US officials believe Russia arrested hacker responsible for Colonial Pipeline attack

The US believes that Russia’s domestic intelligence agency has arrested the hacker responsible for the May ransomware attack that forced a major US fuel pipeline to shut down for days, a senior Biden administration official told reporters Friday.

It appears to mark a rare instance of US-Russian cooperation against a major cybercrime group, following direct appeals from President Joe Biden to Russian President Vladimir Putin.

The cyberattack against Colonial Pipeline in May prompted the company to preemptively shut down its fuel distribution operations, leading to widespread shortages at gas stations along the East Coast.

The official spoke to reporters after Russia’s FSB intelligence agency said Friday that, at the behest of US authorities, it had detained multiple people associated with REvil, a type of ransomware that has cost US firms millions of dollars.

The US and Russia do not have an extradition treaty. While Russian authorities said those apprehended would be prosecuted, the extent to which that will happen is unclear.

The FSB said Russian authorities had seized millions of dollars, raided the homes of 14 people and detained an unspecified number of people connected with the so-called REvil ransomware. REvil was used in damaging hacks on a top US meat supplier in May and US software provider Kaseya in July, with the latter infecting up to 1,500 businesses around the world, US officials have previously said.

The FSB’s announcement follows a week of talks among the US, its European allies and Russia that failed to reach a breakthrough over the tens of thousands of troops Russia has amassed near Ukraine’s border.

“In our mind, this is not related to what’s happening with Russia and Ukraine,” the senior administration official said.

But some cybersecurity analysts pointed to the timing of the FSB announcement, which comes as the US has threatened severe sanctions on Russia if it invades Ukraine.

“This is Russian ransomware diplomacy,” Dmitri Alperovitch, a cybersecurity expert who is chairman of the non-profit Silverado Policy Accelerator, told CNN. “It is a signal to the United States: If you don’t enact severe sanctions against us for invasion of Ukraine, we will continue to cooperate with you on ransomware investigations.”

The-CNN-Wire
™ & © 2022 Cable News Network, Inc., a WarnerMedia Company. All rights reserved.

Blogs

Donate to Team Western Kentucky Tornado Relief Fund

Donate to Team Western Kentucky Tornado Relief Fund

Kentucky and surrounding areas, including my hometown, have never seen such destruction as the tornadoes that hit Friday night, December 11th. If you have any ability to donate and assist our brothers and sisters in the wake of this devastating storm, please do so here. Visit https://secure.kentucky.gov/formservices/Finance/WKYRelief for more information, and thank you.

Win a $500 AMEX Gift Card!

Win a $500 AMEX Gift Card!

Enter HERE for your chance to win a $500 Amex gift card to give to someone who has overcome challenges & shown resilience. Help them out this holiday season! Sponsored by ‘The Unforgivable’ on Netflix.

Steve Talks with Tom Johnston of The Doobie Brothers!

Steve Talks with Tom Johnston of The Doobie Brothers!

Last week, Steve had the chance to catch up with Tom Johnston, guitarist, vocalist and founding member of The Doobie Brothers! They talked about writing “China Grove” and how the song came about, plus the start of the band and new music! “Liberté“, their latest album, will be available October 1st. Check out the interview…

Steve Talks with Tommy Shaw of Styx!

Steve Talks with Tommy Shaw of Styx!

Steve Gorman Rocks! Interview with Tommy Shaw Steve’s talked with Tommy Shaw about Styx‘s first new album in 4 years, ‘Crash of the Crown’! Hear about the secret hidden Easter eggs on the album cover, stories of how Styx’s greatest hits were pieced together, and so much more! Check out a piece of the video interview here and audio…

Headlines