Hacking and Manufacturing - Cyber Security Informer

More on NSO Group and Cytrox: Two Cyberweapons Arms Manufacturers

Schneier on Security

DECEMBER 20, 2021

One was hacked by NSO Group’s Pegasus spyware. The other was hacked both by Pegasus and by the spyware from another cyberweapons arms manufacturer: Cytrox. Citizen Lab published another report on the spyware used against two Egyptian nationals. We haven’t heard a lot about Cytrox and its Predator spyware.

Manufacturing

Manufacturing Spyware Hacking Internet

Paragon: Yet Another Cyberweapons Arms Manufacturer

Schneier on Security

AUGUST 3, 2021

One of the sources said they understood that Paragon’s spyware exploits the protocols of end-to-end encrypted apps, meaning it would hack into messages via vulnerabilities in the core ways in which the software operates. Read that last sentence again: Paragon uses unpatched zero-day exploits in the software to hack messaging apps.

Manufacturing

Manufacturing Spyware Surveillance Encryption

Hacking Automobile Keyless Entry Systems

Schneier on Security

OCTOBER 17, 2022

The criminals targeted keyless vehicles from two French car manufacturers. The article doesn’t say how the hacking tool got installed into cars. As a result of a coordinated action carried out on 10 October in the three countries involved, 31 suspects were arrested.

Hacking

Hacking Manufacturing Marketing Software

Rhysida Ransomware gang claims the hack of the Government of Peru

Security Affairs

MAY 3, 2025

The Rhysida Ransomware gang claims the hack of the Government of Peru, the gang breached Gob.pe, the Single Digital Platform of the Peruvian State. The Rhysida ransomware gang claims responsibility for hacking the Government of Peru, breaching Gob.pe, which is the country’s official digital platform.

Government

Government Ransomware Hacking Manufacturing

Hacking the “Bike Angels” System for Moving Bikeshares

Schneier on Security

SEPTEMBER 23, 2024

I always like a good hack. The algorithm, mistaking this manufactured setup for a true emergency, offered the maximum incentive: $4.80 Now it’s Lyft’s turn to modify its system to prevent this hack. And this story delivers. The clock struck 10:15. for every bike returned to the Ed Sullivan Theater.

Hacking

Hacking Manufacturing Scams

Mazda Connect flaws allow to hack some Mazda vehicles

Security Affairs

NOVEMBER 9, 2024

” The research targeted a CMU unit manufactured by Visteon, with software initially developed by Johnson Controls Inc. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Mazda Connect) x) may also be vulnerable. . ” concludes the report.

Hacking

Hacking Firmware Software Manufacturing

Experts found rogue devices, including hidden cellular radios, in Chinese-made power inverters used worldwide

Security Affairs

MAY 18, 2025

The DOE said it assesses risks but faces challenges due to manufacturers’ poor disclosure. The DOE said it assesses risks, but faces challenges due to manufacturers’ poor disclosure. supply chains and integrate trusted equipment into the power grid as domestic manufacturing grows.

Energy and Utilities

Energy and Utilities Manufacturing Government Hacking

What Graykey Can and Can’t Unlock

Schneier on Security

NOVEMBER 26, 2024

More information : Meanwhile, Graykey’s performance with Android phones varies, largely due to the diversity of devices and manufacturers. The documents do not appear to contain information about what Graykey can access from the public release of iOS 18.1, which was released on October 28.

Media

Media Manufacturing Mobile Hacking

New York Times Journalist Hacked with NSO Spyware

Schneier on Security

OCTOBER 25, 2021

Citizen Lab is that a New York Times journalist was hacked with the NSO Group’s spyware Pegasus, probably by the Saudis. The world needs to do something about these cyberweapons arms manufacturers. This kind of thing isn’t enough; NSO Group is an Israeli company.

Spyware

Spyware Hacking Manufacturing

Hacked IoT Devices Livestreaming Swatting Attacks: FBI

Adam Levin

DECEMBER 30, 2020

While the FBI is currently working with smart home device manufacturers to increase security settings, consumers with camera and voice activated home internet devices are urged to update their passwords, enable multi-factor authentication, and practice good cyber hygiene.

IoT

IoT Hacking Internet Internet

Hacked Cellebrite and MSAB Software Released

Schneier on Security

JANUARY 16, 2023

Cellebrite is an cyberweapons arms manufacturer that sells smartphone forensic software to governments around the world. MSAB is a Swedish company that does the same thing. Someone has released software and documentation from both companies.

