Backups, Hacking, Information Security and Manufacturing

As of May 2024, Black Basta ransomware affiliates hacked over 500 organizations worldwide

Security Affairs

MAY 12, 2024

Most of the victims are in the manufacturing, engineering and construction, and retail sectors. Recommendations provided in the report include installing updates promptly, using phishing-resistant multi-factor authentication (MFA), securing remote access software, making backups, and applying mitigations from the #StopRansomware Guide.

Ransomware

Ransomware Hacking Healthcare Retail

Compal, the Taiwanese giant laptop manufacturer hit by ransomware

Security Affairs

NOVEMBER 9, 2020

The Taiwanese electronics manufacture Compal suffered a ransomware attack over the weekend, media blames the DoppelPaymer ransomware gang. It is the second-largest contract laptop manufacturer in the world behind Quanta Computer. The company is working to recover the impacted systems using the backups. Pierluigi Paganini.

Manufacturing

Manufacturing Computers and Electronics Ransomware Media

BlackCat Ransomware gang stole secret military data from an industrial explosives manufacturer

Security Affairs

JANUARY 26, 2023

The BlackCat Ransomware group claims to have hacked SOLAR INDUSTRIES INDIA and to have stolen 2TB of “secret military data.” ” The BlackCat Ransomware gang added SOLAR INDUSTRIES INDIA to the list of victims published on its Tor leak site.

Manufacturing

Manufacturing Ransomware Engineering Hacking

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Security Blueprints of Many Companies Leaked in Hack of Swedish Firm Gunnebo

Krebs on Security

OCTOBER 28, 2020

Linus Larsson , the journalist who broke the story, says the hacked material was uploaded to a public server during the second half of September, and it is not known how many people may have gained access to it. The REvil actor claimed that on average roughly one in three of its victims agrees to pay an extortion fee.

Hacking

Hacking Ransomware Banking Accountability

Steel sheet giant Hoa Sen Group hacked by Maze ransomware operators

Security Affairs

AUGUST 21, 2020

During the ordinary monitoring of Deepweb and Darkweb , researchers at Cyble came across the leak disclosure post published by the Maze ransomware operators that claim the hack of the Hoa Sen Group. 1 company in the field of manufacturing and trading steel sheet in Vietnam and the leading exporter of steel sheet in Southeast Asia.

Ransomware

Ransomware Hacking Advertising Backups

FBI and Australia ACSC agencies warn of ongoing Avaddon ransomware attacks

Security Affairs

MAY 11, 2021

The Federal Bureau of Investigation (FBI) and the Australian Cyber Security Centre (ACSC) are warning of an ongoing Avaddon ransomware campaign targeting organizations worldwide in multiple industries, including government, finance, energy, manufacturing, and healthcare. SecurityAffairs – hacking, Avaddon). Pierluigi Paganini.

Ransomware

Ransomware Backups Antivirus DDOS

8Base ransomware operators use a new variant of the Phobos ransomware

Security Affairs

NOVEMBER 19, 2023

The group has been active since March 2022, it focused on small and medium-size businesses in multiple industries, including finance, manufacturing, business services, and IT. Security experts attributed 67 attacks to the group in May 2023, most of the victims are in the U.S. and Brazil.

Ransomware

Ransomware Encryption Backups Manufacturing

Lacroix Group shut down three facilities after a ‘targeted cyberattack’

Security Affairs

MAY 16, 2023

French electronics manufacturer Lacroix Group shut down three plants after a cyber attack, experts believe it was the victim of a ransomware attack. The French electronics manufacturer Lacroix Group shut down three facilities in France, Germany, and Tunisia in response to a cyber attack. ” reported Yahoo Finance.

Manufacturing

Manufacturing Ransomware Cyber Attacks Backups

Microsoft: Raspberry Robin worm already infected hundreds of networks

Security Affairs

JULY 3, 2022

The malware uses TOR exit nodes as a backup C2 infrastructure. The malware was first spotted in September 2021, the experts observed Raspberry Robin targeting organizations in the technology and manufacturing industries. SecurityAffairs – hacking, malware). Follow me on Twitter: @securityaffairs and Facebook.

Manufacturing

Manufacturing Malware Backups Technology

LockBit ransomware gang leaked data stolen from Boeing

Security Affairs

NOVEMBER 13, 2023

The Boeing Company, commonly known as Boeing, is one of the world’s largest aerospace manufacturers and defense contractors. Bleeping Computer analyzed the leaked data and reported that most of the published data are backups for various systems. In 2022, Boeing recorded $66.61 billion in sales, the aerospace giant has 156,000 (2022).

