Colonial Pipeline sends out thousands of breach alerts

News
By published

Letters are being sent out to employees whose personal information may have been exposed

Data Breach
(Image credit: Shutterstock)

Breach notification letters have been sent out to 5,810 current and former employees of the Colonial Pipeline who had their personal information accessed by the DarkSide ransomware group back in May of this year.

In these letters, the company admitted that the ransomware group was able to acquire “certain records” stored on its systems during the now infamous cyberattack that occurred as the result of a compromised VPN password.

According to Colonial Pipeline, the cybercriminals managed to obtain employees' full names, contact information, dates of birth, government-issued IDs and health-related information. However, it's worth noting that not every employee had all of this information exposed.

In addition to encrypting the company's systems, the DarkSide ransomware group also managed to steal around 100GB of data in a typical double-extortion ploy used by virtually all ransomware operators these days. 

Employee information exposed

The news that Colonial Pipeline has begun sending out data breach notification letters to its current and former employees was first reported by BleepingComputer. Additionally, in a statement to CNN Business, a company spokesperson confirmed that personal information was stolen during the attack.

In order to make up for losing employee's sensitive personal and health information, Colonial Pipeline is providing affected employees with identity theft protection and credit monitoring services from Experian IdentityWorks. However, employees will need to sign up for the service by October, 31 of this year to take advantage of the offer.

At the same time though, Colonial Pipeline is also advising employees to keep a close eye on their credit reports and look out for any unusual activity.

The cyberattack on Colonial Pipeline has served as a wake up call both for private businesses and for the US government. In fact, since the attack took place in May, the US government has passed multiple new regulations for critical industries to help prevent them from falling victim to similar attacks going forward.

Via ZDNet

Anthony Spadafora
Anthony Spadafora

After working with the TechRadar Pro team for the last several years, Anthony is now the security and networking editor at Tom’s Guide where he covers everything from data breaches and ransomware gangs to the best way to cover your whole home or business with Wi-Fi. When not writing, you can find him tinkering with PCs and game consoles, managing cables and upgrading his smart home. 

Read more
Closing the cybersecurity skills gap
HPE starts contacting victims of 2023 Russian cyberattack
Data leak
US utility giant says MOVEit hack exposed stolen data
A person's fingers type at a keyboard, with a digital security screen with a lock on it overlaid.
Blood donation firm reveals donor personal data stolen in cyberattack
Data leak
Ransomware attackers leak stolen Rhode Island private info following hack
ransomware avast
The biggest addiction treatment provider in the US says it was hit by data breach
Lock on Laptop Screen
Data breach at Pennsylvania education union potentially exposes 500,000 victims
Latest in Security
Lock on Laptop Screen
Data breach at Pennsylvania education union potentially exposes 500,000 victims
Spyware
Stalkerware data breach potentially hits over 2 million users, including thousands of Apple devices
An American flag flying outside the US Capitol building against a blue sky
Five Eyes "cannot replace US intel in Ukraine", claims former US Cyber Command Chief
Pirate skull cyber attack digital technology flag cyber on on computer CPU in background. Darknet and cybercrime banner cyberattack and espionage concept illustration.
Criminals are using a virtual hard disk image file to host and distribute dangerous malware
WordPress on a laptop
Over 20,000 WordPress sites hit by damaging malware campaign
Trojan
WhatsApp patches security flaw which let hackers install spyware
Latest in News
Quordle on a smartphone held in a hand
Quordle hints and answers for Friday, March 21 (game #1152)
NYT Strands homescreen on a mobile phone screen, on a light blue background
NYT Strands hints and answers for Friday, March 21 (game #383)
NYT Connections homescreen on a phone, on a purple background
NYT Connections hints and answers for Friday, March 21 (game #649)
The ASSC Assassin's Creed collection.
The Assassin's Creed x Anti Social Social Club drop includes gaming merch that I wouldn't be embarrassed to wear
Lock on Laptop Screen
Data breach at Pennsylvania education union potentially exposes 500,000 victims
Spyware
Stalkerware data breach potentially hits over 2 million users, including thousands of Apple devices
More about security
Lock on Laptop Screen

Data breach at Pennsylvania education union potentially exposes 500,000 victims
Trojan

WhatsApp patches security flaw which let hackers install spyware
Spyware

Stalkerware data breach potentially hits over 2 million users, including thousands of Apple devices
See more latest
Most Popular
Spyware
Stalkerware data breach potentially hits over 2 million users, including thousands of Apple devices
Miele Guard L1 Comfort XL cyclinder vacuum
I've been patiently waiting for the newest vacuum tech to make its way into cylinder vacuums, and Miele has finally delivered
The ASSC Assassin's Creed collection.
The Assassin's Creed x Anti Social Social Club drop includes gaming merch that I wouldn't be embarrassed to wear
Quordle on a smartphone held in a hand
Quordle hints and answers for Friday, March 21 (game #1152)
NYT Strands homescreen on a mobile phone screen, on a light blue background
NYT Strands hints and answers for Friday, March 21 (game #383)
NYT Connections homescreen on a phone, on a purple background
NYT Connections hints and answers for Friday, March 21 (game #649)
Living room with Microsoft Xbox Series X (L) and Sony PlayStation 5 home video game consoles alongside a television and soundbar, taken on November 3, 2020.
The PS5 is currently selling faster than the PS4 did in the US, but I'm surprised to discover that the Xbox Series X and S are trailing behind Xbox One
Lock on Laptop Screen
Data breach at Pennsylvania education union potentially exposes 500,000 victims
Samsung Galaxy Tab S9 FE Plus on a desk showing the rear of the device from above
The Samsung Galaxy Tab S10 FE could be a powerful iPad Air rival, based on the latest specs rumors
Trojan
WhatsApp patches security flaw which let hackers install spyware