Software

Software Hacking Manufacturing Government

Hacking Food Labeling Laws

Schneier on Security

AUGUST 25, 2023

This article talks about new Mexican laws about food labeling, and the lengths to which food manufacturers are going to ensure that they are not effective. There are the typical high-pressure lobbying tactics and lawsuits.

Hacking

Hacking Manufacturing Marketing

Cloak ransomware group hacked the Virginia Attorney General’s Office

Security Affairs

MARCH 24, 2025

The group has extended its operations to countries in Asia and targets various sectors, including healthcare, real estate, construction, IT, food, and manufacturing.” Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking, ransomware)

Ransomware

Ransomware Hacking Social Engineering VPN

Mollitiam Industries is the Newest Cyberweapons Arms Manufacturer

Schneier on Security

JUNE 23, 2021

Wired is reporting on a company called Mollitiam Industries: Marketing materials left exposed online by a third-party claim Mollitiam’s interception products, dubbed “Invisible Man” and “Night Crawler,” are capable of remotely accessing a target’s files, location, and covertly turning on a device’s camera and (..)

Manufacturing

Manufacturing Spyware Surveillance Marketing

Threat actor claims to have hacked European manufacturer of missiles MBDA

Security Affairs

JULY 31, 2022

Threat actors that go online with the moniker Adrastea claim to have hacked the multinational manufacturer of missiles MBDA. A threat actor that goes online with the moniker Adrastea , and that defines itself as a group of independent cybersecurity specialists and researchers, claims to have hacked MBDA. “Hello! .

Manufacturing

Manufacturing Hacking Passwords Cybersecurity

Alphv group claims the hack of Clarion, a global manufacturer of audio and video equipment for cars

Security Affairs

SEPTEMBER 24, 2023

The Alphv ransomware group claims to have hacked Clarion, the global manufacturer of audio and video equipment for cars and other vehicles. The Alphv ransomware group added Clarion, the global manufacturer of audio and video equipment for cars and other vehicles, to the list of victims on its Tor leak site.

Manufacturing

Manufacturing Hacking Data breaches Ransomware

Hacking Hardware Security Modules

Schneier on Security

JUNE 20, 2019

Security researchers Gabriel Campana and Jean-Baptiste Bédrune are giving a hardware security module (HSM) talk at BlackHat in August: This highly technical presentation targets an HSM manufactured by a vendor whose solutions are usually found in major banks and large cloud service providers.

Firmware

Firmware Hacking Manufacturing Banking

FBI’s Vetted Info Sharing Network ‘InfraGard’ Hacked

Krebs on Security

DECEMBER 13, 2022

“InfraGard connects critical infrastructure owners, operators, and stakeholders with the FBI to provide education, networking, and information-sharing on security threats and risks,” the FBI’s InfraGard fact sheet reads.

Hacking

Hacking Energy and Utilities Cybercrime Accountability

Zero-Click iPhone Exploits

Schneier on Security

SEPTEMBER 1, 2021

Citizen Lab is reporting on two zero-click iMessage exploits, in spyware sold by the cyberweapons arms manufacturer NSO Group to the Bahraini government. The victim receives a text message, and then they are hacked. More on this here.

Spyware

Spyware Manufacturing Government Hacking

PTZOptics cameras zero-days actively exploited in the wild

Security Affairs

NOVEMBER 2, 2024

GreyNoise worked with VulnCheck to disclose the two vulnerabilities responsibly. “The vulnerabilities impact NDI-enabled pan-tilt-zoom (PTZ) cameras from multiple manufacturers. VulnCheck alerted affected manufacturers to the flaws, only receiving a response from PTZOptics. ” reads the analysis published by GreyNoise.

Firmware

Firmware Manufacturing IoT Healthcare

Security Blueprints of Many Companies Leaked in Hack of Swedish Firm Gunnebo

Krebs on Security

OCTOBER 28, 2020

Linus Larsson , the journalist who broke the story, says the hacked material was uploaded to a public server during the second half of September, and it is not known how many people may have gained access to it. The REvil actor claimed that on average roughly one in three of its victims agrees to pay an extortion fee.

