Security Affairs

SEPTEMBER 9, 2020

K-Electric, the electricity provider for the city of Karachi, Pakistan, was hit by a Netwalker ransomware attack that blocked billing and online services. K-Electric, the electricity provider for Karachi (Pakistan) is another victim of the Netwalker ransomware gang, the infection disrupted billing and online services.

Ransomware 145

Ransomware Energy and Utilities VPN Advertising 145

SecureList

MAY 25, 2021

Over the past few years, the ransomware threat landscape has been gradually changing. In some cases, this global trend is just a reflection of the continuous life cycle of threats: old ransomware families shut down and new ones appear and pursue new targets. We have been witness to a paradigm shift. Chronology. Cryptographic scheme.

Ransomware 131

Ransomware Encryption Malware Energy and Utilities 131

Security Affairs

JULY 5, 2023

RedEnergy is a sophisticated stealer-as-a-ransomware that was employed in attacks targeting energy utilities, oil, gas, telecom, and machinery sectors. Zscaler ThreatLabz researchers discovered a new Stealer-as-a-Ransomware named RedEnergy used in attacks against energy utilities, oil, gas, telecom, and machinery sectors.

Energy and Utilities 98

Energy and Utilities Ransomware Backups Malware 98

CyberSecurity Insiders

OCTOBER 14, 2021

Sources reporting to Cybersecurity Insiders state that the latest cyber incident observed on October 10th, 2021 could be of ransomware genre. Note 1- This is not the first time that the IT Infrastructure of Olympus have been targeted by a file encrypting malware attacks. But an official statement is awaited on this note!

Ransomware 94

Ransomware Energy and Utilities Manufacturing Cyber Attacks 94

SecureList

OCTOBER 18, 2024

Last December, we discovered a new group targeting Russian businesses and government agencies with ransomware. The group under review has a toolkit that includes utilities such as Mimikatz, XenAllPasswordPro, PingCastle, Localtonet, resocks, AnyDesk, PsExec, and others. Moreover, the infrastructure partially overlaps across attacks.

Energy and Utilities 126

Energy and Utilities VPN Encryption Ransomware 126

Herjavec Group

SEPTEMBER 24, 2021

Ransomware is a breakout ransomware group that became operational shortly after the shutdown of the REvil Ransomware and DarkSide Ransomware operations in late Summer 2021. Furthermore, they have openly claimed that BlackMatter is the product of reproducing the “best parts” of previous ransomware operations [1].

Ransomware 109

Ransomware Manufacturing Encryption Energy and Utilities 109

Security Affairs

JUNE 6, 2024

The FBI is informing victims of LockBit ransomware it has obtained over 7,000 LockBit decryption keys that could allow some of them to decrypt their data. The FBI is inviting victims of LockBit ransomware to come forward because it has obtained over 7,000 LockBit decryption keys that could allow them to recover their encrypted data for free.

Energy and Utilities 136

Energy and Utilities Ransomware Encryption Financial Services 136

Security Affairs

FEBRUARY 21, 2024

government offers rewards of up to $15 million for information that could lead to the identification or location of LockBit ransomware gang members and affiliates. According to the press release published by the Department of State , the Lockbit ransomware operators carried out over 2,000 attacks against victims worldwide since January 2020.

Energy and Utilities 132

Energy and Utilities Ransomware Manufacturing Financial Services 132

Security Affairs

FEBRUARY 20, 2024

Law enforcement provided additional details about the international Operation Cronos that led to the disruption of the Lockbit ransomware operation. Yesterday, a joint law enforcement action, code-named Operation Cronos , conducted by law enforcement agencies from 11 countries disrupted the LockBit ransomware operation.

Energy and Utilities 132

Energy and Utilities Ransomware Manufacturing Financial Services 132

SecureList

MARCH 13, 2025

Additionally, Head Mare attacks utilized command-and-control (C2) servers exclusively linked to Twelve prior to these incidents. Anti-detection techniques Head Mare continued to use the Masquerading technique (T1655), naming utility executables like standard operating system files. doc" --include "*.docx" pdf" --include "*.xls"

Energy and Utilities 76

Energy and Utilities Software Accountability Phishing 76

SecureList

AUGUST 10, 2023

Regardless, this increased utilities targeting is a real world problem with serious potential consequences, especially in areas where network outages may affect customers on a country-wide basis. We speculate that this incident was in the initial stages of a ransomware attack. com” that resolved to an already suspicious IP host.