Ransomware

Ransomware Authentication Backups Manufacturing

Security Affairs newsletter Round 392

Security Affairs

NOVEMBER 6, 2022

Cisco addressed several high-severity flaws in its products LockBit ransomware gang claims the hack of Continental automotive group 250+ U.S. Cisco addressed several high-severity flaws in its products LockBit ransomware gang claims the hack of Continental automotive group 250+ U.S. SecurityAffairs – hacking, newsletter).

Hacking

Hacking Ransomware Cybercrime Backups

Security Affairs newsletter Round 404 by Pierluigi Paganini

Security Affairs

JANUARY 29, 2023

Copycat Criminals mimicking Lockbit gang in northern Europe Sandworm APT targets Ukraine with new SwiftSlicer wiper ISC fixed high-severity flaws in DNS software suite BIND Patch management is crucial to protect Exchange servers, Microsoft warns Hacker accused of having stolen personal data of all Austrians and more CVE-2023-23560 flaw exposes 100 (..)

DNS

DNS Data breaches Hacking Backups

Australian Cyber Security Centre warns of a surge of LockBit 2.0 ransomware attacks

Security Affairs

AUGUST 9, 2021

Most of the attacks have been reported in July, the organizations hit by the ransomware gang operate in professional services, construction, manufacturing, retail, and food industries. SecurityAffairs – hacking, LockBit 2.0). The post Australian Cyber Security Centre warns of a surge of LockBit 2.0 in Australia since 2020.

Ransomware

Ransomware Retail Manufacturing Encryption

Avoslocker ransomware gang targets US critical infrastructure

Security Affairs

MARCH 19, 2022

. “AvosLocker is a Ransomware as a Service (RaaS) affiliate-based group that has targeted victims across multiple critical infrastructure sectors in the United States including, but not limited to, the Financial Services, Critical Manufacturing, and Government Facilities sectors. Focus on cyber security awareness and training.

Ransomware

Ransomware DDOS Passwords Backups

FBI warns of ransomware attacks targeting the food and agriculture sector

Security Affairs

SEPTEMBER 3, 2021

Small farms, large producers, processors and manufacturers, and markets and restaurants are particularly exposed to ransomware attacks. The good news is in the latter attack the victims restored its backups. Focus on cyber security awareness and training. SecurityAffairs – hacking, FBI). ransomware and phishing scams).

Ransomware

Ransomware Passwords Backups Firmware

Raspberry Robin spotted using two new 1-day LPE exploits

Security Affairs

FEBRUARY 11, 2024

The malware uses TOR exit nodes as a backup C2 infrastructure. The malware was first spotted in September 2021, the experts observed it targeting organizations in the technology and manufacturing industries. The malicious code uses Windows Installer to reach out to QNAP-associated domains and download a malicious DLL.

Malware

Malware Backups Manufacturing Hacking

RedEnergy Stealer-as-a-Ransomware employed in attacks in the wild

Security Affairs

JULY 5, 2023

Once inside the system, this malicious variant stealthily extracts sensitive information and proceeds to encrypt the compromised files.” Threat actors used reputable LinkedIn pages to target victims, including the Philippines Industrial Machinery Manufacturing Company and multiple organizations in Brazil.

Energy and Utilities

Energy and Utilities Ransomware Backups Malware

Security Affairs newsletter Round 426 by Pierluigi Paganini – International edition

Security Affairs

JULY 2, 2023

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Cybercrime

Cybercrime Hacking Ransomware Malware

Ranzy Locker ransomware hit tens of US companies in 2021

Security Affairs

OCTOBER 26, 2021

The victims include the construction subsector of the critical manufacturing sector, the academia subsector of the government facilities sector, the information technology sector, and the transportation sector.” SecurityAffairs – hacking, Ranzy Locker ransomware). ” reads the flash alert. Pierluigi Paganini.

Ransomware

Ransomware Firmware Antivirus Accountability

Experts link Raspberry Robin Malware to Evil Corp cybercrime gang

Security Affairs

SEPTEMBER 2, 2022

The malware uses TOR exit nodes as a backup C2 infrastructure. The malware was first spotted on September 2021, the experts observed it targeting organizations in the technology and manufacturing industries. SecurityAffairs – hacking, Evil Corp). Initial access is typically through infected removable drives, often USB devices.