Hacking

Hacking Ransomware Banking Accountability

Chinese Android phones shipped with malware-laced WhatsApp, Telegram apps

Security Affairs

APRIL 16, 2025

Doctor Web warns that the attackers gained access to the supply chain of a number of Chinese manufacturers of Android-based smartphones. A third of the models listed below are manufactured under the SHOWJI brand.“ The kits analyzed by the company are commercialized by many manufacturers including Huawei, Lenovo and Xiaomi.

Malware

Malware Manufacturing Mobile Spyware

Undocumented hidden feature found in Espressif ESP32 microchip

Security Affairs

MARCH 9, 2025

Experts discovered an undocumented hidden feature in the ESP32 microchip manufactured by Espressif, which is used in over 1 billion devices. At the RootedCON , researchers at Tarlogic Innovation presented their findings on undocumented commands in the ESP32 microchip designed by the Chinese manufacturer Espressif.

Manufacturing

Manufacturing IoT Firmware Mobile

TIDRONE APT targets drone manufacturers in Taiwan

Security Affairs

SEPTEMBER 9, 2024

Trend Micro spotted an allegedly China-linked threat actor, tracked TIDRONE, targeting drone manufacturers in Taiwan. The attacks were detected in Taiwan and mostly targeted military-related industries, specifically the manufacturer of drones. “we investigated TIDRONE , a threat actor linked to Chinese-speaking groups.

Manufacturing

Manufacturing Malware Antivirus Software

QNAP fixed second zero-day demonstrated at Pwn2Own Ireland 2024

Security Affairs

OCTOBER 31, 2024

Taiwanese manufacturer QNAP patched the second zero-day vulnerability, tracked as CVE-2024-50387 , which was exploited by security researchers during the recent Pwn2Own Ireland 2024. reads the advisory published by the Taiwanese manufacturer. The vulnerability is a SQL injection (SQLi) issue that impacts the QNAP’s SMB Service.

Backups

Backups Manufacturing Hacking Information Security

What’s most interesting about the Florida water system hack? That we heard about it at all.

Krebs on Security

FEBRUARY 10, 2021

“Some utilities are afraid that if their vulnerabilities are shared the hackers will have some inside knowledge on how to hack them,” Arceneaux said. “He was defending this person who’d hacked into a drinking water system and had gotten all the way to the pumps and control systems,” Weiss recalled.

Hacking

Hacking Media Cybersecurity Ransomware

Cars are packed with technology, but they can still be hacked

Tech Republic Security

JUNE 23, 2021

The threat to people's lives is terrifying, so auto manufacturers need to change their old-school strategies to protect people.

Technology

Technology Manufacturing Hacking

China admitted its role in Volt Typhoon cyberattacks on U.S. infrastructure

Security Affairs

APRIL 13, 2025

. “During the half-day meeting in Geneva, Wang Lei, a top cyber official with Chinas Ministry of Foreign Affairs, indicated that the infrastructure hacks resulted from the U.S.s “Wang or the other Chinese officials didnt directly state that China was responsible for the hacking, the U.S. ” states the WSJ.

Hacking

Hacking Manufacturing Education Government

Synology fixed critical flaw impacting millions of DiskStation and BeePhotos NAS devices

Security Affairs

NOVEMBER 6, 2024

Security researcher Rick de Jager demonstrated the vulner ability, called RISK:STATION by cybersecurity firm Midnight Blue, at the Pwn2Own Ireland 2024 hacking contest. 0795 or above) Taiwanese manufacturer QNAP also patched three zero-day vulnerabilities that were exploited by security researchers during the recent Pwn2Own Ireland 2024.

Firmware

Firmware Manufacturing Hacking Media

QNAP fixed NAS backup zero-day demonstrated at Pwn2Own Ireland 2024

Security Affairs

OCTOBER 30, 2024

QNAP addressed a critical zero-day vulnerability, tracked as CVE-2024-50388, which was exploited by white hat hackers against a TS-464 NAS device during the recent Pwn2Own Ireland 2024 hacking competition. ” reads the advisory published by the Taiwanese manufacturer. The vulnerability impacts version 25.1.x

Backups

Backups Manufacturing Hacking

BlackByte ransomware group hit Asahi Group Holdings, a precision metal manufacturing and metal solution provider

Security Affairs

OCTOBER 30, 2022

The BlackByte ransomware group claims to have compromised Asahi Group Holdings, a precision metal manufacturing and metal solution provider. SecurityAffairs – hacking, Asahi Group Holdings ). Asahi Group Holdings, Ltd. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Manufacturing

Manufacturing Ransomware Hacking Data breaches

WhatsApp Vulnerability Fixed

Schneier on Security

MAY 15, 2019

WhatsApp fixed a devastating vulnerability that allowed someone to remotely hack a phone by initiating a WhatsApp voice call. The Israeli cyber-arms manufacturer NSO Group is believed to be behind the exploit, but of course there is no definitive proof. The recipient didn't even have to answer the call.

