The FBI and the White House confirmed Monday that the DarkSide ransomware variant was used in the Friday attack that caused disruptions at Colonial Pipeline Co. The FBI released details of the attack so others can take steps to prevent being infected. The cybercriminal group behind the attack, however, appeared to shift the blame for the incident to an affiliated organization in a posting on its darknet website. The company is working with a security firm – reportedly FireEye Mandiant – to resolve the issue. Colonial Pipeline is working to incrementally bring IT systems and portions of its pipeline back online.”]
Source: https://www.cuinfosecurity.com/fbi-darkside-ransomware-used-in-colonial-pipeline-attack-a-16555