The hacking group accused of nearly crippling the U.S. gas supply on the East Coast with a ransomware attack on Colonial Pipeline says it is shutting down due to “pressure” from the U.S., according to The New York Times. “Due to the pressure from the U.S., the affiliate program is closed. Stay safe and good luck,” DarkSide said in a statement quoted by the Times on Friday. The Wall Street Journal first reported on the group apparently pulling the plug on operations. The group’s website has been down since Thursday. Experts have warned that the hackers’ announcement may simply be a way for the group to take the heat off themselves so they can reappear later, possibly under a different name. “I wouldn’t be surprised if DarkSide has just said, ‘It is way too hot,’ and they decided to pull the pin on themselves,” Winston Krone, the chief research officer with Kivu Consulting, Inc., told the Wall Street Journal. While President Biden on Thursday threatened to “disrupt [the ransomware group’s] ability to operate,” it was not clear if DarkSide was shut down by U.S. authorities.