Cybercrime

Cybercrime Malware Backups Manufacturing

Sodinokibi ransomware gang stole 1TB of data from Brown-Forman

Security Affairs

AUGUST 15, 2020

Sodinokibi (REvil) ransomware operators announced on Friday to have hacked Brown-Forman, one of the largest U.S. As a proof of the hack, Sodinokibi ransomware operators posted on their leak site multiple screenshots showing directories and files allegedly belonging to the company, and internal conversations between some employees.

Ransomware

Ransomware Advertising Encryption Hacking

A new wave of Qlocker ransomware attacks targets QNAP NAS devices

Security Affairs

JANUARY 16, 2022

The ransomware known as Qlocker exploits CVE-2021-28799 to attack QNAP NAS running certain versions of HBS 3 (Hybrid Backup Sync).” reads the security advisory published by the vendor. Then it also deletes snapshots to prevent restoring of data from the backups and drops a ransom note (named !!!READ_ME.txt) Pierluigi Paganini.

Ransomware

Ransomware Encryption Backups Firmware

FBI confirmed that JBS was hit by the REvil ransomware gang

Security Affairs

JUNE 3, 2021

The company’s backup servers were not affected, and it is actively working with an Incident Response firm to restore its systems as soon as possible.” Recently the REvil ransomware gang hit other prominent companies, such as Taiwan-based computer manufacturer Quanta Computer and Acer. SecurityAffairs – hacking, ransomware).

Ransomware

Ransomware Cybercrime Backups Manufacturing

Security Affairs newsletter Round 303

Security Affairs

FEBRUARY 28, 2021

If you want to receive the weekly Security Affairs Newsletter for free subscribe here. SecurityAffairs – hacking, newsletter). The post Security Affairs newsletter Round 303 appeared first on Security Affairs. Pierluigi Paganini.

Spyware

Spyware Backups Manufacturing Data breaches

Ongoing Raspberry Robin campaign leverages compromised QNAP devices

Security Affairs

JULY 9, 2022

The malware uses TOR exit nodes as a backup C2 infrastructure. The malware was first spotted in September 2021, the experts observed Raspberry Robin targeting organizations in the technology and manufacturing industries. SecurityAffairs – hacking, malware). Pierluigi Paganini.

Malware

Malware Manufacturing Backups Technology

Raspberry Robin malware used in attacks against Telecom and Governments

Security Affairs

DECEMBER 24, 2022

The malware uses TOR exit nodes as a backup C2 infrastructure. The malware was first spotted in September 2021, the experts observed it targeting organizations in the technology and manufacturing industries. SecurityAffairs – hacking, malware). Initial access is typically through infected removable drives, often USB devices.

Government

Government Malware Telecommunications Cybercrime

Audio equipment maker Bose Corporation discloses a ransomware attack

Security Affairs

MAY 25, 2021

The audio equipment manufacturer Bose Corporation said it was the victim of a ransomware attack that took place earlier this year, on March 7. Bose also hired external security experts and forensic experts to determine the extent of the attack and restore the impacted systems. SecurityAffairs – hacking, Bose Corporation).

Ransomware

Ransomware Malware Cyber Attacks Backups

Raspberry Robin operators are selling initial access to compromised enterprise networks to ransomware gangs

Security Affairs

OCTOBER 27, 2022

The malware uses TOR exit nodes as a backup C2 infrastructure. The malware was first spotted in September 2021, the experts observed Raspberry Robin targeting organizations in the technology and manufacturing industries. SecurityAffairs – hacking, ransomware). ” concludes the report. Pierluigi Paganini.

Ransomware

Ransomware Malware Data collection Encryption

CISA, FBI shared a joint advisory to warn of Zeppelin ransomware attacks

Security Affairs

AUGUST 13, 2022

The ransomware was involved in attacks aimed at technology and healthcare, defense contractors, educational institutions, manufacturers, companies across Europe, the United States, and Canada. SecurityAffairs – hacking, Zeppelin ransomware). Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Ransomware

Ransomware Encryption Firmware Backups

Microsoft experts linked the Raspberry Robin malware to Evil Corp operation

Security Affairs

JULY 29, 2022

The malware uses TOR exit nodes as a backup C2 infrastructure. The malware was first spotted in September 2021, the experts observed Raspberry Robin targeting organizations in the technology and manufacturing industries. The malicious code uses Windows Installer to reach out to QNAP-associated domains and download a malicious DLL.

