CSO and Manufacturing - Cyber Security Informer

App cyberattacks jump 137%, with healthcare, manufacturing hit hard, Akamai says

CSO Magazine

APRIL 18, 2023

An analysis of customer data collected by content delivery network and internet services giant Akamai found that attacks targeting web applications rose by 137% over the course of last year, as the healthcare and manufacturing sectors in particular were targeted with an array of API and application-based intrusions.

Manufacturing

Manufacturing Healthcare Data collection Internet

Ransomware is top cyberattack type, as manufacturing gets hit hardest

CSO Magazine

FEBRUARY 24, 2022

The report, which covers 2021, reported ransomware as the top attack type; phishing and unpatched vulnerabilities as leading infection vectors; cloud, open-source, and Docker environments as the biggest areas of focus for malware; manufacturing the most attacked industry; and Asia the most attacked region.

Manufacturing

Manufacturing Ransomware Phishing Malware

New DDoS extortion attacks detected as Fancy Lazarus group returns

CSO Magazine

JUNE 11, 2021

The attacks have been primarily targeting US and global organizations from a range of sectors including energy, financial, insurance, manufacturing, public utilities and retail. Sign up for CSO newsletters. ]. Learn 12 tips for effectively presenting cybersecurity to the board and 6 steps for building a robust incident response plan.

DDOS

DDOS Energy and Utilities CSO Retail

SonicWall warns customers about zero-day vulnerabilities

CSO Magazine

JANUARY 25, 2021

Firewall and network security appliance manufacturer SonicWall is urging customers to take preventive actions after its own systems were attacked through previously unknown vulnerabilities in some of its products. Sign up for CSO newsletters. ]. Sign up for CSO newsletters. ].

CSO

CSO Firewall VPN Manufacturing

Australian electric grid vulnerable to Cyber Attacks via Solar Panels

CyberSecurity Insiders

MARCH 14, 2022

And unless these devices are secure enough, their usage can invite more troubles,” said Alistair MacGibbon, the CSO of CyberCX. As Ransomware spreading gangs are particularly focusing on energy and manufacturing firms, the level of seriousness on scale increases to many folds, added Mr. MacGibbon.

Cyber Attacks

Cyber Attacks CSO Manufacturing Cyber threats

Siemens focuses on zero trust, legacy hardware, supply chain challenges to ensure cybersecurity of internal systems

CSO Magazine

APRIL 25, 2023

The manufacturing giant that works across several different lines of business, including industrial, smart infrastructure, health care, financial services, is protecting its systems by focusing on three main areas: zero trust, supply chain, and legacy systems. Acquisitions mean systems integrations and can often bring cybersecurity risks.

CSO

CSO Cybersecurity Financial Services Manufacturing

Researchers warn about continuous abuse of unpatched MikroTik routers

CSO Magazine

DECEMBER 9, 2021

MikroTik is a Latvian company that manufactures networking devices for the home, business and ISP markets around the world. What makes MikroTik devices particularly popular is the computing power and features they offer at a very competitive price point compared to home office and enterprise-grade devices from other manufacturers.

Manufacturing

Manufacturing Wireless Marketing

2022 Cybersecurity predictions

CyberSecurity Insiders

NOVEMBER 16, 2021

While in past years, InfoSec was previously the focus and CISOs were the norm – we’re moving to a new cybersecurity world order that expands the role of the CISO to a CSO (Chief Security Officer). Manufacturing is a prime area for disruption with the increase in the number of IoT devices during the pandemic.

Cybersecurity

Cybersecurity Energy and Utilities Manufacturing Healthcare

Why you should secure your embedded server management interfaces

CSO Magazine

JANUARY 14, 2022

All server manufacturers provide this functionality in firmware through a set of chips that run independent of the rest of the server and OS. Over the years, security researchers have found and demonstrated vulnerabilities in the BMC implementations of different server manufacturers and attackers have taken advantage of some of them.

