Security Affairs

MARCH 13, 2025

As of February 2025, Medusa developers and affiliates have impacted over 300 victims from a variety of critical infrastructure sectors with affected industries including medical, education, legal, insurance, technology, and manufacturing.” ” reads the joint advisory. Attackers use Mimikatz to steal credentials.

Ransomware 68

Ransomware Encryption Cryptocurrency Insurance 68

Security Affairs

AUGUST 21, 2020

1 company in the field of manufacturing and trading steel sheet in Vietnam and the leading exporter of steel sheet in Southeast Asia. During the ordinary monitoring of Deepweb and Darkweb , researchers at Cyble came across the leak disclosure post published by the Maze ransomware operators that claim the hack of the Hoa Sen Group.

Ransomware 145

Ransomware Hacking Advertising Backups 145

Security Affairs

SEPTEMBER 3, 2021

Small farms, large producers, processors and manufacturers, and markets and restaurants are particularly exposed to ransomware attacks. The good news is in the latter attack the victims restored its backups. Focus on cyber security awareness and training. Disable hyperlinks in received emails. ransomware and phishing scams).

Ransomware 118

Ransomware Passwords Backups Firmware 118

Security Affairs

NOVEMBER 19, 2023

The group has been active since March 2022, it focused on small and medium-size businesses in multiple industries, including finance, manufacturing, business services, and IT. Security experts attributed 67 attacks to the group in May 2023, most of the victims are in the U.S. and Brazil.

Ransomware 140

Ransomware Encryption Backups Malware 140

Security Affairs

AUGUST 9, 2021

Most of the attacks have been reported in July, the organizations hit by the ransomware gang operate in professional services, construction, manufacturing, retail, and food industries. Ransomware operators also stole data from the victims and leaked it online when they refused to pay the ransom. in Australia since 2020.

Ransomware 120

Ransomware Retail Manufacturing Encryption 120

Security Affairs

OCTOBER 26, 2021

The victims include the construction subsector of the critical manufacturing sector, the academia subsector of the government facilities sector, the information technology sector, and the transportation sector.” ” reads the flash alert.

Ransomware 143

Ransomware Firmware Antivirus Accountability 143

Security Affairs

MAY 16, 2023

French electronics manufacturer Lacroix Group shut down three plants after a cyber attack, experts believe it was the victim of a ransomware attack. The French electronics manufacturer Lacroix Group shut down three facilities in France, Germany, and Tunisia in response to a cyber attack. ” reported Yahoo Finance.

Manufacturing 98

Manufacturing Ransomware Cyber Attacks Backups 98

Malwarebytes

SEPTEMBER 3, 2021

The state of IoT is poor enough as it is, security wise. But manufacturers of agricultural equipment have spent the last few years locked in an automation arms race, and the side effects of this race are starting to show. Focus on cyber security awareness and training. Implement network segmentation.

Ransomware 143

Ransomware Manufacturing Passwords Internet 143

Security Affairs

AUGUST 15, 2020

Based in Louisville, Kentucky, it manufactures several well-known brands throughout the world, including Jack Daniel’s, Early Times, Old Forester, Woodford Reserve, GlenDronach, BenRiach, Glenglassaugh, Finlandia, Herradura, Korbel, and Chambord.

Ransomware 144

Ransomware Advertising Hacking Encryption 144

Security Affairs

JANUARY 16, 2022

The ransomware known as Qlocker exploits CVE-2021-28799 to attack QNAP NAS running certain versions of HBS 3 (Hybrid Backup Sync).” reads the security advisory published by the vendor. Then it also deletes snapshots to prevent restoring of data from the backups and drops a ransom note (named !!!READ_ME.txt)

Ransomware 139

Ransomware Encryption Backups Firmware 139

Security Affairs

JULY 3, 2022

The malware uses TOR exit nodes as a backup C2 infrastructure. The malware was first spotted in September 2021, the experts observed Raspberry Robin targeting organizations in the technology and manufacturing industries. The malicious code uses Windows Installer to reach out to QNAP-associated domains and download a malicious DLL.

Manufacturing 100

Manufacturing Malware Backups Technology 100

Security Affairs

NOVEMBER 13, 2023

The Boeing Company, commonly known as Boeing, is one of the world’s largest aerospace manufacturers and defense contractors. Bleeping Computer analyzed the leaked data and reported that most of the published data are backups for various systems. In 2022, Boeing recorded $66.61 billion in sales, the aerospace giant has 156,000 (2022).

Ransomware 135

Ransomware Authentication Backups Manufacturing 135

CyberSecurity Insiders

JUNE 29, 2023

Granules, the Indian Pharmaceutical company that manufactures Paracetamol has released an official statement that a ransomware attack that targeted its servers last month has resulted in substantial loss of revenue and profitability.

