• 4 minutes Energy Armageddon
  • 6 minutes How Far Have We Really Gotten With Alternative Energy
  • 10 minutes Russia Says Europe Will Struggle To Replace Its Oil Products
  • 8 hours Reality catching up with EV forecasts
  • 58 mins Famous author Michael Crichton talks about the "Climate Change Religion" aka Feudalism 2.0
  • 6 days 87,000 new IRS agents, higher taxes, and a massive green energy slush fund... "Here Are The Winners And Losers In The 'Inflation Reduction Act'"-ZeroHedge
  • 11 days "Natural Gas Price Fundamental Daily Forecast – Grinding Toward Summer Highs Despite Huge Short Interest" by James Hyerczyk & REUTERS on NatGas
  • 11 days A Somewhat Realistic View of the Near Future for Electric Vehicles Worldwide

U.S. Energy Sector Is Vulnerable To Ransomware Attacks

A quarter of the 150 top U.S. energy companies are highly susceptible to a ransomware attack, while a massive 77 percent of those have at least one leaked credential within the last 90 days, new research by cybersecurity firm Black Kite found.

A total of 28 percent of the oil sector is highly susceptible to a ransomware attack, the research says.

“Targeted attacks on the oil industry result in massive shortages nationwide, from the diversion of gas carrier trucks to consumers hoarding gas through various means,” according to Black Kite’s findings.


In May this year, a ransomware attack on the computer network of the key fuel pipeline for the U.S. East Coast, Colonial Pipeline, forced the pipeline operator to shut it down for five days. The shut down of the main pipeline for the Eastern Seaboard resulted in fuel shortages that persisted for more than a week, a run to gas stations, and a spike in gasoline prices. 

Black Kite’s research also found that 25 percent of the natural gas subsector in the top 150 companies reviewed is highly susceptible to a ransomware attack, as well as 17 percent of the electricity companies in the sample.


“On the surface, the energy sector has a decent cyber posture reflecting a “Good” or “B” rating. However, Black Kite Research has identified and analyzed emerging threats causing the industry to remain a prime target for cybercriminals,” the Boston-based cybersecurity firm said in its report.

Nearly half, or 49 percent, of the energy sector has a critical vulnerability due to out-of-date systems, while 74 percent of energy companies have not deployed the necessary configurations (DMARC record) to prevent email spoofing attacks, Black Kite said.

“At face value, the energy sector has a decent overall security posture. However, when you look under the hood there are areas of concern that make our nation’s energy infrastructure susceptible to crippling ransomware attacks,” Black Kite CEO Paul Paget said in a statement.

In June, following the Colonial Pipeline ransomware attack, U.S. Secretary of Energy Jennifer Granholm said there were malign cyber actors capable of shutting down the U.S. power grid or parts of it, and called for increased public-private cooperation in fending off cyberattacks.

By Charles Kennedy for Oilprice.com

More Top Reads from Oilprice.com:

Join the discussion | Back to homepage



Leave a comment

Leave a comment

EXXON Mobil -0.35
Open57.81 Trading Vol.6.96M Previous Vol.241.7B
BUY 57.15
Sell 57.00
Oilprice - The No. 1 Source for Oil & Energy News