2012, Cyber Attacks and Encryption - Cyber Security Informer

A cyber attack hit Thyssenkrupp Automotive Body Solutions business unit

Security Affairs

FEBRUARY 26, 2024

The company did not disclose details of the attack, however the decision to shut down the IT systems suggests it was the victim of a ransomware attack. This isn’t the first time that the company was the victim of a cyber attack. In 2016, alleged Asian threat actors targeted ThyssenKrupp to steal company secrets.

Cyber Attacks

Cyber Attacks Ransomware Engineering Banking

New Cyber Attack Campaign Leverages the COVID-19 Infodemic

Security Affairs

FEBRUARY 26, 2020

The file downloaded from this censorship free file hosting is actually a chunk of 125KB random looking bytes, suggesting it would likely be some binary payload protected with strong encryption. Figure 4: Piece of the encrypted file downloaded from “share.]dmca.]gripe”. New Cyber Attack Campaign Leverages the COVID-19 Infodemic.

Cyber Attacks

Cyber Attacks Malware Social Engineering Advertising

North Korea-linked APT group ScarCruft spotted using new Android spyware KoSpy

Security Affairs

MARCH 13, 2025

ScarCruft has been active since at least 2012, it made the headlines in early February 2018 when researchers revealed that the APT group leveraged a zero-day vulnerability in Adobe Flash Player to deliver malware to South Korean users. This setup allows attackers to enable, disable, or change servers for stealth and resilience.

Spyware

Spyware Surveillance Encryption Malware

Webinars

How to Avoid Pitfalls In Automation: Keep Humans In the Loop

MORE WEBINARS

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

The Last Watchdog

JUNE 21, 2020

Although most people think of ransomware as a dodgy application that encrypts data and holds it for ransom, the concept is much more heterogeneous than that. FBI spoofs 2012 – 2013. This quirk made the attack look more trustworthy and added a layer of flexibility to these scams. File encryption 2013 – 2015.

Ransomware

Ransomware Hacking Encryption Penetration Testing

Ransomware attack on Saudi Aramco leaks critical data

CyberSecurity Insiders

JULY 21, 2021

According to a press release from Associated Press, the Saudi Arabia-based petroleum producer was hit by a cyber attack in 2012 where the servers of the company were targeted by a malware named ‘Shamoon’ via a ‘spear phishing’ attack deceptively launched by Iran.

Ransomware

Ransomware Encryption Cryptocurrency Cyber Attacks

Platinum APT and leverages steganography to hide C2 communications

Security Affairs

JUNE 6, 2019

The Platinum cyber espionage group uses steganographic technique to hide communications with the Command and Control Servers (C&C). Experts from Kaspersky have linked the Platinum APT group with cyber attacks involving an elaborate, and new steganographic technique used to hide communications with C2 servers.

Encryption

Encryption Advertising Government Cyber Attacks

German industrial giant ThyssenKrupp targeted in a new cyberattack

Security Affairs

DECEMBER 21, 2022

. “At the present time, no damage has been done, nor are there any indications that data has been stolen or modified,” This isn’t the first attack suffered by the company, in 2012, the company was targeted by another cyber attack that was classified as “heavy” and of “exceptional quality.”.

Engineering

Engineering Ransomware Data breaches Cyber Attacks

A new variant of Shamoon was uploaded to Virus Total while Saipem was under attack

Security Affairs

DECEMBER 12, 2018

A new variant of the Shamoon malware, aka DistTrack, was uploaded to VirusTotal from Italy this week, but experts haven’t linked it to a specific attack yet. Shamoon was first observed in 2012 when it infected and wiped more than 30,000 systems at Saudi Aramco and other oil companies in the Middle East.

Malware

Malware Advertising Cyber Attacks Encryption

Mandating End-to-End Verifiable Voting Systems in U.S. Elections

SecureWorld News

OCTOBER 8, 2024

These vulnerabilities include risk to tampering, fraud, and cyber attacks, which can emphasize the integrity of elections and affect public trust. Specific to the E2E-V voting systems, homomorphic encryption enables the tallying of votes without revealing individual votes.