Manufacturing

Manufacturing Firmware Cybersecurity

Cybersecurity Snapshot: CISA Calls for Stamping Out Buffer Overflow Vulnerabilities, as Europol Tells Banks To Prep For Quantum Threat

Security Boulevard

FEBRUARY 14, 2025

CISA and FBI urge manufacturers to use proven prevention methods and mitigations to eliminate this class of defect while urging software customers to demand secure products from manufacturers that include these preventions, the agencies wrote in a joint fact sheet.

Banking

Banking Cybercrime Cybersecurity Ransomware

BrandPost: Why Hackers are Increasingly Targeting Digital Supply Chains

CSO Magazine

JULY 13, 2022

Specifically, there was a 606% increase in attacks against software publishers from 1H 2021, as well as a 162% increase in attacks on computer manufacturers and a 263% increase against computer storage manufacturing. To read this article in full, please click here

Manufacturing

Manufacturing Software Hacking

Basic flaws put pneumatic tube transport systems in hospitals at risk

CSO Magazine

AUGUST 2, 2021

The vulnerabilities affect the Translogic PTS system made by Swisslog Healthcare, which according to the manufacturer, is used in over 2,300 hospitals in North America and over 3,000 worldwide. The flaws could enable attackers to sabotage or hold the systems hostage, which can potentially have a negative impact on patient care.

Risk

Risk Manufacturing Healthcare

The metaverse brings a new breed of threats to challenge privacy and security gatekeepers

CSO Magazine

JANUARY 23, 2023

They’re also rendering spatial apps around travel, car sales, manufacturing, and architecture in what Citi predicts will be a $13-trillion market with 5 billion users by 2030.

Architecture

Architecture Manufacturing Education Media

The race to secure 5G

CSO Magazine

MARCH 26, 2021

The combination of IoT, 5G, cloud, data analytics, quantum computing, and AI paves the way for new and improved products and services in the energy, transportation, manufacturing, healthcare and logistics industries, to name a few. To read this article in full, please click here (Insider Story)

Manufacturing

Manufacturing IoT Healthcare

37 hardware and firmware vulnerabilities: A guide to the threats

CSO Magazine

AUGUST 11, 2022

The flaws stemmed from a performance feature of modern CPUs known as speculative execution and mitigating them required one of the biggest patch coordination efforts in history, involving CPU makers, device manufacturers and operating system vendors.

Firmware

Firmware Manufacturing

What CISOs need to know about Wi-Fi 6E

CSO Magazine

AUGUST 24, 2021

And I predict the rules we adopt today will play a major role in the growth of the internet of things, connecting appliances, machines, meters, wearables, smart televisions, and other consumer electronics, as well as industrial sensors for manufacturing.” To read this article in full, please click here

CISO

CISO Manufacturing Internet Internet

Ransomware is top attack vector on critical infrastructure

CSO Magazine

FEBRUARY 24, 2022

Nearly two-thirds of those attacks (65%), were aimed at the manufacturing sector, the company revealed in its annual review of cyber threats facing industrial organizations released Wednesday. You can combine all the other sectors together and not get to where manufacturing is getting hit," Dragos CEO Robert M.

Ransomware

Ransomware Manufacturing Cyber threats Cybersecurity

Johnson & Johnson CISO Marene Allison: ‘You can’t sit on today’s technology’

CSO Magazine

JULY 15, 2022

The oath Marene Allison took years ago to defend and protect the United States is the same tenet that now guides her work maintaining cybersecurity at one of the largest pharmaceutical and consumer packaged goods manufacturers in the world.

CISO

CISO Technology Manufacturing Healthcare

Athletic shoe maker Brooks runs down cyberattacks with zero-trust segmentation

CSO Magazine

DECEMBER 7, 2022

Ransomware was again the top attack type in 2021, with manufacturing replacing financial services as the top industry in a Brooks. Jon Hocut, director of information security for Brooks To read this article in full, please click here

Financial Services

Financial Services Manufacturing Ransomware Information Security

CISOs, beware of spyware tools for illicit competitive intelligence

CSO Magazine

FEBRUARY 24, 2022

Department of Justice (DOJ) released information surrounding the guilty plea of Mexican businessman Carlos Guerrero and his conspiracy to sell and use hacking tools that were manufactured by companies in Italy, Israel, and elsewhere.

