小石头W personal page - To The Moon

小石头W

小石头W

全都凭感觉

45Follow

1850Followers

0Topic

0Badge

2021-05-13

xmr

The hacker won and the American oil pipeline company has paid a ransom of $5 million

Go to Tiger App to see more news

{"i18n":{"language":"en_US"},"userPageInfo":{"id":"3468658323336580","uuid":"3468658323336580","gmtCreate":1505949262972,"gmtModify":1704447503905,"name":"小石头W","pinyin":"xstwxiaoshitouw","introduction":"","introductionEn":"","signature":"全都凭感觉","avatar":"https://static.tigerbbs.com/213fa3ba9cd3173261a3b6b51fbab243","hat":null,"hatId":null,"hatName":null,"vip":1,"status":2,"fanSize":1850,"headSize":45,"tweetSize":691,"questionSize":0,"limitLevel":900,"accountStatus":4,"level":{"id":4,"name":"文化虎","nameTw":"文化虎","represent":"学有所成","factor":"发布30条非转发主帖,其中3条优质帖","iconColor":"8867FB","bgColor":"BDC5FF"},"themeCounts":0,"badgeCounts":0,"badges":[],"moderator":false,"superModerator":false,"manageSymbols":null,"badgeLevel":null,"boolIsFan":false,"boolIsHead":false,"favoriteSize":4,"symbols":null,"coverImage":null,"realNameVerified":"success","userBadges":[{"badgeId":"cbe1c45c584340f3bd9ae6c77e0e9981-1","templateUuid":"cbe1c45c584340f3bd9ae6c77e0e9981","name":"Academy Experiencer","description":"5 lessons learned","bigImgUrl":"https://community-static.tradeup.com/news/fb5ae275631fb96a92d475cdc85d2302","smallImgUrl":"https://community-static.tradeup.com/news/c2660a1935bd2105e97c9915619936c3","grayImgUrl":null,"redirectLinkEnabled":0,"redirectLink":null,"hasAllocated":1,"isWearing":0,"stamp":null,"stampPosition":0,"hasStamp":0,"allocationCount":1,"allocatedDate":"2022.08.05","exceedPercentage":null,"individualDisplayEnabled":0,"backgroundColor":null,"fontColor":null,"individualDisplaySort":0,"categoryType":2006},{"badgeId":"44212b71d0be4ec88898348dbe882e03-2","templateUuid":"44212b71d0be4ec88898348dbe882e03","name":"Executive Tiger","description":"The transaction amount of the securities account reaches $300,000","bigImgUrl":"https://static.tigerbbs.com/9d20b23f1b6335407f882bc5c2ad12c0","smallImgUrl":"https://static.tigerbbs.com/ada3b4533518ace8404a3f6dd192bd29","grayImgUrl":"https://static.tigerbbs.com/177f283ba21d1c077054dac07f88f3bd","redirectLinkEnabled":0,"redirectLink":null,"hasAllocated":1,"isWearing":0,"stamp":null,"stampPosition":0,"hasStamp":0,"allocationCount":1,"allocatedDate":"2022.03.17","exceedPercentage":"80.00%","individualDisplayEnabled":0,"backgroundColor":null,"fontColor":null,"individualDisplaySort":0,"categoryType":1101},{"badgeId":"7a9f168ff73447fe856ed6c938b61789-1","templateUuid":"7a9f168ff73447fe856ed6c938b61789","name":"Knowledgeable Investor","description":"Traded more than 10 stocks","bigImgUrl":"https://static.tigerbbs.com/e74cc24115c4fbae6154ec1b1041bf47","smallImgUrl":"https://static.tigerbbs.com/d48265cbfd97c57f9048db29f22227b0","grayImgUrl":"https://static.tigerbbs.com/76c6d6898b073c77e1c537ebe9ac1c57","redirectLinkEnabled":0,"redirectLink":null,"hasAllocated":1,"isWearing":0,"stamp":null,"stampPosition":0,"hasStamp":0,"allocationCount":1,"allocatedDate":"2021.12.21","exceedPercentage":null,"individualDisplayEnabled":0,"backgroundColor":null,"fontColor":null,"individualDisplaySort":0,"categoryType":1102},{"badgeId":"a83d7582f45846ffbccbce770ce65d84-1","templateUuid":"a83d7582f45846ffbccbce770ce65d84","name":"Real Trader","description":"Completed a