Ransomware 83

Ransomware Backups Encryption Manufacturing 83

Security Affairs

MAY 25, 2021

The audio equipment manufacturer Bose Corporation said it was the victim of a ransomware attack that took place earlier this year, on March 7. Bose also hired external security experts and forensic experts to determine the extent of the attack and restore the impacted systems.

Ransomware 137

Ransomware Malware Cyber Attacks Backups 137

Security Affairs

FEBRUARY 28, 2021

Bug bounty hacker earned $5,000 reporting a Stored XSS flaw in iCloud.com Experts warn of threat actors abusing Google Alerts to deliver unwanted programs FBI warns of the consequences of telephony denial-of-service (TDoS) attacks An attacker was able to siphon audio feeds from multiple Clubhouse rooms Georgetown County has yet to recover from a sophisticated (..)

Spyware 110

Spyware Backups Manufacturing Data breaches 110

Security Affairs

SEPTEMBER 2, 2022

The malware uses TOR exit nodes as a backup C2 infrastructure. The malware was first spotted on September 2021, the experts observed it targeting organizations in the technology and manufacturing industries. The malicious code uses Windows Installer to reach out to QNAP-associated domains and download a malicious DLL.

Cybercrime 123

Cybercrime Malware Backups Manufacturing 123

Security Affairs

OCTOBER 13, 2020

The Flaws in Manufacturing Process. Manufacturers saw this as an opportunity and rushed in to grab their own piece of the IoT market. Manufacturers saw this as an opportunity and rushed in to grab their own piece of the IoT market. Before the device applies the update, it sends a backup to the servers.

IoT 142

IoT Cybersecurity Manufacturing Internet 142

Security Affairs

JULY 29, 2022

The malware uses TOR exit nodes as a backup C2 infrastructure. The malware was first spotted in September 2021, the experts observed Raspberry Robin targeting organizations in the technology and manufacturing industries. The malicious code uses Windows Installer to reach out to QNAP-associated domains and download a malicious DLL.

Malware 121

Malware Backups Manufacturing Ransomware 121

Security Affairs

JULY 9, 2022

The malware uses TOR exit nodes as a backup C2 infrastructure. The malware was first spotted in September 2021, the experts observed Raspberry Robin targeting organizations in the technology and manufacturing industries. The malicious code uses Windows Installer to reach out to QNAP-associated domains and download a malicious DLL.

Malware 112

Malware Manufacturing Backups Technology 112

Security Affairs

JULY 5, 2023

Once inside the system, this malicious variant stealthily extracts sensitive information and proceeds to encrypt the compromised files.” Threat actors used reputable LinkedIn pages to target victims, including the Philippines Industrial Machinery Manufacturing Company and multiple organizations in Brazil.

Energy and Utilities 98

Energy and Utilities Ransomware Backups Malware 98

Security Affairs

FEBRUARY 11, 2024

The malware uses TOR exit nodes as a backup C2 infrastructure. The malware was first spotted in September 2021, the experts observed it targeting organizations in the technology and manufacturing industries. The malicious code uses Windows Installer to reach out to QNAP-associated domains and download a malicious DLL.

Malware 138

Malware Backups Manufacturing Hacking 138

Security Affairs

NOVEMBER 6, 2022

Cisco addressed several high-severity flaws in its products LockBit ransomware gang claims the hack of Continental automotive group 250+ U.S. Cisco addressed several high-severity flaws in its products LockBit ransomware gang claims the hack of Continental automotive group 250+ U.S. Follow me on Twitter: @securityaffairs and Facebook.

Hacking 100

Hacking Ransomware Cybercrime Backups 100

Security Affairs

AUGUST 20, 2024

ZeroSevenGroup extracted a huge quantity of information from Toyota’s environments, including network information and credentials, “We have hacked a branch in United States to one of the biggest automotive manufacturer in the world (TOYOTA). We are really glad to share the files with you here for free.

Data breaches 117

Data breaches Cybercrime Financial Services Hacking 117

Security Affairs

JANUARY 29, 2023

Copycat Criminals mimicking Lockbit gang in northern Europe Sandworm APT targets Ukraine with new SwiftSlicer wiper ISC fixed high-severity flaws in DNS software suite BIND Patch management is crucial to protect Exchange servers, Microsoft warns Hacker accused of having stolen personal data of all Austrians and more CVE-2023-23560 flaw exposes 100 (..)

