Security Affairs

MAY 15, 2025

is a vertically integrated electric utility serving the province of Nova Scotia, Canada. Its operations encompass generation, transmission, and distribution of electricity, utilizing a diverse mix of energy sources including coal, natural gas, hydroelectric, wind, tidal, oil, and biomass. or Caribbean utilities.

Data breaches 73

Data breaches Energy and Utilities Accountability Insurance 73

Security Affairs

MAY 17, 2023

Searchlight Cyber researchers warn of threat actors that are offering on the dark web access to energy sector organizations. Dark web intelligence firm Searchlight Cyber published a report that analyzes how threat actors in the dark web prepare their malicious operations against energy organizations.

Energy and Utilities 98

Energy and Utilities Cybercrime Data collection Hacking 98

Security Affairs

SEPTEMBER 24, 2019

Security experts at Proofpoint observed a new wave of phishing attacks aimed at US Utilities in an attempt to deliver the LookBack RAT. Security experts at Proofpoint have discovered a new series of phishing attacks targeting entities US utilities in an attempt to deliver the LookBack RAT. nceess [. ] Nceess [. ]

Phishing 100

Phishing Energy and Utilities Advertising Engineering 100

Security Affairs

AUGUST 16, 2023

A phishing campaign employing QR codes targeted a leading energy company in the US, cybersecurity firm Cofense reported. “Beginning in May 2023, Cofense has observed a large phishing campaign utilizing QR codes targeting the Microsoft credentials of users from a wide array of industries.” ” continues the report.

Phishing 98

Phishing Energy and Utilities Insurance Manufacturing 98

Joseph Steinberg

MAY 12, 2021

And, just before the COVID-19 pandemic hit the United States, the Department of Homeland Security alerted information security professionals that a ransomware attack delivered via phishing emails had adversely impacted operations at one of the country’s natural gas processors. Nor were those isolated incidents.

Energy and Utilities 219

Energy and Utilities Ransomware Artificial Intelligence Cyber Attacks 219

Security Affairs

SEPTEMBER 26, 2024

It is widely used for automating machines and processes in industries like manufacturing, energy, and utilities. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, RCE)

Energy and Utilities 142

Energy and Utilities Manufacturing Hacking Information Security 142

Security Affairs

MARCH 5, 2025

Microsoft warns that China-backed APT Silk Typhoon linked to US Treasury hack, is now targeting global IT supply chains, using IT firms to spy and move laterally. “Silk Typhoon was observed utilizing a covert network that is comprised of compromised Cyberoam appliances, Zyxel routers, and QNAP devices.”

Energy and Utilities 65

Energy and Utilities Passwords VPN Healthcare 65

Security Affairs

MARCH 25, 2022

has indicted four Russian government employees for their role in cyberattacks targeting hundreds of companies and organizations in the energy sector worldwide between 2012 and 2018. “In total, these hacking campaigns targeted thousands of computers, at hundreds of companies and organizations, in approximately 135 countries.”

Government 119

Government Energy and Utilities Malware Hacking 119

Security Affairs

FEBRUARY 19, 2024

Since January 2020, affiliates utilizing LockBit have targeted organizations of diverse sizes spanning critical infrastructure sectors such as financial services, food and agriculture, education, energy, government and emergency services, healthcare, manufacturing, and transportation. on January 5, 2020. on January 5, 2020.

Energy and Utilities 138

Energy and Utilities Ransomware Financial Services Manufacturing 138

Security Affairs

DECEMBER 26, 2023

2️ Cyber Attacks Against Energy (Oil & Gas) and Nuclear Sectors Critical infrastructure across all domains continues to remain a focal point for cyber-attacks, orchestrated by both cybercriminal elements and nation-state actors.

Cyber threats 140

Cyber threats Energy and Utilities Artificial Intelligence Cyber Attacks 140

Security Affairs

JANUARY 27, 2022

In March 2021, Puerto Rico Electric Power Authority (PREPA) power utility confirmed early this week that it has been hacked over the weekend. In October 2020, Puerto Rico’s firefighting department disclosed a security breach , hackers breached its database and demanded a $600,000 ransom. SecurityAffairs – hacking, cyberattack).

Energy and Utilities 114

Energy and Utilities DDOS Internet Internet 114

Security Affairs

AUGUST 31, 2022

The Italian energy sector appears to be under attack, over the weekend, Italy’s energy agency Gestore dei Servizi Energetici SpA was hit by a cyber attack. SecurityAffairs – hacking, ENI). The post Threat actors breached the network of the Italian oil company ENI appeared first on Security Affairs. Pierluigi Paganini.