transaction","bigImgUrl":"https://static.tigerbbs.com/2e08a1cc2087a1de93402c2c290fa65b","smallImgUrl":"https://static.tigerbbs.com/4504a6397ce1137932d56e5f4ce27166","grayImgUrl":"https://static.tigerbbs.com/4b22c79415b4cd6e3d8ebc4a0fa32604","redirectLinkEnabled":0,"redirectLink":null,"hasAllocated":1,"isWearing":0,"stamp":null,"stampPosition":0,"hasStamp":0,"allocationCount":1,"allocatedDate":"2021.12.21","exceedPercentage":null,"individualDisplayEnabled":0,"backgroundColor":null,"fontColor":null,"individualDisplaySort":0,"categoryType":1100},{"badgeId":"972123088c9646f7b6091ae0662215be-3","templateUuid":"972123088c9646f7b6091ae0662215be","name":"Legendary Trader","description":"Total number of securities or futures transactions reached 300","bigImgUrl":"https://static.tigerbbs.com/656db16598a0b8f21429e10d6c1cb033","smallImgUrl":"https://static.tigerbbs.com/03f10910d4dd9234f9b5702a3342193a","grayImgUrl":"https://static.tigerbbs.com/0c767e35268feb729d50d3fa9a386c5a","redirectLinkEnabled":0,"redirectLink":null,"hasAllocated":1,"isWearing":0,"stamp":null,"stampPosition":0,"hasStamp":0,"allocationCount":1,"allocatedDate":"2021.12.21","exceedPercentage":"93.02%","individualDisplayEnabled":0,"backgroundColor":null,"fontColor":null,"individualDisplaySort":0,"categoryType":1100},{"badgeId":"1026c425416b44e0aac28c11a0848493-3","templateUuid":"1026c425416b44e0aac28c11a0848493","name":" Tiger Idol","description":"Join the tiger community for 1500 days","bigImgUrl":"https://static.tigerbbs.com/8b40ae7da5bf081a1c84df14bf9e6367","smallImgUrl":"https://static.tigerbbs.com/f160eceddd7c284a8e1136557615cfad","grayImgUrl":"https://static.tigerbbs.com/11792805c468334a9b31c39f95a41c6a","redirectLinkEnabled":0,"redirectLink":null,"hasAllocated":1,"isWearing":0,"stamp":null,"stampPosition":0,"hasStamp":0,"allocationCount":1,"allocatedDate":"2021.12.21","exceedPercentage":null,"individualDisplayEnabled":0,"backgroundColor":null,"fontColor":null,"individualDisplaySort":0,"categoryType":1001}],"userBadgeCount":6,"currentWearingBadge":null,"individualDisplayBadges":null,"crmLevel":1,"crmLevelSwitch":0,"location":null,"starInvestorFollowerNum":0,"starInvestorFlag":false,"starInvestorOrderShareNum":0,"subscribeStarInvestorNum":0,"ror":null,"winRationPercentage":null,"showRor":false,"investmentPhilosophy":null,"starInvestorSubscribeFlag":false},"baikeInfo":{},"tab":"post","tweets":[{"id":198965167,"gmtCreate":1620919382759,"gmtModify":1704350538962,"author":{"id":"3468658323336580","authorId":"3468658323336580","name":"小石头W","avatar":"https://static.tigerbbs.com/213fa3ba9cd3173261a3b6b51fbab243","crmLevel":1,"crmLevelSwitch":0,"followedFlag":false,"idStr":"3468658323336580","authorIdStr":"3468658323336580"},"themes":[],"htmlText":"xmr","listText":"xmr","text":"xmr","images":[],"top":1,"highlighted":1,"essential":1,"paper":1,"likeSize":0,"commentSize":0,"repostSize":0,"link":"https://ttm.financial/post/198965167","repostId":"2135862170","repostType":4,"repost":{"id":"2135862170","kind":"live","pubTimestamp":1620915348,"share":"https://ttm.financial/m/news/2135862170?lang=en_US&edition=fundamental","pubTime":"2021-05-13 22:15","market":"us","language":"zh","title":"The hacker won and the American oil pipeline company has paid a ransom of $5 million","url":"https://stock-news.laohu8.com/highlight/detail?id=2135862170","media":"华尔街见闻","summary":"网络攻击发生后数小时内，该公司就用无法追踪的加密货币支付了巨额赎金。","content":"<p>According to two people familiar with the matter,<b>Colonial Pipeline, a recently \"hacked\" American oil pipeline company, paid nearly $5 million to Eastern European hackers last Friday</b>, while reports earlier this week said the company had no intention of paying extortion fees to help the largest oil pipeline in the United States resume operations.</p><p>The company paid a huge ransom in untraceable cryptocurrency within hours of the cyberattack, highlighting the intense pressure on the company, people familiar with the matter said. Once the money was received, the hackers provided the company with a decryption tool to recover the computer network.