Manufacturing

Manufacturing Hacking

XE Group shifts from credit card skimming to exploiting zero-days

Security Affairs

FEBRUARY 10, 2025

. “XE Group transitioned from credit card skimming to targeted information theft, marking a significant shift in their operational priorities.Their attacks now target supply chains in the manufacturing and distribution sectors, leveraging new vulnerabilities and advanced tactics.” ” reads the analysis published by Intezer.

Manufacturing

Manufacturing Cybercrime Passwords Authentication

Texas oilfield supplier Newpark Resources suffered a ransomware attack

Security Affairs

NOVEMBER 8, 2024

” Newpark Resources pointed out that its manufacturing and field operations remain largely unaffected, continuing with established downtime procedures despite the ransomware attack. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, ransomware)

Ransomware

Ransomware Manufacturing Malware Hacking

Is India's Aadhaar System Really "Hack-Proof"? Assessing a Publicly Observable Security Posture

Troy Hunt

JANUARY 10, 2018

Which brings us back to Aadhaar and some rather unpleasant headlines of late, particularly the likes of The World's Largest Biometric ID System Keeps Getting Hacked. They claim that they're hack-proof. But claiming the service is "hack-proof", that's something I definitely have an issue with. Can you prove otherwise?

Hacking

Hacking Government Encryption Risk

Understanding the U.S. Cyber Trust Mark: A New Era for IoT Security

SecureWorld News

JANUARY 8, 2025

In a statement announcing the program , the White House emphasized the growing need for such a measure: "Americans are worried about the rise of criminals remotely hacking into home security systems to unlock doors, or malicious attackers tapping into insecure home cameras to illicitly record conversations.

IoT

IoT Manufacturing Government Cybersecurity

RansomEXX gang claims to have hacked Ferrari and leaked online internal documents

Security Affairs

OCTOBER 3, 2022

The Italian luxury sports car manufacturer Ferrari confirmed the availability of internal documents online, but said it has no evidence of cyber attack. Documents belonging to the Italian luxury sports car manufacturer Ferrari are circulating online, the company confirmed their authenticity stating it is not aware of cyber attacks.

Hacking

Hacking Manufacturing Cyber Attacks Ransomware

Rhysida ransomware gang claimed China Energy hack

Security Affairs

NOVEMBER 25, 2023

The Rhysida ransomware group claimed to have hacked the Chinese state-owned energy conglomerate China Energy Engineering Corporation. The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors.

Ransomware

Ransomware Hacking Engineering Manufacturing

Sarcoma ransomware gang claims the theft of sensitive data from PCB maker Unimicron

Security Affairs

FEBRUARY 12, 2025

The Sarcoma ransomware group announced a breach of the Taiwanese printed circuit board (PCB) manufacturing giant Unimicron. The Sarcoma ransomware group claims to have breached Taiwanese PCB manufacturer Unimicron, leaked sample files, and threatened a full data release if no ransom is paid by Tuesday, February 20, 2025.

Computers and Electronics

Computers and Electronics Ransomware Manufacturing Data breaches

ALPHV/BlackCat ransomware gang hacked the hotel chain Motel One

Security Affairs

SEPTEMBER 30, 2023

Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Motel One ) The post ALPHV/BlackCat ransomware gang hacked the hotel chain Motel One appeared first on Security Affairs. the fashion giant Moncler , the Swissport , NCR , and Western Digital.

Hacking

Hacking Ransomware Manufacturing Media

Rhysida ransomware group hacked Abdali Hospital in Jordan

Security Affairs

DECEMBER 26, 2023

The Rhysida ransomware group claimed to have hacked Abdali Hospital, a multi-specialty hospital located in Jordan. pic.twitter.com/6uHMDcNhTC — Dominic Alvieri (@AlvieriD) December 26, 2023 The group published images of stolen documents as proof of the hack. Abdali Hospital provides care to patients in numerous specialties.