Computers and Electronics

Computers and Electronics Encryption Technology Government

IoT device maker Sierra Wireless hit by Ransomware attack

CyberSecurity Insiders

MARCH 24, 2021

Canada-based Internet of Things (IoT) maker Sierra Wireless has been hit by ransomware attack bringing certain production operations of the company to a halt. Details about the ransomware that stuck with the company and the ransom demand have been kept under wraps as the cyber attack is still under investigation.

Wireless

Wireless IoT Ransomware Mobile

Top VC Firms in Cybersecurity of 2022

eSecurity Planet

APRIL 26, 2022

Company Sector Year Status Isovalent Cloud security 2020 Private Illumio Cloud security 2015 Private SignalFx Monitoring 2015 Acquired: Splunk CipherCloud Cloud security 2012 Acquired: Lookout Lookout Mobile security 2011 Private. Mimecast Email security 2012 Nasdaq: MIME. a16z Investments. Bessemer Venture Partners. Greylock Partners.

Cybersecurity

Cybersecurity Technology Marketing Healthcare

A PowerShell Script to Mitigate Active Directory Security Risks

eSecurity Planet

OCTOBER 12, 2023

Cyber attackers frequently use legacy technology as part of their attack strategies, targeting organizations that have yet to implement mitigations or upgrade obsolete components. In an Active Directory environment, one such component is legacy protocols, which attackers can use to gain access to Active Directory.

Risk

Risk Authentication Encryption Cybersecurity

MY TAKE: COVID-19’s silver lining could turn out to be more rapid, wide adoption of cyber hygiene

The Last Watchdog

MAY 11, 2020

Somewhat quietly since about 2012 or so, nation states in that region, led by Saudi Arabia and the United Arab Emirates, commenced a quiet surge to the forefront of implementing comprehensive cybersecurity regulations. Shamoon motivated the Saudis to seriously ramp up the work of its National Cyber Security Center.

Computers and Electronics

Computers and Electronics Data privacy Encryption Media

Security Affairs newsletter Round 355

Security Affairs

FEBRUARY 28, 2022

worth of NFTs from tens of OpenSea users Trickbot operation is now controlled by Conti ransomware. worth of NFTs from tens of OpenSea users Trickbot operation is now controlled by Conti ransomware.

Ransomware

Ransomware Malware Encryption Phishing

Cyber CEO: The History Of Cybercrime, From 1834 To Present

Herjavec Group

AUGUST 26, 2021

Attackers with Chinese IP addresses accomplish this by uploading malware to a server used to update ESTsoft’s ALZip compression application and steal the names, user IDs, hashed passwords, birthdates, genders, telephone numbers, and street and email addresses contained in a database connected to the same network. . presidential election.

Cybercrime

Cybercrime Computers and Electronics Hacking Banking

The Top Cybersecurity Breaches in the UAE

Centraleyes

FEBRUARY 26, 2025

Compare that to 2012 when the UAE ranked fifth in the Global Cybersecurity Index. The ransomware attack copied and encrypted 60 GB of internal information, including ID cards, internal memos, and hospital call logs. However, the hospital did not disclose if they paid the ransom or recovered the encrypted data.

Cybersecurity

Cybersecurity Banking Education Antivirus

WizCase Report: Vulnerabilities found in WD My Book, NetGear Stora, SeaGate Home, Medion LifeCloud NAS

Security Affairs

OCTOBER 20, 2018

All the php files were encrypted using IONCube which has a known public decoder and given the version used was an old one, decoding the files didn’t take long. ExpressVPN and NordVPN both use AES 256-bit encryption and will secure all your data. Part One: XXE. The original report is available here.

Firmware

Firmware IoT VPN Authentication

5 Critical Threat Actors You Need to Know About

Digital Shadows

OCTOBER 29, 2024

The ransomware itself doesn’t handle data exfiltration but relies on these tools to steal data before encryption. RansomHub uses the Elliptic Curve Encryption algorithm Curve 25519 to lock files with a unique public/private key pair for each compromised individual.

Ransomware

Ransomware Encryption Technology Malware

The Prevalence of DarkComet in Dynamic DNS

Security Boulevard

AUGUST 6, 2024

It’s also been used in numerous high-profile incidents, such as the 2012 attack on Miss Teen USA. Spread Laterally : Downloading additional tools can facilitate lateral movement within a network, enabling attackers to compromise more machines and escalate privileges within the targeted environment.