Spyware

Spyware CISO Wireless Manufacturing

BrandPost: What it Takes to Make Industry 4.0 a Reality

CSO Magazine

OCTOBER 5, 2022

Manufacturing can be faster, more data-driven, more responsive to the needs of workers and customers, and more powered by innovations such as artificial intelligence, internet of things, digital supply chains, and blockchain. Industry 4.0 has vast potential to transform what factories can do. While the possibilities of Industry 4.0

Artificial Intelligence

Artificial Intelligence Manufacturing Internet Internet

Engineering workstation attacks on industrial control systems double: Report

CSO Magazine

OCTOBER 31, 2022

For the 2022 SANS ICS/OT survey, 332 responses were received, representing verticals from the energy, chemical, critical manufacturing, nuclear, water management, and other industries. To read this article in full, please click here

Engineering

Engineering Manufacturing Technology

Ransomware attacks slowing as 2022 wears on

CSO Magazine

JULY 21, 2022

The most impacted industries were manufacturing and construction, GuidePoint’s report said, accounting for 18.3% Total ransomware attacks for the second quarter of 2022 totaled 574, representing a 34% slowdown compared to the first quarter of the year, according to a report released Thursday by GuidePoint Research.

Ransomware

Ransomware Manufacturing Government Accountability

OT giants collaborate on ETHOS early threat and attack warning system

CSO Magazine

APRIL 24, 2023

One of the greatest fears among government officials and security experts is a crippling cyberattack on industrial organizations that run essential services, including electricity, water, oil and gas production, and manufacturing systems.

Manufacturing

Manufacturing Technology Government

How APTs become long-term lurkers: Tools and techniques of a targeted attack

CSO Magazine

SEPTEMBER 16, 2021

McAfee researchers have dubbed the attack campaign Operation Harvest because its goal was the long-term exfiltration of sensitive information that could be used for military strategic purposes and intellectual property that could be used for manufacturing. To read this article in full, please click here

Manufacturing

Manufacturing Malware

Chinese APT group Winnti stole trade secrets in years-long undetected campaign

CSO Magazine

MAY 4, 2022

Security researchers have uncovered a cyberespionage campaign that has remained largely undetected since 2019 and focused on stealing trade secrets and other intellectual property from technology and manufacturing companies across the world. To read this article in full, please click here

Manufacturing

Manufacturing Technology Malware

BrandPost: How to Cope with Disruptive Shifts in Cyberattacks

CSO Magazine

MARCH 4, 2021

The ripple effects from these changes affected point of sale systems, supply chains, manufacturing, and everything in between. Retailers scrambled to adapt as the pandemic altered how people patronized their businesses and even what they purchased. To read this article in full, please click here

Retail

Retail Manufacturing Healthcare

Spyware vendors use exploit chains to take advantage of patch delays in mobile ecosystem

CSO Magazine

MARCH 31, 2023

However, their exploit chains also relied on known vulnerabilities to work, highlighting the importance of both users and device manufacturers to speed up the adoption of security patches. Several commercial spyware vendors developed and used zero-day exploits against iOS and Android users last year.

Spyware

Spyware Mobile Surveillance Manufacturing

Evolving cyberattacks, alert fatigue creating DFIR burnout, regulatory risk

CSO Magazine

FEBRUARY 16, 2023

The firm surveyed 492 DFIR professionals in North America and Europe, the Middle East, and Africa working in organizations in industries such as technology, manufacturing, government, telecommunications, and healthcare.

Risk

Risk Telecommunications Cybercrime Manufacturing

China to probe Micron over cybersecurity, in chip war’s latest battle

CSO Magazine

APRIL 3, 2023

The chip war is also putting global enterprises in the crosshairs , as auto manufacturing and a host of other sectors are increasingly dependent on the availability of advanced silicon for growth. To read this article in full, please click here

Cybersecurity

Cybersecurity Manufacturing Technology Government

Opsec examples: 6 spectacular operational security failures

CSO Magazine

AUGUST 13, 2021

Does it matter if the selfies you upload to social media have location data embedded in them, or if your fitness tracker sends anonymized data about your jogging route to its manufacturer? It might if you're a soldier on a secret military base or in a country where your government swears it hasn't sent any troops.

