The U.S. Transportation Security Administration issued a directive Tuesday requiring pipeline owners and operators to implement cybersecurity controls. The directive applies to companies transporting hazardous liquids and natural gas. The new TSA requirements build off another DHS directive issued in May following the ransomware attack on Colonial Pipeline Co. The company paid a $4.4 million ransom to receive a decryptor, but federal investigators later recovered $2.3 million. A joint advisory from CISA and the FBI outlines a comprehensive spear-phishing and intrusion campaign conducted by Chinese state-sponsored actors.”]
Source: https://www.cuinfosecurity.com/tsa-issues-cybersecurity-requirements-for-pipelines-a-17110