Malware

Malware Backups Manufacturing Accountability

City of Dallas shut down IT services after ransomware attack

Security Affairs

MAY 4, 2023

“The department had reverted to its backup system, radio, to dispatch officers in response to 911 calls instead of its computer assisted dispatch system. . “We have learned the attack’s biggest impact is likely at the Dallas Police Department.” ” reported the website of Fox4News. reads the alert.

Ransomware

Ransomware Healthcare Education Encryption

Raspberry Robin spreads via removable USB devices

Security Affairs

MAY 7, 2022

The malware uses TOR exit nodes as a backup C2 infrastructure. The malware was first spotted in September 2021, the experts observed Raspberry Robin targeting organizations in the technology and manufacturing industries. SecurityAffairs – hacking, domain name system). To nominate, please visit:? Pierluigi Paganini.

Malware

Malware Backups Manufacturing Hacking

Ransomware paralyzed production for at least a week at ASCO factories

Security Affairs

JUNE 13, 2019

Malware infections could be devastating for production environments, a ransomware infection halts production operations for days at airplane parts manufacturer ASCO. ASCO , is of the world’s largest manufacturers of aerospace components. “We have informed all competent authorities in this area of ??

Ransomware

Ransomware Manufacturing Cyber Attacks Advertising

IoT Cybersecurity: 5 Major Vulnerabilities and How to Tackle Them

Security Affairs

OCTOBER 13, 2020

Nobody told them that their coffee machine could be hacked into or that their camera could be used to launch a DDoS attack. The Flaws in Manufacturing Process. Manufacturers saw this as an opportunity and rushed in to grab their own piece of the IoT market. Before the device applies the update, it sends a backup to the servers.

IoT

IoT Cybersecurity Manufacturing Internet

Raspberry Robin malware used in attacks against Telecom and Governments

Security Affairs

DECEMBER 24, 2022

The malware uses TOR exit nodes as a backup C2 infrastructure. The malware was first spotted in September 2021, the experts observed it targeting organizations in the technology and manufacturing industries. SecurityAffairs – hacking, malware). Initial access is typically through infected removable drives, often USB devices.

Government

Government Malware Telecommunications Cybercrime

FBI published a flash alert on Mamba Ransomware attacks

Security Affairs

MARCH 26, 2021

According to the flash alert published by the FBI, the Mamba ransomware was employed in attacks against local governments, public transportation agencies, legal services, technology services, industrial, commercial, manufacturing, and construction businesses. SecurityAffairs – hacking, Mamba ransomware). Pierluigi Paganini.

Ransomware

Ransomware Encryption Passwords Malware

China-linked threat actors have breached telcos and network service providers

Security Affairs

JUNE 8, 2022

Both tools could be used to target SOHO and other routers manufactured by major industry providers, including Cisco, Fortinet, and MikroTik. Perform regular data backup procedures and maintain up-to-date incident response and recovery procedures. SecurityAffairs – hacking, China-linked threat actors). Pierluigi Paganini.

Telecommunications

Telecommunications Authentication Passwords Accountability

CISA warns of critical flaws in Prima FlexAir access control system

Security Affairs

JULY 31, 2019

CISA published a security advisory to warn of multiple critical vulnerabilities affecting in Prima FlexAir access control system. Cybersecurity and Infrastructure Security Agency (CISA) published an advisory to warn of critical flaws affecting access control systems manufactured by Prima Systems. and prior. .”

Backups

Backups Authentication Advertising Firmware

US CISA and FBI publish joint alert on DarkSide ransomware

Security Affairs

MAY 13, 2021

US agencies warn that groups employed DarkSide ransomware in attacks aimed at organizations across various Critical Infrastructure sectors, including manufacturing, legal, insurance, healthcare, and energy. Implement regular data backup procedures . SecurityAffairs – hacking, DarkSide). Organize OT assets into logical zones.

Ransomware

Ransomware Healthcare Phishing Risk

Group-IB detects a series of ransomware attacks by OldGremlin

Security Affairs

SEPTEMBER 23, 2020

Since March, the attackers have been trying to conduct multistage attacks on large corporate networks of medical labs, banks, manufacturers, and software developers in Russia. SecurityAffairs – hacking, OldGremlin). The post Group-IB detects a series of ransomware attacks by OldGremlin appeared first on Security Affairs.

Ransomware

Ransomware Phishing Banking Advertising

A new NAS Ransomware targets QNAP Devices

Security Affairs

JULY 11, 2019

Experts at security firms Intezer and Anomali have separately discovered a new piece of ransomware targeting Network Attached Storage (NAS) devices. The ransomware targets poorly protected or vulnerable NAS servers manufactured by Taiwan-based QNAP Systems, attackers exploits known vulnerabilities or carry out brute-force attacks.