</p><p>The tool is so slow that the plumbing company continues to use its own backups to help restore the system, said a person familiar with the company's work.</p><p>As of press time, WTI crude oil futures prices have fallen by more than 2%.</p><p><img src=\"https://static.tigerbbs.com/9a2f09777ff758c952b21164cd3a41c9\" tg-width=\"840\" tg-height=\"470\" referrerpolicy=\"no-referrer\"></p><p>Previous news, citing \"<a href=\"https://laohu8.com/S/NYT\">The New York Times</a>\"Journalist Nicole Perlroth reports that initial investigations by product oil pipeline company Colonial Pipeline indicate that the\" most likely culprit \"in the company's IT infrastructure has not yet been repaired<a href=\"https://laohu8.com/S/MSFT\">Microsoft</a>Exchange SERVICE. While there are several other problems, researchers describe them as \"lacking the complexity of cybersecurity\".</p><p><img src=\"https://static.tigerbbs.com/3643b559114481366495ec81ddb00e1a\" tg-width=\"700\" tg-height=\"394\" referrerpolicy=\"no-referrer\"></p><p>Nicole Perlroth noted in a tweet that forensic findings regarding Colonial Pipeline that they are still using vulnerable versions of Microsoft Exchange, among other obvious flaws.</p><p><img src=\"https://static.tigerbbs.com/d255368c158e32f95d72414ead3db550\" tg-width=\"700\" tg-height=\"89\" referrerpolicy=\"no-referrer\"></p><p><img src=\"https://static.tigerbbs.com/d2699d166cd9311f82befe23817c1092\" tg-width=\"640\" tg-height=\"490\" referrerpolicy=\"no-referrer\"></p><p>The Cybersecurity and Infrastructure Security Agency warned pipeline operators of the potential for ransomware attacks in 2020 and offered some potential mitigation strategies. The FBI confirmed that it believes DarkSide ransomware is responsible for the attack. DarkSide is a criminal syndicate that originated in Russia.</p><p>With several vulnerabilities being exploited in the wild, Microsoft has issued numerous recommendations on the importance of keeping internal exchange servers updated. The latest update follows an April 2021 report by the National Security Agency. Exchange Online has not been affected by these issues.</p><p>Colonial Pipeline operates pipelines that transport 100 million gallons of fuel per day, including 45% of all fuel consumed on the U.S. East Coast. Its products include various grades of gasoline, diesel, home heating oil, jet fuel, and fuel for the U.S. military.</p>","source":"live_wallstreetcn","collect":0,"html":"<!DOCTYPE html>\n<html>\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\" />\n<meta name=\"viewport\" content=\"width=device-width,initial-scale=1.0,minimum-scale=1.0,maximum-scale=1.0,user-scalable=no\"/>\n<meta name=\"format-detection\" content=\"telephone=no,email=no,address=no\" />\n<title>The hacker won and the American oil pipeline company has paid a ransom of $5 million</title>\n<style type=\"text/css\">\na,abbr,acronym,address,applet,article,aside,audio,b,big,blockquote,body,canvas,caption,center,cite,code,dd,del,details,dfn,div,dl,dt,\nem,embed,fieldset,figcaption,figure,footer,form,h1,h2,h3,h4,h5,h6,header,hgroup,html,i,iframe,img,ins,kbd,label,legend,li,mark,menu,nav,\nobject,ol,output,p,pre,q,ruby,s,samp,section,small,span,strike,strong,sub,summary,sup,table,tbody,td,tfoot,th,thead,time,tr,tt,u,ul,var,video{ font:inherit;margin:0;padding:0;vertical-align:baseline;border:0 }\nbody{ font-size:16px; line-height:1.5; color:#999; background:transparent; }\n.wrapper{ overflow:hidden;word-break:break-all;padding:10px; }\nh1,h2{ font-weight:normal; line-height:1.35; margin-bottom:.6em; }\nh3,h4,h5,h6{ line-height:1.35; margin-bottom:1em; }\nh1{ font-size:24px; }\nh2{ font-size:20px; }\nh3{ font-size:18px; }\nh4{ font-size:16px; }\nh5{ font-size:14px; }\nh6{ font-size:12px; }\np,ul,ol,blockquote,dl,table{ margin:1.2em 0; }\nul,ol{ margin-left:2em; }\nul{ list-style:disc; }\nol{ list-style:decimal; }\nli,li p{ margin:10px 0;}\nimg{ max-width:100%;display:block;margin:0 auto 1em; }\nblockquote{ color:#B5B2B1; border-left:3px solid #aaa; padding:1em; }\nstrong,b{font-weight:bold;}\nem,i{font-style:italic;}\ntable{ width:100%;border-collapse:collapse;border-spacing:1px;margin:1em 0;font-size:.9em; }\nth,td{ padding:5px;text-align:left;border:1px solid #aaa; }\nth{ font-weight:bold;background:#5d5d5d; }\n.symbol-link{font-weight:bold;}\n/* header{ border-bottom:1px solid #494756; } */\n.title{ margin:0 0 8px;line-height:1.3;color:#ddd; }\n.meta {color:#5e5c6d;font-size:13px;margin:0 0 .5em; }\na{text-decoration:none; color:#2a4b87;}\n.meta .head { display: inline-block; overflow: hidden}\n.head .h-thumb { width: 30px; height: 30px; margin: 0; padding: 0; border-radius: 50%; float: left;}\n.head .h-content { margin: 0; padding: 0 0 0 9px; float: left;}\n.head .h-name {font-size: 13px; color: #eee; margin: 0;}\n.head .h-time {font-size: 12.5px; color: #7E829C; margin: 0;}\n.small {font-size: 12.5px; display: inline-block; transform: scale(0.9); -webkit-transform: scale(0.9); transform-origin: left; -webkit-transform-origin: left;}\n.smaller {font-size: 12.5px; display: inline-block; transform: scale(0.8); -webkit-transform: scale(0.8); transform-origin: left; -webkit-transform-origin: left;}\n.bt-text {font-size: 12px;margin: 1.5em 0 0 0}\n.bt-text p {margin: 0}\n</style>\n</head>\n<body>\n<div class=\"wrapper\">\n<header>\n<h2 class=\"title\">\nThe hacker won and the American oil pipeline company has paid a ransom of $5 million\n</h2>\n<h4 class=\"meta\">\n<p class=\"head\">\n<strong class=\"h-name small\">华尔街见闻</strong><span class=\"h-time small\">2021-05-13 22:15</span>\n</p>\n</h4>\n</header>\n<article>\n<p>According to two people familiar with the matter,<b>Colonial Pipeline, a recently \"hacked\" American oil pipeline company, paid nearly $5 million to Eastern European hackers last Friday</b>, while reports earlier this week said the company had no intention of paying extortion fees to help the largest oil pipeline in the United States resume operations.</p><p>The company paid a huge ransom in untraceable cryptocurrency within hours of the cyberattack, highlighting the intense pressure on the company, people familiar with the matter said. Once the money was received, the hackers provided the company with a decryption tool to recover the computer network.</p><p>The tool is so slow that the plumbing company continues to use its own backups to help restore the system, said a person familiar with the company's work.</p><p>As of press time, WTI crude oil futures prices have fallen by more than 2%.</p><p><img src=\"https://static.tigerbbs.com/9a2f09777ff758c952b21164cd3a41c9\" tg-width=\"840\" tg-height=\"470\" referrerpolicy=\"no-referrer\"></p><p>Previous news, citing \"<a href=\"https://laohu8.com/S/NYT\">The New York Times</a>\"Journalist Nicole Perlroth reports that initial investigations by product oil pipeline company Colonial Pipeline indicate that the\" most likely culprit \"in the company's IT infrastructure has not yet been repaired<a href=\"https://laohu8.com/S/MSFT\">Microsoft</a>Exchange SERVICE. While there are several other problems, researchers describe them as \"lacking the complexity of cybersecurity\".