DNS

DNS Malware Social Engineering Engineering

CSPM vs CWPP vs CIEM vs CNAPP: What’s the Difference?

eSecurity Planet

AUGUST 4, 2023

In 2012, Cloud Access Security Brokers (CASB) began to emerge to monitor user access of cloud services. Ensures encryption , data loss prevention (DLP) , and access restrictions to protect data from unwanted access, data leakage, and exfiltration. Automates compliance assessments and offers governance frameworks.

Architecture

Architecture Risk Data breaches Threat Detection

5 Critical Threat Actors You Need to Know About

Digital Shadows

OCTOBER 29, 2024

The ransomware itself doesn’t handle data exfiltration but relies on these tools to steal data before encryption. RansomHub uses the Elliptic Curve Encryption algorithm Curve 25519 to lock files with a unique public/private key pair for each compromised individual.

Ransomware

Ransomware Encryption Technology Malware

Top Cybersecurity Startups to Watch in 2022

eSecurity Planet

JANUARY 11, 2022

Most traditional tools used for investigating cyber attacks cannot assess potential impacts on these environments. GitGuardian is a developer favorite offering a secrets detection solution that scans source code to detect certificates, passwords, API keys, encryption keys, and more. Venture Cybereason 2012 Boston, MA 1,100 $713.6

Cybersecurity

Cybersecurity Threat Detection Artificial Intelligence Risk

Growing Cyber Threats to the Energy and Industrial Sectors

NopSec

DECEMBER 7, 2016

Remember Shamoon, the malware that disabled some 35,000 computers at one of the world’s largest oil companies in 2012? The Impact of Cyber Attacks on Energy and Industrial Infrastructure It’s hard to understand the damage that can happen as a result of a successful cyber attack on energy and industrial infrastructure.

Cyber threats

Cyber threats Ransomware Cyber Attacks Government

MY TAKE: These 7 nation-state backed hacks have put us on the brink of a global cyber war

The Last Watchdog

JUNE 28, 2018

Meanwhile, Iran-sponsored cyber operatives are making hay, as well. Some experts anticipate that Iran will escalate cyber attacks against U.S. Quite clearly, nation-state backed cyber espionage and cyber attacks are rapidly escalating. What comes next is difficult to conjure. We are in uncharted waters.

Hacking

Hacking Cyber Attacks Government Encryption

Cyber Security Informer

A cyber attack hit Thyssenkrupp Automotive Body Solutions business unit

New Cyber Attack Campaign Leverages the COVID-19 Infodemic

Webinars

Trending Sources

North Korea-linked APT group ScarCruft spotted using new Android spyware KoSpy

Webinars

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

Ransomware attack on Saudi Aramco leaks critical data

Platinum APT and leverages steganography to hide C2 communications

German industrial giant ThyssenKrupp targeted in a new cyberattack

A new variant of Shamoon was uploaded to Virus Total while Saipem was under attack

Mandating End-to-End Verifiable Voting Systems in U.S. Elections

IoT device maker Sierra Wireless hit by Ransomware attack

Top VC Firms in Cybersecurity of 2022

A PowerShell Script to Mitigate Active Directory Security Risks

MY TAKE: COVID-19’s silver lining could turn out to be more rapid, wide adoption of cyber hygiene

Security Affairs newsletter Round 355

Cyber CEO: The History Of Cybercrime, From 1834 To Present

The Top Cybersecurity Breaches in the UAE

WizCase Report: Vulnerabilities found in WD My Book, NetGear Stora, SeaGate Home, Medion LifeCloud NAS

5 Critical Threat Actors You Need to Know About

The Prevalence of DarkComet in Dynamic DNS

CSPM vs CWPP vs CIEM vs CNAPP: What’s the Difference?

5 Critical Threat Actors You Need to Know About

Top Cybersecurity Startups to Watch in 2022

Growing Cyber Threats to the Energy and Industrial Sectors

MY TAKE: These 7 nation-state backed hacks have put us on the brink of a global cyber war

Stay Connected