Ransomware

Ransomware Encryption Malware Advertising

The Hacker Mind Podcast: Hacking Industrial Control Systems

ForAllSecure

APRIL 26, 2022

Like any other criminal hack. So there’s a need, a definite need, for information security professionals to have access to industrial control systems -- not virtual, but actual hands on systems -- so they can learn. It’s about challenging our expectations about the people who hack for a living.

Hacking

Hacking Energy and Utilities Manufacturing Firmware

Cyber Security Awareness and Risk Management

Spinone

DECEMBER 26, 2018

Cyber threat management , being an advanced discipline, craves analytical attention and a commander’s strategic skills of information security executives to confront and overcome the multi-dimensional cyber threats. What are the benefits of cyber security awareness trainings?

Security Awareness

Security Awareness Risk Cyber threats Cyber Risk

A Cybersecurity Conversation with Vince Moore – Senior Network Engineer at OPSWAT

CyberSecurity Insiders

JANUARY 16, 2022

More than 1,500 organizations worldwide spanning Financial Services, Defense, Manufacturing, Energy, Aerospace, and Transportation Systems trust OPSWAT to secure their files and devices; ensure compliance with industry and government-driven policies and regulations, and protect their reputation, finances,?

Engineering

Engineering Cybersecurity Energy and Utilities Software

As of May 2024, Black Basta ransomware affiliates hacked over 500 organizations worldwide

Compal, the Taiwanese giant laptop manufacturer hit by ransomware

Webinars

Trending Sources

BlackCat Ransomware gang stole secret military data from an industrial explosives manufacturer

Webinars

Security Blueprints of Many Companies Leaked in Hack of Swedish Firm Gunnebo

Steel sheet giant Hoa Sen Group hacked by Maze ransomware operators

FBI and Australia ACSC agencies warn of ongoing Avaddon ransomware attacks

8Base ransomware operators use a new variant of the Phobos ransomware

Lacroix Group shut down three facilities after a ‘targeted cyberattack’

Microsoft: Raspberry Robin worm already infected hundreds of networks

LockBit ransomware gang leaked data stolen from Boeing

Security Affairs newsletter Round 392

Security Affairs newsletter Round 404 by Pierluigi Paganini

Australian Cyber Security Centre warns of a surge of LockBit 2.0 ransomware attacks

Avoslocker ransomware gang targets US critical infrastructure

FBI warns of ransomware attacks targeting the food and agriculture sector

Raspberry Robin spotted using two new 1-day LPE exploits

RedEnergy Stealer-as-a-Ransomware employed in attacks in the wild

Security Affairs newsletter Round 426 by Pierluigi Paganini – International edition

Ranzy Locker ransomware hit tens of US companies in 2021

Experts link Raspberry Robin Malware to Evil Corp cybercrime gang

Sodinokibi ransomware gang stole 1TB of data from Brown-Forman

A new wave of Qlocker ransomware attacks targets QNAP NAS devices

FBI confirmed that JBS was hit by the REvil ransomware gang

Security Affairs newsletter Round 303

Ongoing Raspberry Robin campaign leverages compromised QNAP devices

Raspberry Robin malware used in attacks against Telecom and Governments

Audio equipment maker Bose Corporation discloses a ransomware attack

Raspberry Robin operators are selling initial access to compromised enterprise networks to ransomware gangs

CISA, FBI shared a joint advisory to warn of Zeppelin ransomware attacks

Microsoft experts linked the Raspberry Robin malware to Evil Corp operation

City of Dallas shut down IT services after ransomware attack

Raspberry Robin spreads via removable USB devices

Ransomware paralyzed production for at least a week at ASCO factories

IoT Cybersecurity: 5 Major Vulnerabilities and How to Tackle Them

Raspberry Robin malware used in attacks against Telecom and Governments

FBI published a flash alert on Mamba Ransomware attacks

China-linked threat actors have breached telcos and network service providers

CISA warns of critical flaws in Prima FlexAir access control system

US CISA and FBI publish joint alert on DarkSide ransomware

Group-IB detects a series of ransomware attacks by OldGremlin

A new NAS Ransomware targets QNAP Devices

The Hacker Mind Podcast: Hacking Industrial Control Systems

Cyber Security Awareness and Risk Management

A Cybersecurity Conversation with Vince Moore – Senior Network Engineer at OPSWAT

Stay Connected