Colonial Pipeline, No, wait, Accenture was hacked that infected some of the pipeline's digital systems, shutting it down for several days.
Colonial Pipeline is aware of unfounded accusations that an unidentified party has compromised its system, claims that were made in an online forum.
Working together with the security and technology teams, they were able to certify that there has been no interruption in pipeline operations and that our system is currently secure. At first glance, the online-posted files seem to be a result of a separate third-party data breach unrelated to Colonial Pipeline.
Dudek's login information was used to hack Accenture.
They could uncover no proof of RansomedVC's assertions, and they have no proof that anyone other than authorised users has gained access to Accenture's system in the last week using phished login credentials or another method.
TPRM report: https://scoringcyber.rankiteo.com/company/colonial-pipeline-company
"id": "col2118151023",
"linkid": "colonial-pipeline-company",
"type": "Cyber Attack",
"date": "10/2023",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'industry': 'Consulting',
'name': 'Accenture',
'type': 'Company'},
{'industry': 'Energy',
'name': 'Colonial Pipeline',
'type': 'Company'}],
'attack_vector': 'Phishing',
'description': "Accenture was hacked, which infected some of the pipeline's "
'digital systems, shutting it down for several days. Colonial '
'Pipeline is aware of unfounded accusations that an '
'unidentified party has compromised its system, claims that '
'were made in an online forum. Working together with the '
'security and technology teams, they were able to certify that '
'there has been no interruption in pipeline operations and '
'that our system is currently secure. At first glance, the '
'online-posted files seem to be a result of a separate '
'third-party data breach unrelated to Colonial Pipeline. '
"Dudek's login information was used to hack Accenture. They "
"could uncover no proof of RansomedVC's assertions, and they "
'have no proof that anyone other than authorised users has '
"gained access to Accenture's system in the last week using "
'phished login credentials or another method.',
'impact': {'downtime': 'Several days',
'operational_impact': 'Pipeline operations shut down',
'systems_affected': 'Pipeline digital systems'},
'initial_access_broker': {'entry_point': 'Phished login credentials'},
'motivation': 'Unauthorized access',
'post_incident_analysis': {'root_causes': 'Phished login credentials'},
'references': [{'source': 'Online forum'}],
'threat_actor': ['RansomedVC', 'Dudek'],
'title': 'Accenture Hack Incident',
'type': 'Hack',
'vulnerability_exploited': 'Phished login credentials'}