Colonial Pipeline’s CEO has acknowledged to the Wall Street Journal that his company paid a $US4.4 million ($A5.7 million) ransom to hackers as executives were unsure how badly its systems were breached or how long it would take to restore the pipeline.
The 8850km Colonial Pipeline Co system closed last week after one of the most disruptive cyberattacks on record, preventing millions of barrels of petrol, diesel and jet fuel from flowing to the US east coast from the Gulf Coast.
Chief Executive Joseph Blount told the Journal he paid the extortion money for the greater good.
“I know that’s a highly controversial decision,” Mr Blount was quoted as saying.
“I didn’t make it lightly. I will admit that I wasn’t comfortable seeing money go out the door to people like this.”
Mr Blount said the decision had been “the right thing to do for the country”.
The ransom payment, which was first reported by Bloomberg, illustrates the dilemma facing companies whose networks have been compromised by online extortionists.
On the one hand, companies can be completely paralysed by hackers with potentially far-reaching consequences in cases like Colonial’s.
On the other, paying ransoms effectively passes the problem forward, allowing cash-rich cybercriminals to move on to an increasing number of targets.
US officials have struggled to discourage companies from paying.
“Typically that is a private-sector decision,” Anne Neuberger, US deputy national security adviser for cyber, told reporters earlier this month.
Colonial Pipeline did not immediately return a message seeking further comment.
The FBI did not immediately respond to an email.
The hackers, alleged to be affiliated with the DarkSide cybercrime gang, have not returned repeated messages.