Asia pandemic fears counter U.S. pipeline cyberattack

    Oil fell on Monday, giving up an earlier gain, as the impact of a cyberattack that forced the shutdown of major fuel pipelines in the United States was countered by expectations rising COVID-19 cases in Asia will reduce demand. Colonial Pipeline said on Sunday its main fuel lines remained offline after the attack that shut the system on Friday, but some smaller lines between terminals and delivery points were operational. "We know that COVID concerns in India and throughout Asia will hurt demand expectations," said Phil Flynn, senior analyst at Price Futures Group in Chicago.

  • Gas futures soar after pipeline shutdown

    BROADCAST AND DIGITAL RESTRICTIONS~**Broadcasters: PART MUST COURTESY "COLONIAL PIPELINE". NO RESALE Digital: PART MUST COURTESY "COLONIAL PIPELINE". NO RESALE. Gasoline futures soared further to a three-year high Monday after a cyberattack shut down the largest U.S. pipeline system. Colonial Pipeline transports nearly half of the East Coast's supplies of crude oil and gasoline. Four days after a ransomware attack, industry and consumers are starting to feel the pain. Andrew Lipow of Lipow Oil Associates explains. “Because Colonial delivers to these terminals every five days, one can see that on day four or five of a Colonial outage, that we could see a much greater widespread impact through large areas throughout the mid-Atlantic and the southeast. And that would certainly be worrisome for the consumer, the airlines or the users of even diesel fuel for the trucking and railroad industry." Retail prices at the pump began to creep up over the weekend. Industry experts say demand has already picked up in some southeastern states as drivers fill their tanks. The U.S. government investigation into the attack is in its early stages. Cybersecurity experts said a criminal group called DarkSide may be to blame. The ransomware attack comes just three weeks before the start of the summer driving season on Memorial Day. If the disruption stretches on, fuel suppliers may need to use trucks and rail to meet demand.

  • Chinese rocket debris falls into Indian Ocean amid US criticism

    China's Long March 5b rocket debris has fallen into the Indian Ocean, prompting criticism from NASA and others.

  • Cyberextortion attempt raises concern of gasoline shortages

    A cyberattack on a major U.S. pipeline that led to a partial shutdown is raising concerns that supplies of gasoline, jet fuel and diesel could be disrupted in parts of the East Coast if the disruption continues. The pipeline utilizes both common and custom technology systems, which could complicate efforts to bring the entire network back online, according to analysts at Third Bridge.

  • Amazon's palm-reading payment tech is now available in New York City

    Amazon One palm payments are now available in New York City — if only through one store for now.

  • Katy Perry is $7.4 million richer after selling California ‘guesthouse.’ Take a look

    The 4,400-square-foot home is reportedly the smallest of the singer’s three properties.

  • U.S. trashes unwanted gear in Afghanistan, sells as scrap

    The Americans are dismantling their portion of nearby Bagram Air Base, and anything that they are not taking home or giving to the Afghan military, they destroy as completely as possible.

  • Major fuel pipeline forced to shut down after cyber attack

    The pipeline supplies 45% of the East Coast’s fuel products, including gasoline, diesel and home heating oil.

  • Elon Musk's 'Saturday Night Live' appearance crashed the price of Dogecoin

    Elon Musk's 'Saturday Night Live' appearance skewed the price of Dogecoin — but not the way cryptocurrency fans might have hoped.

  • Electric 3-wheeled car factory, jobs coming to Mesa, Arizona

    ElectraMeccanica, known for its tiny, single passenger, three-wheeled electric cars, has chosen Mesa, Arizona, as the location for its U.S. assembly and engineering plant. The Canadian company, based in Vancouver, B.C., says the new facility will create up to 500 new jobs and potentially produce 20,000 of its flagship Solo electric vehicles each year. ElectraMeccanica picked Mesa, just east of Phoenix, after a more than year-long site search.

  • SpaceX will launch a Dogecoin-funded Moon satellite

    SpaceX has agreed to launch a Moon satellite funded entirely by Dogecoin in early 2022.

  • The first flight unit comprised of Space Force Guardians has completed basic training

    The first flight comprised entirely of US Space Force Guardians recently graduated from Air Force Basic Military Training.

