Although the investigation is ongoing, we believe the attacker exploited a legacy virtual private network (VPN) profile that was not intended to be in use. We are still trying to determine how the attackers gained the needed credentials to exploit it.
Joseph A. Blount, JR.President and Chief Executive Officer, Colonial Pipeline
Full Committee Hearing, U.S. Senate Committee on Homeland Security & Governmental Affairs
Joseph A. Blount, JR.President and Chief Executive Officer