blackbasta attacks Contractors Pipe and Supply Corporation
Incident Date:
May 19, 2022
Overview
Title
blackbasta attacks Contractors Pipe and Supply Corporation
Victim
Contractors Pipe and Supply Corporation
Attacker
Blackbasta
Location
First Reported
May 19, 2022
BlackBasta Ransomware Attack on Contractors Pipe and Supply Corporation
Company Overview
Contractors Pipe and Supply Corporation, a key player in the construction sector, provides a range of products and services including pipes, valves, fittings, and related items through its website. This sector's increasing reliance on technology and digital systems exposes it to heightened cybersecurity risks.
Company Size and Industry Standout
While specific details regarding the size of Contractors Pipe and Supply Corporation are not readily available, its operation within the substantial construction industry in the United States marks it as a significant entity. The construction industry's technological dependencies make it a prime target for cybercriminal activities.
Vulnerabilities
The exact vulnerabilities that made Contractors Pipe and Supply Corporation susceptible to the BlackBasta ransomware attack are not detailed. Nonetheless, the construction industry's operational technology (OT) systems are known for their security challenges. These systems, crucial for the operation of pipelines, valves, pumps, and meters, often rely on custom software that is difficult to update. The necessity of taking assets offline for patching creates periods of vulnerability that can be exploited by cyber attackers.
Previous Attacks in the Construction Sector
The construction sector has been under significant cyber threat, as demonstrated by the Colonial Pipeline attack in 2021. This incident revealed the vulnerabilities within OT systems, where attackers accessed IT systems using a compromised password and caused a shutdown of the pipeline network. It highlighted the critical need for enhanced visibility into OT assets and the adoption of cybersecurity best practices to mitigate future risks.
The BlackBasta ransomware attack on Contractors Pipe and Supply Corporation underscores the persistent cybersecurity challenges within the construction sector. With the industry's growing dependence on digital systems, the implementation of comprehensive cybersecurity measures is imperative for safeguarding against potential threats.
Sources
- Contractors Pipe and Supply Corporation website: https://www.contractorspipeandsupply.com/webcat/webcatpageserver.exe
- "Pipeline operators face huge challenge preventing repeat of Colonial hack" by Spglobal.com: https://www.spglobal.com/marketintelligence/en/news-insights/latest-news-headlines/pipeline-operators-face-huge-challenge-preventing-repeat-of-colonial-hack-67747948
- "Colonial Pipeline hack explained: Everything you need to know" by TechTarget: https://www.techtarget.com/whatis/feature/Colonial-Pipeline-hack-explained-Everything-you-need-to-know
- "Cybersecuring the Pipeline" by Houston Law Review: https://houstonlawreview.org/article/73666-cybersecuring-the-pipeline
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.