Although the investigation is ongoing, we believe the attacker exploited a legacy virtual private network (VPN) profile that was not intended to be in use. We are still trying to determine how the attackers gained the needed credentials to exploit it.
Joseph A. Blount, JR.President and Chief Executive Officer, Colonial Pipeline
Hearing
Full Committee Hearing, U.S. Senate Committee on Homeland Security & Governmental Affairs
Witnesses
Joseph A. Blount, JR.President and Chief Executive Officer
Colonial Pipeline
Hearing Video