</p><p><img src=\"https://static.tigerbbs.com/3643b559114481366495ec81ddb00e1a\" tg-width=\"700\" tg-height=\"394\" referrerpolicy=\"no-referrer\"></p><p>Nicole Perlroth noted in a tweet that forensic findings regarding Colonial Pipeline that they are still using vulnerable versions of Microsoft Exchange, among other obvious flaws.</p><p><img src=\"https://static.tigerbbs.com/d255368c158e32f95d72414ead3db550\" tg-width=\"700\" tg-height=\"89\" referrerpolicy=\"no-referrer\"></p><p><img src=\"https://static.tigerbbs.com/d2699d166cd9311f82befe23817c1092\" tg-width=\"640\" tg-height=\"490\" referrerpolicy=\"no-referrer\"></p><p>The Cybersecurity and Infrastructure Security Agency warned pipeline operators of the potential for ransomware attacks in 2020 and offered some potential mitigation strategies. The FBI confirmed that it believes DarkSide ransomware is responsible for the attack. DarkSide is a criminal syndicate that originated in Russia.</p><p>With several vulnerabilities being exploited in the wild, Microsoft has issued numerous recommendations on the importance of keeping internal exchange servers updated. The latest update follows an April 2021 report by the National Security Agency. Exchange Online has not been affected by these issues.</p><p>Colonial Pipeline operates pipelines that transport 100 million gallons of fuel per day, including 45% of all fuel consumed on the U.S. East Coast. Its products include various grades of gasoline, diesel, home heating oil, jet fuel, and fuel for the U.S. military.</p>\n<div class=\"bt-text\">\n\n\n<p> source：<a href=\"https://wallstreetcn.com/live/a-stock\">华尔街见闻</a></p>\n\n\n</div>\n</article>\n</div>\n</body>\n</html>\n","type":0,"thumbnail":"https://static.tigerbbs.com/3b82abbc3079c787589b72b5e0e721de","relate_stocks":{"USO":"美国原油ETF"},"source_url":"https://wallstreetcn.com/live/a-stock","is_english":false,"share_image_url":"https://static.laohu8.com/cc96873d3d23ee6ac10685520df9c100","article_id":"2135862170","content_text":"据两名知情人士透露，近日“被黑”的美国输油管道公司Colonial Pipeline上周五向东欧黑客支付了近500万美元，而本周早些时候的报道称该公司无意支付勒索费，以帮助美国最大的输油管道恢复运营。知情人士称，网络攻击发生后数小时内，该公司就用无法追踪的加密货币支付了巨额赎金，突显出该公司面临的巨大压力。收到这笔钱后，黑客就向该公司提供了一个解密工具来恢复计算机网络。一位熟悉该公司工作的人士说，该工具速度非常慢，以至于管道公司继续使用自己的备份来帮助恢复系统。截至发稿，WTI原油期货价格的跌幅在2%以上。此前消息，援引《纽约时报》记者 Nicole Perlroth 报道，成品油管道公司 Colonial Pipeline 的初期调查结果标明，该公司 IT 基础设施内“最可能的罪魁祸首”就是尚未修复的微软 Exchange 服务。虽然还有其他几个问题，但是研究人员将其描述为“缺乏网络安全的复杂性”。Nicole Perlroth 在推文中指出，关于 Colonial Pipeline 的取证发现，他们仍在使用存在漏洞的微软 Exchange 版本，以及其他明显的缺陷。网络安全和基础设施安全局警告管道运营商，2020 年有可能发生勒索软件攻击，并提供了一些潜在的缓解策略。联邦调查局证实，它认为 DarkSide 勒索软件对这次攻击负责。DarkSide 是一个起源于俄罗斯的犯罪集团。由于几个漏洞在野外被利用，微软已经发布了许多关于保持内部交换服务器更新的重要性的建议。最新的更新是在2021年4月国家安全局的一份报告后发布的。Exchange Online 没有受到这些问题的影响。Colonial Pipeline运营的管道每天运输1亿加仑的燃料，包括美国东海岸消费的所有燃料的45%。其产品包括各种等级的汽油、柴油、家庭取暖油、喷气燃料和美国军队用燃料。","news_type":1,"symbols_score_info":{"USO":0.9}},"isVote":1,"tweetType":1,"viewCount":1966,"authorTweetTopStatus":1,"verified":2,"comments":[],"imageCount":0,"langContent":"EN","totalScore":0}],"hots":[{"id":198965167,"gmtCreate":1620919382759,"gmtModify":1704350538962,"author":{"id":"3468658323336580","authorId":"3468658323336580","name":"小石头W","avatar":"https://static.tigerbbs.com/213fa3ba9cd3173261a3b6b51fbab243","crmLevel":1,"crmLevelSwitch":0,"followedFlag":false,"idStr":"3468658323336580","authorIdStr":"3468658323336580"},"themes":[],"htmlText":"xmr","listText":"xmr","text":"xmr","images":[],"top":1,"highlighted":1,"essential":1,"paper":1,"likeSize":0,"commentSize":0,"repostSize":0,"link":"https://ttm.financial/post/198965167","repostId":"2135862170","repostType":4,"repost":{"id":"2135862170","kind":"live","pubTimestamp":1620915348,"share":"https://ttm.financial/m/news/2135862170?lang=en_US&edition=fundamental","pubTime":"2021-05-13 22:15","market":"us","language":"zh","title":"The hacker won