  • Ransomware Attack Shuts Down Biggest U.S. Gasoline Pipeline

    (Bloomberg) -- The operator of the biggest gasoline pipeline in the U.S. shut down operations late Friday following a ransomware attack that threatens to roil energy markets and upend the supply of gas and diesel to the East Coast.Colonial Pipeline said in a statement Saturday that it “proactively took certain systems offline to contain the threat, which has temporarily halted all pipeline operations, and affected some of our IT systems.” It’s working to get business back to normal.The cybersecurity firm FireEye Inc. said its Mandiant incident response division is assisting with the investigation. President Joe Biden, who’s spending the weekend at Camp David, was briefed on the incident Saturday morning, the White House said.Colonial is a key artery for the eastern half of the U.S. It’s the main source of gasoline, diesel and jet fuel for the East Coast with capacity of about 2.5 million barrels a day on its system from Houston as far as North Carolina, and another 900,000 barrels a day to New York.The attack appeared to use a ransomware group called DarkSide, according to Allan Liska, senior threat analyst at cybersecurity firm Recorded Future.Hacking threats to critical infrastructure have been growing, prompting the White House to respond last month with a plan to try to increase the security of utilities and their suppliers. Pipelines are a specific concern because they play a central role in so many parts of the U.S. economy.The latest attack comes as the nation’s energy industry gears up for summer travel and stronger fuel demand as pandemic economic restrictions are eased. It’s also an unpleasant reminder of how a cyber-attack brought down the communications systems of several U.S. natural gas pipelines operators in 2018.The federal government is assessing the implications of the incident, including how to avoid disruptions to supply and help the company restore operations as quickly as possible, a White House spokesperson said.The U.S. Department of Energy said it’s “monitoring any potential impacts” to supplies, while the Federal Energy Regulatory Commission said it’s in “communication with other federal agencies, and we are working closely with them to monitor developments” following the cyber-attack.The federal government is also working with state and local authorities on potential additional steps.Travel TimeWhen Colonial is running, fuel travels between three and five miles per hour through it. But a long-term shutdown could leave the Northwest more dependent on supplies delivered by tanker. And it could take those cargoes 10 to 14 days to make the voyage to the New York harbor, according to a research note from ClearView Energy Partners.Other options, such as tapping an emergency federal stockpile of refined products in the Northeast, are “little more than a Band-Aid,” ClearView said. That gasoline supply reserve holds just 1 million barrels of gasoline in New York, Boston and Maine, the analysts noted.Ransomware cases involve hackers seeding networks with malicious software that encrypts the data and leaves the machines locked until the victims pay the extortion fee, which can range from a few hundred dollars to millions of dollars in cryptocurrency.Utilities’ information technology networks, which run email and other routine functions, and operational technology networks, which control the actual functioning of the delivery of electricity or natural gas, are typically kept mostly separate, which is what makes Colonial’s decision to temporarily shut down both so unusual.An April 2 blog by the cybersecurity firm Cybereason said the people behind DarkSide follow the “double extortion” trend in ransomware, meaning they not only encrypt user data but exfiltrate it and make it public if a ransom payment isn’t made.Many companies pay the fees and recover their data. But even when that occurs, they may shut down large parts of their networks as a precaution while they restore essential services and hunt for any signs that the hackers had accessed sensitive systems for other reasons including espionage or further destructive attacks.Wide-Ranging ThreatThe Cybersecurity & Infrastructure Security Agency is “engaged with the company and our interagency partners regarding the situation,” said Eric Goldstein, executive assistant director of CISA’s cybersecurity division. “This underscores the threat that ransomware poses to organizations regardless of size or sector,” he said.Officials at the Federal Bureau of Investigation and the Department of Justice didn’t respond to requests for comment.Senator Edward Markey, a Massachusetts Democrat, said the U.S. had been left vulnerable by “an understaffed, under-prepared Transportation Security Administration.”“We cannot ignore the longstanding inadequacies that allowed for, and enabled, cyber intrusions into our critical infrastructure,” Markey said in a statement.GOP Senator Ben Sasse of Nebraska said the latest intrusion showed that an infrastructure spending package soon to be considered by Congress, should put “the hardening of critical infrastructure” front and center.Technical IssuesColonial gave an indication during Friday trading that it was having network issues, while two people familiar said they were having a hard time submitting refined product batches, updates or changes to batch deliveries and nominations using their Colonial Pipeline website access. The Colonial website went offline whenever the people tried.At the time, Colonial staff informed customers by phone about the technical issues but didn’t say what was causing them.The disruption could roil fuel markets Monday if it’s not fixed. The refining margin for a combined barrel of gasoline and diesel, the so-called 321 crack spread, rose 2% Friday after the Colonial interruption. Nymex gasoline futures rose 1.32 cents to settle at $2.1269 per gallon.The main two Colonial lines out of the Houston refining hub -- Lines 1 and 2 from Pasadena, Texas, to Greensboro, North Carolina -- have not been full for months with U.S. fuel demand falling to its lowest in decades during the pandemic. That means fuel markets served by the line might be spared supply shortages.The Colonial system is managed from suburban Atlanta and is jointly owned by Koch and several other energy and investor interests. East Coast fuel markets also are supplied by the Plantation pipeline jointly owned by Kinder Morgan and Exxon; East Coast refineries; and fuel shipments from Eastern Canada and Europe.(Adds FERC’s comment in ninth paragraph.)For more articles like this, please visit us at bloomberg.comSubscribe now to stay ahead with the most trusted business news source.©2021 Bloomberg L.P.