Colonial Pipeline Co., a major supplier of gasoline, diesel and jet fuel to the eastern United States, said in a statement over the weekend that it halted operations across a pipeline system that spans more than 5,500 miles on Friday after learning it was the victim of a ransomware attack. Hackers infiltrated some of its information-technology (IT) systems.
John Cusimano, aeSolutions Vice President of Cybersecurity - “These are very large networks covering extensive distances, but they are typically flat from a network segmentation standpoint. This means that once someone gains access to the SCADA network, they have access to every device on the network,” Cusimano said. “While pipeline SCADA networks are typically separated from the company’s business (IT) networks with firewalls, by design, those firewalls pass some data between the networks.”