and the American oil pipeline company has paid a ransom of $5 million","url":"https://stock-news.laohu8.com/highlight/detail?id=2135862170","media":"华尔街见闻","summary":"网络攻击发生后数小时内，该公司就用无法追踪的加密货币支付了巨额赎金。","content":"<p>According to two people familiar with the matter,<b>Colonial Pipeline, a recently \"hacked\" American oil pipeline company, paid nearly $5 million to Eastern European hackers last Friday</b>, while reports earlier this week said the company had no intention of paying extortion fees to help the largest oil pipeline in the United States resume operations.</p><p>The company paid a huge ransom in untraceable cryptocurrency within hours of the cyberattack, highlighting the intense pressure on the company, people familiar with the matter said. Once the money was received, the hackers provided the company with a decryption tool to recover the computer network.</p><p>The tool is so slow that the plumbing company continues to use its own backups to help restore the system, said a person familiar with the company's work.</p><p>As of press time, WTI crude oil futures prices have fallen by more than 2%.</p><p><img src=\"https://static.tigerbbs.com/9a2f09777ff758c952b21164cd3a41c9\" tg-width=\"840\" tg-height=\"470\" referrerpolicy=\"no-referrer\"></p><p>Previous news, citing \"<a href=\"https://laohu8.com/S/NYT\">The New York Times</a>\"Journalist Nicole Perlroth reports that initial investigations by product oil pipeline company Colonial Pipeline indicate that the\" most likely culprit \"in the company's IT infrastructure has not yet been repaired<a href=\"https://laohu8.com/S/MSFT\">Microsoft</a>Exchange SERVICE. While there are several other problems, researchers describe them as \"lacking the complexity of cybersecurity\".</p><p><img src=\"https://static.tigerbbs.com/3643b559114481366495ec81ddb00e1a\" tg-width=\"700\" tg-height=\"394\" referrerpolicy=\"no-referrer\"></p><p>Nicole Perlroth noted in a tweet that forensic findings regarding Colonial Pipeline that they are still using vulnerable versions of Microsoft Exchange, among other obvious flaws.</p><p><img src=\"https://static.tigerbbs.com/d255368c158e32f95d72414ead3db550\" tg-width=\"700\" tg-height=\"89\" referrerpolicy=\"no-referrer\"></p><p><img src=\"https://static.tigerbbs.com/d2699d166cd9311f82befe23817c1092\" tg-width=\"640\" tg-height=\"490\" referrerpolicy=\"no-referrer\"></p><p>The Cybersecurity and Infrastructure Security Agency warned pipeline operators of the potential for ransomware attacks in 2020 and offered some potential mitigation strategies. The FBI confirmed that it believes DarkSide ransomware is responsible for the attack. DarkSide is a criminal syndicate that originated in Russia.</p><p>With several vulnerabilities being exploited in the wild, Microsoft has issued numerous recommendations on the importance of keeping internal exchange servers updated. The latest update follows an April 2021 report by the National Security Agency. Exchange Online has not been affected by these issues.</p><p>Colonial Pipeline operates pipelines that transport 100 million gallons of fuel per day, including 45% of all fuel consumed on the U.S. East Coast. Its products include various grades of gasoline, diesel, home heating oil, jet fuel, and fuel for the U.S. military.