# Web Security Research

**Assignment:** Research a cyber attack and/or compromise of a web service in the last 6 months - and:

1. Include a link to the article(s) pertaining to the incident

```
https://www.bloomberg.com/news/articles/2021-06-04/hackers-breached-colonial-pipeline-using-compromised-password
```

1. Write a few sentences (in your own words) about what occurred

Attackers used ransomware to encrypt the data of the pipeline company. They demanded a ransom for the decryption key. 

1. Answer the following questions:
   * What was the motive/intent of the attackers? Was the attack attributed to anyone or a group?

<mark style="background-color:red;">The motive behind this attack was the money they would receive from the ransom.</mark>

* What impact did the incident have (who was affected, for how long, were there financial or other damages...)?

<mark style="background-color:red;">This attack caused an energy shortage in the Eastern united states, fuel supplies were disrupted for several days and the company was greatly financially inconvenienced.</mark>&#x20;

* Any information on how the attackers were able to exploit the system?

<mark style="background-color:red;">It is not completely known how the system was exploited but it is believed to have been a phishing attack which allowed the the attackers to use ransomware on the system.</mark>

* Any recommendations on how similar attacks could be prevented?

<mark style="background-color:red;">Have better network monitoring and better anti virus that can identify ransomware and kill it at the end point it is installed in.</mark>

**Submission: Doc with heading (name, date, assignment # ...) and responses**