The Justice Department has recovered the majority of a multimillion-dollar ransom payment to hackers after a cyber attack that caused the operator of the nation’s largest fuel pipeline to halt its operations last month, officials said Monday.

The operation to recover the cryptocurrency from the Russia-based hacker group is believed to be the first of its kind, and reflects what US officials say is an increasingly aggressive approach to deal with a ransomware threat that, in the last month, has targeted critical industries around the world.

DDoS attacks cool off in Q4 as cyberattackers shift focus to cryptocurrency: Report

“By going after an entire ecosystem that fuels ransomware and digital currency, we will continue to use all of our tools and all of our resources to increase the costs and the consequences of ransomware attacks and other cyber-enabled attacks,” Deputy Attorney General Lisa Monaco said at a news conference announcing the operation.

$4.4-million ransom

Georgia-based Colonial Pipeline, which supplies roughly half the fuel consumed on the East Coast, temporarily shut down its operations on May 7 after a gang of criminal hackers known as DarkSide broke into its computer system.

Top US fuel pipeline operator Colonial Pipeline pushes to recover from cyberattack

Colonial officials have said they took their pipeline system offline before the attack could spread to its operating system, and decided to pay a roughly $4.4 million ransom in an effort to bring itself back online as soon as it could.

The FBI generally discourages the payment of ransom, fearing it could encourage additional hacks.

comment COMMENT NOW