Security Affairs

MAY 25, 2020

Ransomware encrypts from virtual machines to evade antivirus. One of the victims of the ransomware is the energy giant Energias de Portugal (EDP) , where the attackers claimed to have stolen 10 TB of files. The virtual machine mounts the shared path as a network drive from the VBOXSVR virtual computer to access their content.

Encryption 137

Encryption Ransomware Energy and Utilities Advertising 137

SecureList

NOVEMBER 22, 2022

Decreasing CTI quality – unfounded politically motivated cyberthreat attribution, exaggerated threats, lower statement validity criteria due to political pressure and in an attempt to utilize the government’s political narrative to earn additional profits. Exploiting configuration errors in security solutions.

Energy and Utilities 132

Energy and Utilities Marketing Government Phishing 132

SC Magazine

MAY 10, 2021

Just as oil and gas can flow up and down the pipeline, so can malware, reaching remote facilities whose IT and operational technology systems may not be adequately fortified to defend against an attack. A May 7 ransomware attack on Colonial Pipeline has largely shut down the largest refined products pipeline system in the U.S.,

Risk 105

Risk Energy and Utilities Backups Ransomware 105

SecureList

NOVEMBER 26, 2021

The PyInstaller module for Windows contains a script named “Guard” Interestingly, this malware was developed for both Windows and macOS operating systems. The malware tries to spread to other hosts on the network by infecting USB drives. After this, they were tricked into downloading previously unknown malware.

Malware 134

Malware Banking Energy and Utilities Accountability 134

SecureList

DECEMBER 1, 2023

DroxiDat, a lean variant of SystemBC that acts as a system profiler and simple SOCKS5-capable bot, was detected at an electric utility company. The C2 (command and control) infrastructure for the incident involved an energy-related domain, ‘powersupportplan[.]com’, com’, that resolved to an already suspicious IP host.

Malware 138

Malware Ransomware Encryption Energy and Utilities 138

Security Boulevard

APRIL 28, 2021

This renders the attacks undetectable and able to bypass conventional security solutions such as EDR, antivirus and other traditional security lines of defense. A few years ago, a group of attackers used the Trojan to deploy SCADA-related plugins against victims in energy and ICS/SCADA networks in Ukraine and around the world.

Energy and Utilities 72

Energy and Utilities Malware DDOS Internet 72

Security Boulevard

MARCH 31, 2021

However, one recently introduced UK cybersecurity law, which was meant to boost the resilience of the UK's energy sector by obliging gas and electricity firms to report to hacks, doesn't appear to be very effectively adopted. ISPs, utilities) and energy sector firms (i.e. Russian Pleads Guilty to Tesla Ransomware Plot.

Energy and Utilities 122

Energy and Utilities Ransomware Hacking Banking 122

Malwarebytes

FEBRUARY 25, 2022

In tandem with the physical strikes against Ukraine, a piece of wiper malware first detected by researchers at Symantec and ESET had already begun targeting organizations in Ukraine. Current analyses of HermeticWiper reveal that the malware is being delivered in highly-targeted attacks in Ukraine, Latvia, and Lithuania.

Cybersecurity 103

Cybersecurity Ransomware Malware Government 103

eSecurity Planet

DECEMBER 19, 2023

Before companies can effectively and safely use generative AI tools, employees must be educated on utilizing best practices: writing prompts that achieve desired outcomes, keeping data security and privacy in mind when inputting data, identifying the quality and security of AI, verifying AI output, and more,” elaborates Arti Raman, CEO Portal26.

Cybersecurity 140

Cybersecurity CISO Government Technology 140