Energy and Utilities 110

Energy and Utilities Ransomware Cyber Attacks Hacking 110

Security Affairs

APRIL 11, 2021

The “accident” impacted the electricity distribution network at Iran’s Natanz nuclear facility, Atomic Energy Organization of Iran spokesman Behrouz Kamalvandi told the Iranian Fars News Agency. . If you want to receive the weekly Security Affairs Newsletter for free subscribe here. SecurityAffairs – hacking, Iran).

Cyber Attacks 137

Cyber Attacks Energy and Utilities Media Hacking 137

Security Affairs

DECEMBER 17, 2021

Recently the Conti gang hit the attack on the Australian energy CS Energy and threaten to leak the stolen files. “The current exploitation led to multiple use cases through which the Conti group tested the possibilities of utilizing the Log4J2 exploit. SecurityAffairs – hacking, Log4Shell). Pierluigi Paganini.

Ransomware 140

Ransomware Energy and Utilities Cybercrime Malware 140

Security Affairs

FEBRUARY 8, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. The Volt Typhoon group has been active since at least mid-2021 it carried out cyber operations against critical infrastructure.

Energy and Utilities 138

Energy and Utilities VPN Manufacturing Firewall 138

Security Affairs

DECEMBER 16, 2021

of all systems targeted by the PseudoManuscrypt malware are part of industrial control systems (ICS) used by organizations in multiple industries, including Engineering, Building Automation, Energy, Manufacturing, Construction, Utilities, and Water Management. SecurityAffairs – hacking, PseudoManuscrypt). Pierluigi Paganini.

Spyware 141

Spyware Energy and Utilities Malware Engineering 141

Security Affairs

OCTOBER 9, 2022

Everest ransomware operators claimed to have hacked South Africa state-owned company ESKOM Hld SOC Ltd. Eskom is one of the few remaining vertically integrated utilities connected to the Southern African Power Pool (SAPP) through an interconnected grid, which serves to support grid stability. SecurityAffairs – hacking, ESKOM).

Energy and Utilities 103

Energy and Utilities Ransomware InfoSec Hacking 103

Security Affairs

JUNE 6, 2024

Through our close collaboration, we have hacked the hackers; taken control of their infrastructure, seized their source code, and obtained keys that will help victims decrypt their systems.” Pierluigi Paganini Follow me on Twitter: @securityaffairs and Facebook and Mastodon ( SecurityAffairs – hacking, ransomware)

Energy and Utilities 139

Energy and Utilities Ransomware Encryption Financial Services 139

Security Affairs

FEBRUARY 28, 2024

. “As early as 2022, APT28 actors had utilized compromised EdgeRouters to facilitate covert cyber operations against governments, militaries, and organizations around the world.” APT28 had utilized compromised Ubiquiti EdgeRouters as a command-and-control infrastructure for MASEPIE backdoors. ” reads the joint report.

Energy and Utilities 136

Energy and Utilities Government Firewall Malware 136

Security Affairs

JULY 25, 2019

South African electric utility City Power that provides energy to the city of Johannesburg, has suffered serious disruptions after a ransomware attack. The energy utility informed its customers via Twitter of the ransomware attack that encrypted its network, including all its databases and applications.

Energy and Utilities 105

Energy and Utilities Ransomware Advertising Encryption 105

Security Affairs

JULY 5, 2023

RedEnergy is a sophisticated stealer-as-a-ransomware that was employed in attacks targeting energy utilities, oil, gas, telecom, and machinery sectors. Zscaler ThreatLabz researchers discovered a new Stealer-as-a-Ransomware named RedEnergy used in attacks against energy utilities, oil, gas, telecom, and machinery sectors.

Energy and Utilities 98

Energy and Utilities Ransomware Backups Malware 98

Security Affairs

APRIL 19, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. The Volt Typhoon group has been active since at least mid-2021 it carried out cyber operations against critical infrastructure.

Energy and Utilities 135

Energy and Utilities Telecommunications Technology Government 135

Security Affairs

NOVEMBER 29, 2020

” During the last campaign, the hackers targeted multiple sectors including Government, financial, energy, food industry, healthcare, education, IT, and legal institutions. Samples from the Dark Caracal campaign (2017) utilized around 100 commands, compared to the current 120 command version we analyzed.

Energy and Utilities 140

Energy and Utilities Malware Government Healthcare 140

Security Affairs

FEBRUARY 21, 2024

Since January 2020, affiliates utilizing LockBit have targeted organizations of diverse sizes spanning critical infrastructure sectors such as financial services, food and agriculture, education, energy, government and emergency services, healthcare, manufacturing, and transportation.

Energy and Utilities 136

Energy and Utilities Ransomware Manufacturing Financial Services 136

Security Affairs

FEBRUARY 20, 2024

Through our close collaboration, we have hacked the hackers; taken control of their infrastructure, seized their source code, and obtained keys that will help victims decrypt their systems.” Follow me on Twitter: @securityaffairs and Facebook Pierluigi Paganini ( SecurityAffairs – hacking, ransomware) on January 5, 2020.

