White House holds Russia responsible for JBS ransomware attack. JBS SA is a leading multinational meat producer, the actions of the White House show signs of more action will be taken by the US government especially after the Colonial Pipeline incident. Though ransomware business runs as usual.
According to Karine Jean-Pierre, principal deputy press secretary, during a press briefing on Air Force One, JBS informed the White House that it believes the ransom demands were coming from Russia.
A White House transcript published suggests Jean-Pierre said “The White House is engaging directly with the Russian government on this matter and delivering the message that responsible states do not harbor ransomware criminals. The FBI is investigating the incident and CISA [Cybersecurity and Infrastructure Security Agency] is coordinating with the FBI to offer technical support to the company in recovering from the ransomware attack.”
About the JBS Ransomware Attack
JBS, based in Sao Paulo, Brazil, informed the White House about the hack on Sunday. Though it did not mention the ransom amount demanded by the bad actors.
The ransomware attack affected the servers in North America and Australia, resulting in meat processing operations being halted on Monday. Though it is recovering from it.
According to Andre Nogueira, CEO of JBS USA, The company is using all its resources to fight the threat. The cybersecurity plans are in place to address such a crisis and they will successfully execute the plans.
The company said most of its beef, pork, poultry, and prepared food plants should be operational by Wednesday. While it is still working on resuming operations at some plants in the U.S. and Australia. A beef production unit in Canada has resumed production.
In the meantime, the US Department of Agriculture is reaching out to other meat suppliers to ensure they’re aware of the JBS incident. Agriculture operations and food processing facilities are considered critical infrastructure by CISA.
According to Allan Liska, who is part of Recorded Future’s Computer Security Incident Response Team, food plants – similar to manufacturing plants – are often soft targets for ransomware distributors.