Media

Media Manufacturing Government Accountability

Israeli threat group uses fake company acquisitions in CEO fraud schemes

CSO Magazine

MAY 11, 2023

They target multiple industries simultaneously, including manufacturing, financial services, technology, retail, healthcare, energy, and media." To read this article in full, please click here

Financial Services

Financial Services Retail Manufacturing Healthcare

Gigabyte firmware component can be abused as a backdoor

CSO Magazine

MAY 31, 2023

Researchers warn that the UEFI firmware in many motherboards made by PC hardware manufacturer Gigabyte injects executable code inside the Windows kernel in an unsafe way that can be abused by attackers to compromise systems. Sophisticated APT groups are abusing similar implementations in the wild.

Firmware

Firmware Manufacturing Risk

TLS implementation flaws open Aruba and Avaya network switches to RCE attacks

CSO Magazine

MAY 3, 2022

Multiple series of network switches manufactured by Aruba Networks, owned by Hewlett Packard Enterprise, and Avaya, owned by Extreme Networks, are vulnerable to attacks that could allow attackers to break network segmentation, exfiltrate data from internal networks to the internet, and escape captive portals.

Manufacturing

Manufacturing Authentication Internet Internet

"Evil PLC Attack" weaponizes PLCs to infect engineering workstations

CSO Magazine

AUGUST 16, 2022

Most attack scenarios against industrial installations, whether in manufacturing or in critical infrastructure, focus on compromising programmable logic controllers (PLCs) to tamper with the physical processes they control and automate. To read this article in full, please click here

Engineering

Engineering Manufacturing Software Cybersecurity

What is Ransom Cartel? A ransomware gang focused on reputational damage

CSO Magazine

NOVEMBER 30, 2022

Believed to have launched in December 2021, Ransom Cartel has made victims of organizations from among the education, manufacturing, utilities, and energy sectors with aggressive malware and tactics that resemble those used by REvil. To read this article in full, please click here

Energy and Utilities

Energy and Utilities Ransomware Manufacturing Education

BrandPost: What You Need to Know about BlackByte Ransomware as a Service

CSO Magazine

MARCH 17, 2022

Attacks range from critical infrastructure providers to manufacturing, financial services, and most recently an American football team. The BlackByte ransomware group has been linked to multiple US, European, and Australian cyberattacks since July 2021.

Ransomware

Ransomware Financial Services Manufacturing

How the US DHS develops hard-to-find cybersecurity skills

CSO Magazine

JULY 7, 2022

In her first staffing role after college, she found and staffed skills to support the design, manufacture and service of aircraft engines and auxiliary power units. Fortunately, for the US Department of Homeland Security (DHS), Amanda Conley is not one to shy away from resourcing rare and specialized skills.

Cybersecurity

Cybersecurity Manufacturing Engineering

3CX Hit with Massive Supply Chain Attack

SecureWorld News

APRIL 4, 2023

We have a security team, we do our own pentesting, we've got software scanners, we got a CSO of course. Denying the problem and pointing at the manufacturers of security software until the evidence is clear paints a horrible picture. It's just we didn't understand before the severity of it. Nonetheless, they outsmarted us."

CSO

CSO Software Manufacturing Cryptocurrency

BrandPost: The Patch Act: Now what?

CSO Magazine

MAY 8, 2023

Thanks to an inclusion in the omnibus spending package passed by Congress in December, the FDA has new authority to establish medical device security requirements for manufacturers. The Protecting and Transforming Cyber Healthcare (Patch) Act has been praised by healthcare organizations.

Healthcare

Healthcare Manufacturing Cyber Attacks Internet

Top 5 security risks of Open RAN

CSO Magazine

AUGUST 15, 2022

RANs RANs are proprietary to each equipment manufacturer. When a cell phone or other mobile device connects to the nearest cell tower, the communication takes place over something called a RAN -- a radio access network. From the cell tower, the signal is then routed to a fiber or wireless backhaul connection to the core network.