Energy and Utilities 136

Energy and Utilities Ransomware Manufacturing Financial Services 136

Security Affairs

APRIL 2, 2023

The documents demonstrate that it also developed hacking tools for the Russia-linked APT group Sandworm. The company was commissioned for the development of tools, training programs, and a hacking platform. Files leaked by Russian IT contractor NTC Vulkan show that Russia-linked Sandworm APT requested it to develop offensive tools.

Energy and Utilities 98

Energy and Utilities Media Hacking Technology 98

Security Affairs

MAY 18, 2025

The discovery raises fears China may have installed covert malware in critical energy infrastructure across the US and Europe, enabling remote attacks during conflicts. experts who strip down equipment hooked up to grids to check for security issues, the two people said.” ” reported Reuters.

65

65

Security Affairs

APRIL 19, 2023

Mint Sandstorm also used custom tools in selected targets, notably organizations in the energy and transportation sectors. The group rapidly weaponized N-day vulnerabilities in popular enterprise applications by using publicly disclosed POCs.

Energy and Utilities 98

Energy and Utilities Accountability Education Media 98

Security Affairs

MAY 25, 2020

One of the victims of the ransomware is the energy giant Energias de Portugal (EDP) , where the attackers claimed to have stolen 10 TB of files. SecurityAffairs – Ragnar Locker ransomware, hacking). The post Ragnar Ransomware encrypts files from virtual machines to evade detection appeared first on Security Affairs.

Encryption 139

Encryption Ransomware Energy and Utilities Advertising 139

Security Affairs

JANUARY 7, 2022

@Norton @TheHackersNews @WIRED @CondeNast @hacks4pancakes @SwiftOnSecurity Norton is installing a Cryptocurrency miner called Norton Crypto (NCrypt.exe) on end user systems with out so much as a dialogue during the install of its security product. The choice to add a crypto miner to a security suite is considered by many users absurd.

Energy and Utilities 98

Energy and Utilities Cryptocurrency Antivirus Hacking 98

Security Affairs

JUNE 30, 2019

The APT33 group has been around since at least 2013, since mid-2016, the group targeted the aviation industry and energy companies with connections to petrochemical production. SecurityAffairs – APT33, hacking). The post Iran-linked APT33 updates infrastructure following its public disclosure appeared first on Security Affairs.

Energy and Utilities 102

Energy and Utilities Advertising Retail Healthcare 102

Security Affairs

NOVEMBER 9, 2019

The US DHS Cybersecurity & Infrastructure Security Agency (CISA) issued a security advisory to warn of three recently patched flaws in Medtronic Valleylab products that could be exploited to install a non-root shell. and below, Valleylab FT10 Energy Platform (VLFT10GEN) software version 4.0.0 and lower and version 2.0.3

Energy and Utilities 72

Energy and Utilities Advertising Software Hacking 72

Security Affairs

AUGUST 27, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. The APT group is using almost exclusively living-off-the-land techniques and hands-on-keyboard activity to evade detection.

Energy and Utilities 133

Energy and Utilities Firewall Technology Malware 133

IT Security Guru

JUNE 16, 2021

In addition to hacking efforts, businesses reported increased pressure from phishing (44%), fake contact tracing apps and calls (43%) and ransomware (43%), with the greatest increase in incidents in the energy, oil, gas and utilities sector (80%).

CISO 104

CISO Energy and Utilities Phishing Ransomware 104

Security Affairs

AUGUST 31, 2022

“The joint efforts of Proofpoint and PwC researchers provide a moderate confidence assessment that recent campaigns targeting the federal government, energy, and manufacturing sectors globally may represent recent efforts by TA423 / Red Ladon.” SecurityAffairs – hacking, ScanBox). In June 2021, the U.S. Pierluigi Paganini.

Energy and Utilities 98

Energy and Utilities Manufacturing Government Media 98

Security Affairs

OCTOBER 30, 2021

“Trickbot attacked businesses and victims across the globe and infected millions of computers for theft and ransom, including networks of schools, banks, municipal governments, and companies in the health care, energy, and agriculture sectors,” said Deputy Attorney General Lisa O. SecurityAffairs – hacking, cybercrime).

Identity Theft 112

Identity Theft Energy and Utilities Malware Banking 112

Security Affairs

SEPTEMBER 15, 2020

Department of Justice indictment, MSS-affiliated actors have targeted various industries across the United States and other countries—including high-tech manufacturing; medical device, civil, and industrial engineering; business, educational, and gaming software; solar energy; pharmaceuticals; and defense—in a campaign that lasted over ten years.[

Government 107

Government VPN Firmware Energy and Utilities 107