Ransomware gang masterminded the Colonial Pipeline attack using a compromised VPN account password, report says. The password has since been discovered inside a batch of leaked passwords on the dark web, suggesting an employee of the company may have reused the same password on another account that was previously breached. The development comes amid an explosion of ransomware attacks in recent months, underscoring a threat to critical infrastructure and introducing a new point of failure that has had a severe impact on consumer supply chains and day-to-day operations.
Source: https://thehackernews.com/2021/06/hackers-breached-colonial-pipeline.html