Energy and Utilities 98

Energy and Utilities Ransomware Malware Healthcare 98

Spinone

MARCH 10, 2019

There are constantly new headlines, blog posts, statistics, and other information pointing to the fact that security breaches, malware, ransomware, data leak events, phishing and other security concerns are not going away. Data is driving business for most organizations who utilize technology to carry out normal business operations.

Ransomware 53

Ransomware Backups Energy and Utilities Encryption 53

SecureList

DECEMBER 1, 2023

The incident occurred in the third and fourth week of March, as part of a small wave of attacks involving both DroxiDat and Cobalt Strike beacons around the world; and we believe this incident may have been the initial stage of a ransomware attack. com’, that resolved to an already suspicious IP host.

Malware 138

Malware Ransomware Encryption Energy and Utilities 138

SecureList

APRIL 27, 2023

The group went after high-profile entities operating in the government, aviation, energy, telecoms and banking sectors. The new variant is also.NET-based, with several modifications in its execution flow compared to the original version; but still utilizing Exchange Web Services (EWS) via the victim’s mailbox for operations.

Energy and Utilities 145

Energy and Utilities Malware Government Manufacturing 145

eSecurity Planet

MARCH 14, 2022

A recent column by cybersecurity researcher Brian Krebs described the lengths that the Conti ransomware group went to to acquire a legitimate Cobalt Strike license for its reconnaissance efforts, highlighting the value hackers place on the tool. While that’s true, it requires time, effort, and energy. Back to the starting point.

Energy and Utilities 132

Energy and Utilities DNS Penetration Testing Ransomware 132

Malwarebytes

JUNE 16, 2023

Whether this means that customers of the popular file transfer utility MOVEit Transfer can ask for their money back remains to be seen, but we do hope it signals the end of the game. Reportedly , two US Department of Energy (DOE) entities were also compromised. How to avoid ransomware Block common forms of entry.

Energy and Utilities 88

Energy and Utilities Ransomware Government Backups 88

eSecurity Planet

SEPTEMBER 14, 2022

Energy and utility companies have been some of the most high-profile cyber attacks in recent memory, such as the May 2021 Colonial Pipeline attack or the Delta-owned Monroe Energy attack in November 2021. Given how lucrative and necessary both sectors are to daily life, they make prime targets for ransomware.

Social Engineering 121

Social Engineering Energy and Utilities Phishing Internet 121

CyberSecurity Insiders

DECEMBER 15, 2021

With this, organizations across the globe can benefit from NetApp ONTAP’s robust security capabilities to protect customers’ information on-premises and in remote locations from foreign actors, ransomware attacks or other data loss threats they may face. A cybersecurity program led by the U.S. Additional Resources: About NetApp.

Encryption 52

Encryption Energy and Utilities Digital transformation Software 52

Thales Cloud Protection & Licensing

MAY 13, 2021

Operating the country’s largest refined products pipeline, Colonial Pipeline was brought to its knees over the weekend by a ransomware attack by cybercriminal gang, DarkSide. The only fail-safe solution to ensure your data is secure as it travels across the network is encryption. Network Encryption is Key. Encryption.

Energy and Utilities 77

Energy and Utilities Encryption Data collection Ransomware 77

SecureWorld News

APRIL 25, 2024

Due to the attack, thousands of street lamps remained illuminated throughout the day, wasting significant energy and money. The cybercriminals encrypted critical data and systems across the council's networks, severely hampering its ability to operate and provide services to residents.

Cyber Attacks 91

Cyber Attacks Energy and Utilities Cyber Risk Risk 91

SecureList

NOVEMBER 23, 2021

Energy, transport and utilities — in an attempt to gain a foothold in the critical infrastructure of a “potential adversary” just in case, and to use it to develop other attacks (see examples above). Extortion and ransomwaring of those able and willing to pay up. Building on the success of 2021. But not all.

Spyware 138

Spyware Phishing Cybercrime Energy and Utilities 138

SecureList

JANUARY 31, 2024

Ransomware Ransomware will remain the No. In 2023, ransomware attacks consolidated their hold on the top of the ranking of information security threats to industrial enterprises. The ransomware market is heading for a peak, which may be followed by a decline or stagnation. 1 scourge of industrial enterprises in 2024.

