SecureList

OCTOBER 18, 2024

The group under review has a toolkit that includes utilities such as Mimikatz, XenAllPasswordPro, PingCastle, Localtonet, resocks, AnyDesk, PsExec, and others. The attackers used a contractor’s login information to connect to the victim’s internal systems via a VPN. zip hxxp://localtonet.com/download/localtonet-win-64.zip

Energy and Utilities 126

Energy and Utilities VPN Encryption Ransomware 126

Security Affairs

SEPTEMBER 9, 2020

K-Electric (KE) (formerly known as Karachi Electric Supply Company / Karachi Electric Supply Corporation Limited) is a Pakistani investor-owned utility managing all three key stages – generation, transmission and distribution – of producing and delivering energy to consumers. Consider installing and using a VPN.

Ransomware 145

Ransomware Energy and Utilities VPN Advertising 145

SecureList

MAY 25, 2021

Several versions were released as part of each “rebranded” variant that altered different aspects of the code, renamed file extensions, cryptographic schemes and encryption keys. The files are encrypted using a custom modification of a Blowfish cipher with a 256-bit key. The encrypted data is written over the original.

Ransomware 135

Ransomware Encryption Malware Energy and Utilities 135

Security Affairs

AUGUST 27, 2024

It intercepts credentials by hooking into Versa’s “setUserPassword” method, encrypting and storing them on disk. In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors.

Energy and Utilities 132

Energy and Utilities Firewall Technology Malware 132

Herjavec Group

SEPTEMBER 24, 2021

on “VPN and other time-consuming types of initial access”? [1] Solar BR Coca-Cola A partnership venture between The Coca-Cola Company and two other large domestic manufacturers and distributors of beer, soft drinks, juices, energy drinks and dairy products. has publicly?claimed?that that they do not spend much time?on suggesting?this

Ransomware 109

Ransomware Manufacturing Encryption Energy and Utilities 109

Cisco Security

AUGUST 26, 2021

With the addition of Kenna Security into our program we now have over 250 technology partners and over 400 integrations for our mutual customers to utilize. CyberArk reduces VPN risk with MFA enforcement on any VPN client that supports RADIUS; including Cisco Secure Firewall. A new panel with VPN metrics has been added.

Technology 143

Technology Firewall VPN Authentication 143

SecureList

NOVEMBER 23, 2021

Energy, transport and utilities — in an attempt to gain a foothold in the critical infrastructure of a “potential adversary” just in case, and to use it to develop other attacks (see examples above). Update firewalls and SSL VPN gateways in good time. Threats to OT. P stands for perseverance.

Spyware 138

Spyware Phishing Cybercrime Energy and Utilities 138