Risk

Risk Wireless Manufacturing Mobile

BrandPost: Protecting the Edge Is More Important Than Ever

CSO Magazine

MARCH 7, 2023

Everything from autonomous vehicles to medical technologies to smarter Internet of Things (IoT) devices and applications to intelligent manufacturing facilities relies on the low latency, high reliability, and scalability of edge computing. from 2022 to 2030, reaching nearly $156 billion by 2030.

Manufacturing

Manufacturing IoT Marketing Technology

The OSPO – the front line for secure open-source software supply chain governance

CSO Magazine

NOVEMBER 1, 2022

The financial, medical, and manufacturing industries – and even national security – now use OSS to power their most critical applications and activities. Organizations of every shape, size, and sector have embraced open-source software (OSS).

Software

Software Government Manufacturing

Attack campaign uses PHP-based infostealer to target Facebook business accounts

CSO Magazine

MARCH 7, 2023

We have seen SYS01stealer attacking critical government infrastructure employees, manufacturing companies, and other industries," researchers from security firm Morphisec said in a new report. to lure victims into downloading a malicious file.

Accountability

Accountability Manufacturing Government Malware

App cyberattacks jump 137%, with healthcare, manufacturing hit hard, Akamai says

Ransomware is top cyberattack type, as manufacturing gets hit hardest

Trending Sources

New DDoS extortion attacks detected as Fancy Lazarus group returns

SonicWall warns customers about zero-day vulnerabilities

Australian electric grid vulnerable to Cyber Attacks via Solar Panels

Siemens focuses on zero trust, legacy hardware, supply chain challenges to ensure cybersecurity of internal systems

Researchers warn about continuous abuse of unpatched MikroTik routers

2022 Cybersecurity predictions

Why you should secure your embedded server management interfaces

Cybersecurity Snapshot: CISA Calls for Stamping Out Buffer Overflow Vulnerabilities, as Europol Tells Banks To Prep For Quantum Threat

BrandPost: Why Hackers are Increasingly Targeting Digital Supply Chains

Basic flaws put pneumatic tube transport systems in hospitals at risk

The metaverse brings a new breed of threats to challenge privacy and security gatekeepers

The race to secure 5G

37 hardware and firmware vulnerabilities: A guide to the threats

What CISOs need to know about Wi-Fi 6E

Ransomware is top attack vector on critical infrastructure

Johnson & Johnson CISO Marene Allison: ‘You can’t sit on today’s technology’

Athletic shoe maker Brooks runs down cyberattacks with zero-trust segmentation

CISOs, beware of spyware tools for illicit competitive intelligence

BrandPost: What it Takes to Make Industry 4.0 a Reality

Engineering workstation attacks on industrial control systems double: Report

Ransomware attacks slowing as 2022 wears on

OT giants collaborate on ETHOS early threat and attack warning system

How APTs become long-term lurkers: Tools and techniques of a targeted attack

Chinese APT group Winnti stole trade secrets in years-long undetected campaign

BrandPost: How to Cope with Disruptive Shifts in Cyberattacks

Spyware vendors use exploit chains to take advantage of patch delays in mobile ecosystem

Evolving cyberattacks, alert fatigue creating DFIR burnout, regulatory risk

China to probe Micron over cybersecurity, in chip war’s latest battle

Opsec examples: 6 spectacular operational security failures

Israeli threat group uses fake company acquisitions in CEO fraud schemes

Gigabyte firmware component can be abused as a backdoor

TLS implementation flaws open Aruba and Avaya network switches to RCE attacks

"Evil PLC Attack" weaponizes PLCs to infect engineering workstations

What is Ransom Cartel? A ransomware gang focused on reputational damage

BrandPost: What You Need to Know about BlackByte Ransomware as a Service

How the US DHS develops hard-to-find cybersecurity skills

3CX Hit with Massive Supply Chain Attack

BrandPost: The Patch Act: Now what?

Top 5 security risks of Open RAN

BrandPost: Protecting the Edge Is More Important Than Ever

The OSPO – the front line for secure open-source software supply chain governance

Attack campaign uses PHP-based infostealer to target Facebook business accounts

Stay Connected