Ransomware 109

Ransomware Energy and Utilities Marketing Backups 109

eSecurity Planet

JULY 28, 2021

In the recent case of the Colonial Pipeline ransomware attack , the Department of Justice and FBI were able to recover a majority of the crypto-payment made to the DarkSide ransomware group. For advantages, private blockchains are more scalable and energy-efficient with suggested use cases of banking and supply chain management.

Cybersecurity 136

Cybersecurity Cryptocurrency Technology Energy and Utilities 136

CyberSecurity Insiders

SEPTEMBER 21, 2021

Beyond traditional IT operations that utilize servers, routers, PCs and switches, these organizations also rely on OT, such as programmable logic controllers (PLCs), distributed control systems (DCSs) and human machine interfaces (HMIs) to run their physical plants and factories. They also don't have event logs or audit trails.

Energy and Utilities 101

Energy and Utilities Threat Detection Manufacturing Technology 101

SecureList

NOVEMBER 26, 2021

We have seen targeted attacks exploiting the vulnerability to target companies in research and development, the energy sector and other major industries, banking, the medical technology sector, as well as telecoms and IT. That library was then loaded by the legitimate MsMpEng.exe by utilizing the DLL side-loading technique.

Malware 134

Malware Banking Energy and Utilities Accountability 134

SecureList

NOVEMBER 14, 2023

The malware posed as ransomware, demanding money from the victims for “decrypting” their data. However, instead of encrypting the data, it purposefully destroyed it in the affected systems. In January, ESET discovered a new wiper, deployed in an attack in Ukraine via the Active Directory GPO.

Hacking 141

Hacking Energy and Utilities Media Malware 141

Cisco Security

AUGUST 26, 2021

This year we saw the reemergence of old vectors: from ransomware & trojans, to supply chain attacks. With the addition of Kenna Security into our program we now have over 250 technology partners and over 400 integrations for our mutual customers to utilize. Encrypt files everywhere. Read more here. Read more here.

Technology 145

Technology Firewall VPN Authentication 145

Spinone

JANUARY 8, 2019

A huge threat to Software-as-a-Service systems that are utilized is BYOD devices and also end users granting permissions to third-party applications that do not need or are authorized to have the access they may be requesting to sensitive company data. Ransomware is equally as dangerous when it comes to public cloud storage.

Data privacy 40

Data privacy Backups Energy and Utilities Software 40

Spinone

SEPTEMBER 3, 2018

Financial institutions, healthcare, public sector and government agencies, manufacturing, and energy companies are all embracing digital business trends. Several law firms in British Columbia, Canada, were infected with ransomware. Blockchain is one of the most promising new technologies to emerge from the past decade.

Technology 40

Technology Energy and Utilities Authentication Cyber Attacks 40

ForAllSecure

MAY 13, 2022

For example, in 2009, the Obama administration provided financial incentives to utilities in the United States. And again, smart meters were positioned squarely as making the environment more friendly by knowing how and when energy is being used by individual customers. Environmental effects caused by pollution.

Engineering 52

Engineering Energy and Utilities Computers and Electronics Firmware 52

Thales Cloud Protection & Licensing

OCTOBER 23, 2023

However, simple actions like adopting multi-factor authentication (MFA) or encrypting sensitive data everywhere should be exercised throughout the year and not just during that month. The threat of attacks against Critical National Infrastructure (CNI) – energy, utilities, telecommunications, and transportation – is a top priority.

Energy and Utilities 77

Energy and Utilities Cybersecurity Ransomware Technology 77

Thales Cloud Protection & Licensing

AUGUST 12, 2024

The Critical Infrastructure edition of the 2024 Thales Data Threat Report highlights the threats that businesses in the Energy, Utilities, Telecom, Transportation, and Logistics sectors face. 15% of the CI organizations have experienced a breach in the last 12 months, with ransomware being the biggest threat.

Cybersecurity 62

Cybersecurity Energy and Utilities Digital transformation Threat Reports 62

Jane Frankland

JANUARY 12, 2025

Sectors like energy, healthcare, transportation, utilities, and financial systems are increasingly at risk because they are integral to national security and daily life. Ransomware remains a prominent threat, but the methods have evolved.

Cybersecurity 130

Cybersecurity CISO Insurance IoT 130