The Wall Street Journal last night reported in an exclusive that JBS paid its REvil attackers $11 million in Bitcoin to restore the systems and data affected by the gang’s ransomware attack. The payment was made after most of JBS’s plants had returned to operation. The company says it had all of its data backed up, and that as far as it could tell no customer, supplier, or employee data had been compromised. This has prompted questions about what might have been worth $11 million to protect, and it appears that JBS may have been hedging against re-attack. “It was insurance to protect our customers,” the CEO of JBS's US division said.
Bloomberg Quint reports on the reception Colonial Pipeline’s CEO Joseph Blount Jr. received from Congress during his testimony. It was chilly. The company’s failure to have adopted a stronger security posture was criticised, as was its decision to pay ransom, the FBI’s recovery of much of the money notwithstanding. First, The reception Colonial received renders more implausible speculation that the company paid DarkSide in cooperation with the FBI, the better to help the Bureau cripple the extortionists' infrastructure.
According to Reuters, Italy plans to establish a national cybersecurity agency as it works toward a national cloud infrastructure plan.
TheHill reports that iConstituent, a vendor that provides constituent management services (the elected officials’ equivalent of CRM) to some sixty offices of both parties, was hit by ransomware, leaving members of Congress unable to contact their constituents for several weeks.