U.S. investigators have recovered $2.3 million worth of cryptocurrency paid as a ransom to the cybercrime group responsible for the attack that shut down Colonial Pipeline last month, the Justice Department announced Monday.
Driving the news: Colonial Pipeline CEO Joseph Blount told the Wall Street Journal he authorized a $4.4 million ransom payment to the DarkSide cybercrime group on May 7th in an attempt to restore service of the largest refined fuel pipeline in the U.S.
- The company, however, had notified the FBI and followed instructions to help U.S. investigators track the payment, CNN reported.
- The federal government has for years recommended that companies do not pay those responsible for ransomware attacks due to fears that the transactions would encourage more groups to conduct future attacks.