Skip to Main Content
HBS Home
  • About
  • Academic Programs
  • Alumni
  • Faculty & Research
  • Baker Library
  • Giving
  • Harvard Business Review
  • Initiatives
  • News
  • Recruit
  • Map / Directions
Faculty & Research
  • Faculty
  • Research
  • Featured Topics
  • Academic Units
  • …→
  • Harvard Business School→
  • Faculty & Research→
Publications
Publications
  • March 2023
  • Teaching Note
  • HBS Case Collection

Ransomware Attack at Colonial Pipeline Company

By: Suraj Srinivasan and Li-Kuan Ni
  • Format:Print
  • | Language:English
  • | Pages:9
ShareBar

Abstract

Teaching Note for HBS Case No. 123-069. On the morning of May 7, 2021, Colonial Pipeline Company became aware that the company had been the victim of a malicious ransomware attack that had stolen and locked up company data. The extortionists demanded 75 bitcoins (worth about $4.4 million at the time) in exchange for the decryption tool needed to unlock the data. To contain the system infection, the control room promptly shut down all company pipelines that transported nearly half of all refined oil products consumed in the East Coast of the United States. Within hours, external experts and governmental authorities were assembled to help but information was still limited on how to manage the cyberattack. As the passing of every minute threatened the oil supply to 13 states and the nation’s capital, CEO of Colonial Pipeline, Joseph Blount had to make one crucial decision: whether to pay the ransom or not.

The case discusses Colonial Pipeline’s cybersecurity practices, ransomware trends, detail of the ransomware attack at Colonial, impact of the attack, Colonial’s response to the attack, and post-attack repercussion. Overall, the case prompts readers to contemplate how organizations should prevent and respond to the ever-increasing threat of cyber breaches.

Keywords

Disruption; Communication; Communication Strategy; Decision Making; Decision Choices and Conditions; Judgments; Corporate Accountability; Corporate Disclosure; Corporate Governance; Governance Controls; Policy; Employees; News; Cybersecurity; Digital Strategy; Information Infrastructure; Information Management; Internet and the Web; Crisis Management; Business or Company Management; Resource Allocation; Risk Management; Negotiation Tactics; Failure; Business and Stakeholder Relations; Attitudes; Behavior; Perception; Reputation; Trust; Public Opinion; Social Issues; Infrastructure; Distribution Industry; United States; Alabama

Citation

Srinivasan, Suraj, and Li-Kuan Ni. "Ransomware Attack at Colonial Pipeline Company." Harvard Business School Teaching Note 123-070, March 2023.
  • Purchase

About The Author

Suraj Srinivasan

Accounting and Management
→More Publications

More from the Authors

    • 2025
    • Faculty Research

    Critical Choices in Designing a Board: An Overview

    By: Suraj Srinivasan and Lynn S. Paine
    • June 2025
    • Accounting, Organizations and Society

    What Board-level Control Mechanisms Changed in Banks Following the 2008 Financial Crisis? A Descriptive Study

    By: Shelly Li, Shivram Rajgopal, Suraj Srinivasan and Yu Ting Forester Wong
    • May 2025
    • Faculty Research

    Windsurf and the AI Code Assistant Market

    By: Suraj Srinivasan, Sudhanshu Nath Mishra and Radhika Kak
More from the Authors
  • Critical Choices in Designing a Board: An Overview By: Suraj Srinivasan and Lynn S. Paine
  • What Board-level Control Mechanisms Changed in Banks Following the 2008 Financial Crisis? A Descriptive Study By: Shelly Li, Shivram Rajgopal, Suraj Srinivasan and Yu Ting Forester Wong
  • Windsurf and the AI Code Assistant Market By: Suraj Srinivasan, Sudhanshu Nath Mishra and Radhika Kak
ǁ
Campus Map
Harvard Business School
Soldiers Field
Boston, MA 02163
→Map & Directions
→More Contact Information
  • Make a Gift
  • Site Map
  • Jobs
  • Harvard University
  • Trademarks
  • Policies
  • Accessibility
  • Digital Accessibility
Copyright © President & Fellows of Harvard College.