DNS 98

DNS Data breaches Hacking Backups 98

Security Affairs

JULY 31, 2019

CISA published a security advisory to warn of multiple critical vulnerabilities affecting in Prima FlexAir access control system. Cybersecurity and Infrastructure Security Agency (CISA) published an advisory to warn of critical flaws affecting access control systems manufactured by Prima Systems. and prior. .”

Backups 89

Backups Authentication Advertising Firmware 89

Security Affairs

APRIL 16, 2023

It manufactures self-service kiosks, point-of-sale terminals, automated teller machines, check processing systems, and barcode scanners. An affiliate of the ALPHV/BlackCat ransomware gang, tracked as UNC4466, was recently observed exploiting three vulnerabilities in the Veritas Backup solution to gain initial access to the target network.

Ransomware 98

Ransomware Manufacturing Backups Education 98

Security Affairs

MARCH 26, 2021

According to the flash alert published by the FBI, the Mamba ransomware was employed in attacks against local governments, public transportation agencies, legal services, technology services, industrial, commercial, manufacturing, and construction businesses. Implement network segmentation.

Ransomware 145

Ransomware Encryption Passwords Malware 145

SecureWorld News

APRIL 3, 2023

The concept of a Security Data Lake, a type of Data Lake explicitly designed for information security, has not received much attention yet. It can potentially bring a company's security to the next level. Information security data analysis and reporting.

Unstructured Data 97

Unstructured Data Data collection Information Security Backups 97

Security Affairs

OCTOBER 27, 2022

The malware uses TOR exit nodes as a backup C2 infrastructure. The malware was first spotted in September 2021, the experts observed Raspberry Robin targeting organizations in the technology and manufacturing industries. The malicious code uses Windows Installer to reach out to QNAP-associated domains and download a malicious DLL.

Ransomware 108

Ransomware Malware Data collection Encryption 108

Security Affairs

MAY 13, 2021

US agencies warn that groups employed DarkSide ransomware in attacks aimed at organizations across various Critical Infrastructure sectors, including manufacturing, legal, insurance, healthcare, and energy. Implement regular data backup procedures . Organize OT assets into logical zones. Regularly test manual controls.

Ransomware 141

Ransomware Healthcare Phishing Risk 141

Security Affairs

MAY 7, 2022

The malware uses TOR exit nodes as a backup C2 infrastructure. The malware was first spotted in September 2021, the experts observed Raspberry Robin targeting organizations in the technology and manufacturing industries. Initial access is typically through infected removable drives, often USB devices.

Malware 98

Malware Backups Manufacturing Hacking 98

Security Affairs

DECEMBER 24, 2022

The malware uses TOR exit nodes as a backup C2 infrastructure. The malware was first spotted in September 2021, the experts observed it targeting organizations in the technology and manufacturing industries. The malicious code uses Windows Installer to reach out to QNAP-associated domains and download a malicious DLL.

Government 98

Government Malware Telecommunications Cybercrime 98

Cisco Security

OCTOBER 18, 2021

Major research efforts on how to detect these IEDs and detonate them harmlessly, or to infiltrate and disrupt bomb manufacturing, were referred by the idiom “Left of Boom.” Backup all critical data at least daily, and preferably more often, to offline storage and protected with MFA and immutable encryption.

Cybersecurity 142

Cybersecurity CISO Insurance Risk 142

SecureList

JANUARY 31, 2024

In 2023, ransomware attacks consolidated their hold on the top of the ranking of information security threats to industrial enterprises. However, they can learn to mitigate the impact more effectively (for example, through better securing the most confidential data, and with proper backup and incident response plans).

Ransomware 105

Ransomware Energy and Utilities Marketing Backups 105

Security Affairs

JULY 11, 2019

Experts at security firms Intezer and Anomali have separately discovered a new piece of ransomware targeting Network Attached Storage (NAS) devices. The ransomware targets poorly protected or vulnerable NAS servers manufactured by Taiwan-based QNAP Systems, attackers exploits known vulnerabilities or carry out brute-force attacks.

Ransomware 111

Ransomware Encryption Malware Advertising 111

eSecurity Planet

SEPTEMBER 9, 2024

Industrial control systems (ICS) are the backbone of critical infrastructure, powering essential operations in the energy, manufacturing, water treatment, and transportation sectors. These systems are integral to the smooth operation of industries such as manufacturing, power generation, oil and gas, water management, and more.

Firmware 110

Firmware Encryption Manufacturing Risk 110

Security Affairs

MAY 4, 2023

“The department had reverted to its backup system, radio, to dispatch officers in response to 911 calls instead of its computer assisted dispatch system. . “We have learned the attack’s biggest impact is likely at the Dallas Police Department.” ” reported the website of Fox4News. reads the alert.

Ransomware 98

Ransomware Healthcare Education Encryption 98