On May 7, 2021, the Colonial Pipeline experienced a ransomware attack due to a compromised VPN account lacking multi-factor authentication. The attackers, linked to the DarkSide group, stole 100 gigabytes of data, prompting a shutdown of fuel operations affecting the East Coast. Colonial paid $4.4 million in ransom, later recovering part of it.

Read more →