Ransomware

Ransomware Hacking Manufacturing Healthcare

Vladimir Putin’s Thank You Letter To Pro-Ukraine Hackers

Joseph Steinberg

MARCH 8, 2022

Thank you for not listening to your own cybersecurity experts when they told you to “ Stop hacking Russian websites – you are helping the Russians, not the Ukrainians.” You have probably done more than anyone other than myself to help Russia prepare for cyberwar. Thank you again, V Putin.

Hacking

Hacking Artificial Intelligence Penetration Testing Government

Black Basta ransomware gang hacked Hyundai Motor Europe

Security Affairs

FEBRUARY 9, 2024

Black Basta ransomware gang claims the hack of the car maker Hyundai Motor Europe and the theft of three terabytes of their data. In December 2019, German media reported that hackers suspected to be members of the Vietnam-linked APT Ocean Lotus ( APT32 ) group breached the networks of the car manufacturers BMW and Hyundai.

Hacking

Hacking Ransomware Data breaches Manufacturing

Attack Against PC Thunderbolt Port

Schneier on Security

MAY 12, 2020

The attack requires physical access to the computer, but it's pretty devastating : On Thunderbolt-enabled Windows or Linux PCs manufactured before 2019, his technique can bypass the login screen of a sleeping or locked computer -- and even its hard disk encryption -- to gain full access to the computer's data. Intel responds.

Firmware

Firmware Manufacturing Encryption Hacking

More on NSO Group and Cytrox: Two Cyberweapons Arms Manufacturers

Paragon: Yet Another Cyberweapons Arms Manufacturer

Trending Sources

Hacking Automobile Keyless Entry Systems

Rhysida Ransomware gang claims the hack of the Government of Peru

Hacking the “Bike Angels” System for Moving Bikeshares

Mazda Connect flaws allow to hack some Mazda vehicles

Experts found rogue devices, including hidden cellular radios, in Chinese-made power inverters used worldwide

What Graykey Can and Can’t Unlock

New York Times Journalist Hacked with NSO Spyware

Hacked IoT Devices Livestreaming Swatting Attacks: FBI

Hacked Cellebrite and MSAB Software Released

Hacking Food Labeling Laws

Cloak ransomware group hacked the Virginia Attorney General’s Office

Mollitiam Industries is the Newest Cyberweapons Arms Manufacturer

Threat actor claims to have hacked European manufacturer of missiles MBDA

Alphv group claims the hack of Clarion, a global manufacturer of audio and video equipment for cars

Hacking Hardware Security Modules

FBI’s Vetted Info Sharing Network ‘InfraGard’ Hacked

Zero-Click iPhone Exploits

PTZOptics cameras zero-days actively exploited in the wild

Security Blueprints of Many Companies Leaked in Hack of Swedish Firm Gunnebo

Chinese Android phones shipped with malware-laced WhatsApp, Telegram apps

Undocumented hidden feature found in Espressif ESP32 microchip

TIDRONE APT targets drone manufacturers in Taiwan

QNAP fixed second zero-day demonstrated at Pwn2Own Ireland 2024

What’s most interesting about the Florida water system hack? That we heard about it at all.

Cars are packed with technology, but they can still be hacked

China admitted its role in Volt Typhoon cyberattacks on U.S. infrastructure

Synology fixed critical flaw impacting millions of DiskStation and BeePhotos NAS devices

QNAP fixed NAS backup zero-day demonstrated at Pwn2Own Ireland 2024

BlackByte ransomware group hit Asahi Group Holdings, a precision metal manufacturing and metal solution provider

WhatsApp Vulnerability Fixed

XE Group shifts from credit card skimming to exploiting zero-days

Texas oilfield supplier Newpark Resources suffered a ransomware attack

Is India's Aadhaar System Really "Hack-Proof"? Assessing a Publicly Observable Security Posture

Understanding the U.S. Cyber Trust Mark: A New Era for IoT Security

RansomEXX gang claims to have hacked Ferrari and leaked online internal documents

Rhysida ransomware gang claimed China Energy hack

Sarcoma ransomware gang claims the theft of sensitive data from PCB maker Unimicron

ALPHV/BlackCat ransomware gang hacked the hotel chain Motel One

Rhysida ransomware group hacked Abdali Hospital in Jordan

Vladimir Putin’s Thank You Letter To Pro-Ukraine Hackers

Black Basta ransomware gang hacked Hyundai Motor Europe

Attack Against PC Thunderbolt Port

Stay Connected