</p>","source":"live_wallstreetcn","collect":0,"html":"<!DOCTYPE html>\n<html>\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\" />\n<meta name=\"viewport\" content=\"width=device-width,initial-scale=1.0,minimum-scale=1.0,maximum-scale=1.0,user-scalable=no\"/>\n<meta name=\"format-detection\" content=\"telephone=no,email=no,address=no\" />\n<title>The hacker won and the American oil pipeline company has paid a ransom of $5 million</title>\n<style type=\"text/css\">\na,abbr,acronym,address,applet,article,aside,audio,b,big,blockquote,body,canvas,caption,center,cite,code,dd,del,details,dfn,div,dl,dt,\nem,embed,fieldset,figcaption,figure,footer,form,h1,h2,h3,h4,h5,h6,header,hgroup,html,i,iframe,img,ins,kbd,label,legend,li,mark,menu,nav,\nobject,ol,output,p,pre,q,ruby,s,samp,section,small,span,strike,strong,sub,summary,sup,table,tbody,td,tfoot,th,thead,time,tr,tt,u,ul,var,video{ font:inherit;margin:0;padding:0;vertical-align:baseline;border:0 }\nbody{ font-size:16px; line-height:1.5; color:#999; background:transparent; }\n.wrapper{ overflow:hidden;word-break:break-all;padding:10px; }\nh1,h2{ font-weight:normal; line-height:1.35; margin-bottom:.6em; }\nh3,h4,h5,h6{ line-height:1.35; margin-bottom:1em; }\nh1{ font-size:24px; }\nh2{ font-size:20px; }\nh3{ font-size:18px; }\nh4{ font-size:16px; }\nh5{ font-size:14px; }\nh6{ font-size:12px; }\np,ul,ol,blockquote,dl,table{ margin:1.2em 0; }\nul,ol{ margin-left:2em; }\nul{ list-style:disc; }\nol{ list-style:decimal; }\nli,li p{ margin:10px 0;}\nimg{ max-width:100%;display:block;margin:0 auto 1em; }\nblockquote{ color:#B5B2B1; border-left:3px solid #aaa; padding:1em; }\nstrong,b{font-weight:bold;}\nem,i{font-style:italic;}\ntable{ width:100%;border-collapse:collapse;border-spacing:1px;margin:1em 0;font-size:.9em; }\nth,td{ padding:5px;text-align:left;border:1px solid #aaa; }\nth{ font-weight:bold;background:#5d5d5d; }\n.symbol-link{font-weight:bold;}\n/* header{ border-bottom:1px solid #494756; } */\n.title{ margin:0 0 8px;line-height:1.3;color:#ddd; }\n.meta {color:#5e5c6d;font-size:13px;margin:0 0 .5em; }\na{text-decoration:none; color:#2a4b87;}\n.meta .head { display: inline-block; overflow: hidden}\n.head .h-thumb { width: 30px; height: 30px; margin: 0; padding: 0; border-radius: 50%; float: left;}\n.head .h-content { margin: 0; padding: 0 0 0 9px; float: left;}\n.head .h-name {font-size: 13px; color: #eee; margin: 0;}\n.head .h-time {font-size: 12.5px; color: #7E829C; margin: 0;}\n.small {font-size: 12.5px; display: inline-block; transform: scale(0.9); -webkit-transform: scale(0.9); transform-origin: left; -webkit-transform-origin: left;}\n.smaller {font-size: 12.5px; display: inline-block; transform: scale(0.8); -webkit-transform: scale(0.8); transform-origin: left; -webkit-transform-origin: left;}\n.bt-text {font-size: 12px;margin: 1.5em 0 0 0}\n.bt-text p {margin: 0}\n</style>\n</head>\n<body>\n<div class=\"wrapper\">\n<header>\n<h2 class=\"title\">\nThe hacker won and the American oil pipeline company has paid a ransom of $5 million\n</h2>\n<h4 class=\"meta\">\n<p class=\"head\">\n<strong class=\"h-name small\">华尔街见闻</strong><span class=\"h-time small\">2021-05-13 22:15</span>\n</p>\n</h4>\n</header>\n<article>\n<p>According to two people familiar with the matter,<b>Colonial Pipeline, a recently \"hacked\" American oil pipeline company, paid nearly $5 million to Eastern European hackers last Friday</b>, while reports earlier this week said the company had no intention of paying extortion fees to help the largest oil pipeline in the United States resume operations.</p><p>The company paid a huge ransom in untraceable cryptocurrency within hours of the cyberattack, highlighting the intense pressure on the company, people familiar with the matter said. Once the money was received, the hackers provided the company with a decryption tool to recover the computer network.</p><p>The tool is so slow that the plumbing company continues to use its own backups to help restore the system, said a person familiar with the company's work.</p><p>As of press time, WTI crude oil futures prices have fallen by more than 2%.</p><p><img src=\"https://static.tigerbbs.com/9a2f09777ff758c952b21164cd3a41c9\" tg-width=\"840\" tg-height=\"470\" referrerpolicy=\"no-referrer\"></p><p>Previous news, citing \"<a href=\"https://laohu8.com/S/NYT\">The New York Times</a>\"Journalist Nicole Perlroth reports that initial investigations by product oil pipeline company Colonial Pipeline indicate that the\" most likely culprit \"in the company's IT infrastructure has not yet been repaired<a href=\"https://laohu8.com/S/MSFT\">Microsoft</a>Exchange SERVICE. While there are several other problems, researchers describe them as \"lacking the complexity of cybersecurity\".</p><p><img src=\"https://static.tigerbbs.com/3643b559114481366495ec81ddb00e1a\" tg-width=\"700\" tg-height=\"394\" referrerpolicy=\"no-referrer\"></p><p>Nicole Perlroth noted in a tweet that forensic findings regarding Colonial Pipeline that they are still using vulnerable versions of Microsoft Exchange, among other obvious flaws.</p><p><img src=\"https://static.tigerbbs.com/d255368c158e32f95d72414ead3db550\" tg-width=\"700\" tg-height=\"89\" referrerpolicy=\"no-referrer\"></p><p><img src=\"https://static.tigerbbs.com/d2699d166cd9311f82befe23817c1092\" tg-width=\"640\" tg-height=\"490\" referrerpolicy=\"no-referrer\"></p><p>The Cybersecurity and Infrastructure Security Agency warned pipeline operators of the potential for ransomware attacks in 2020 and offered some potential mitigation strategies. The FBI confirmed that it believes DarkSide ransomware is responsible for the attack. DarkSide is a criminal syndicate that originated in Russia.</p><p>With several vulnerabilities being exploited in the wild, Microsoft has issued numerous recommendations on the importance of keeping internal exchange servers updated. The latest update follows an April 2021 report by the National Security Agency. Exchange Online has not been affected by these issues.</p><p>Colonial Pipeline operates pipelines that transport 100 million gallons of fuel per day, including 45% of all fuel consumed on the U.S. East Coast. Its products include various grades of gasoline, diesel, home heating oil, jet fuel, and fuel for the U.S. military.</p>\n<div class=\"bt-text\">\n\n\n<p> source：<a href=\"https://wallstreetcn.com/live/a-stock\">华尔街见闻</a></p>\n\n\n</div>\n</article>\n</div>\n</body>\n</html>\n","type":0,"thumbnail":"https://static.tigerbbs.com/3b82abbc3079c787589b72b5e0e721de","relate_stocks":{"USO":"美国原油ETF"},"source_url":"https://wallstreetcn.com/live/a-stock","is_english":false,"share_image_url":"https://static.laohu8.com/cc96873d3d23ee6ac10685520df9c100","article_id":"2135862170","content_text":"据两名知情人士透露，近日“被黑”的美国输油管道公司Colonial Pipeline上周五向东欧黑客支付了近500万美元，而本周早些时候的报道称该公司无意支付勒索费，以帮助美国最大的输油管道恢复运营。知情人士称，网络攻击发生后数小时内，该公司就用无法追踪的加密货币支付了巨额赎金，突显出该公司面临的巨大压力。收到这笔钱后，黑客就向该公司提供了一个解密工具来恢复计算机网络。一位熟悉该公司工作的人士说，该工具速度非常慢，以至于管道公司继续使用自己的备份来帮助恢复系统。截至发稿，WTI原油期货价格的跌幅在2%以上。此前消息，援引《纽约时报》记者 Nicole Perlroth 报道，成品油管道公司 Colonial Pipeline 的初期调查结果标明，该公司 IT 基础设施内“最可能的罪魁祸首”就是尚未修复的微软 Exchange 服务。虽然还有其他几个问题，但是研究人员将其描述为“缺乏网络安全的复杂性”。Nicole Perlroth 在推文中指出，关于 Colonial Pipeline 的取证发现，他们仍在使用存在漏洞的微软 Exchange 版本，以及其他明显的缺陷。网络安全和基础设施安全局警告管道运营商，2020 年有可能发生勒索软件攻击，并提供了一些潜在的缓解策略。联邦调查局证实，它认为 DarkSide 勒索软件对这次攻击负责。DarkSide 是一个起源于俄罗斯的犯罪集团。由于几个漏洞在野外被利用，微软已经发布了许多关于保持内部交换服务器更新的重要性的建议。最新的更新是在2021年4月国家安全局的一份报告后发布的。Exchange Online 没有受到这些问题的影响。Colonial Pipeline运营的管道每天运输1亿加仑的燃料，包括美国东海岸消费的所有燃料的45%。其产品包括各种等级的汽油、柴油、家庭取暖油、喷气燃料和美国军队用燃料。","news_type":1,"symbols_score_info":{"USO":0.9}},"isVote":1,"tweetType":1,"viewCount":1966,"authorTweetTopStatus":1,"verified":2,"comments":[],"imageCount":0,"langContent":"EN","totalScore":0}],"lives":[]}