Security Affairs

AUGUST 3, 2022

Semikron, a German-based independent manufacturer of power semiconductor components, suffered a ransomware cyberattck. The attackers have infiltrated data from the company systems before encrypting a portion of the internal network. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Manufacturing 124

Manufacturing Ransomware Encryption Data breaches 124

Security Affairs

MARCH 13, 2025

The Medusa ransomware operation hit over 300 organizations in critical infrastructure sectors in the United States until February 2025. The FBI, CISA, and MS-ISAC have issued a joint advisory detailing Medusa ransomware tactics, techniques, and indicators of compromise (IOCs) based on FBI investigations as recent as February 2025.

Ransomware 70

Ransomware Encryption Cryptocurrency Insurance 70

Krebs on Security

DECEMBER 27, 2019

Synoptek , a California business that provides cloud hosting and IT management services to more than a thousand customer nationwide, suffered a ransomware attack this week that has disrupted operations for many of its clients, according to sources. A now-deleted Tweet from Synoptek on Dec. A now-deleted Tweet from Synoptek on Dec.

Ransomware 224

Ransomware Media Financial Services Retail 224

Security Affairs

FEBRUARY 24, 2021

Hackers posted data stolen from manufacturer of business jets Bombardier on Clop ransomware leak site following alleged FTA hack. Hackers exploited vulnerabilities in Accellion FTA file-sharing legacy servers to steal data from the airplane maker Bombardier and leak data on the site operated by the Clop ransomware gang.

Manufacturing 145

Manufacturing Ransomware Cybercrime Hacking 145

Krebs on Security

OCTOBER 28, 2020

In March 2020, KrebsOnSecurity alerted Swedish security giant Gunnebo Group that hackers had broken into its network and sold the access to a criminal group which specializes in deploying ransomware. Reached by phone today, Jansson said he quit the company in August, right around the time Gunnebo disclosed the thwarted ransomware attack.

Hacking 360

Hacking Ransomware Banking Accountability 360

SecureWorld News

SEPTEMBER 6, 2023

In a recent cyberattack, the LockBit ransomware group targeted U.K-based based Zaun, a manufacturer of high-security perimeter fencing—revealing critical vulnerabilities in manufacturing networks. Zaun's cybersecurity systems managed to thwart the encryption of its servers, preventing further catastrophic damage.

Manufacturing 107

Manufacturing Encryption Ransomware Cyber threats 107

Hot for Security

JUNE 2, 2021

In the early days of ransomware things were fairly simple: malware would infect your company’s infrastructure, encrypting your valuable data with a secret key that was only known to your attackers. To launch their new website, the source code from a hacked video game manufacturer was put up for auction on the Payload Bin website.

Encryption 138

Encryption Ransomware Backups Hacking 138

Security Affairs

NOVEMBER 19, 2023

8Base ransomware operators were observed using a variant of the Phobos ransomware in a recent wave of attacks. Cisco Talos researchers observed 8Base ransomware operators using a variant of the Phobos ransomware in recent attacks. The ransomware component is then decrypted and loaded into the SmokeLoader process’ memory.

Ransomware 141

Ransomware Encryption Backups Malware 141

CyberSecurity Insiders

SEPTEMBER 12, 2021

Japan -based camera and binocular manufacturer Olympus that is also into the manufacturing of medical devices has revealed in an official statement that its servers were targeted by BlackMatter Ransomware group that could have disrupted the computers systems in network operating in Middle East, Europe and Africa.

Ransomware 128

Ransomware Manufacturing Backups Encryption 128

CyberSecurity Insiders

APRIL 9, 2021

European Enterprises mainly involved in manufacturing are being targeted by a new strain of Ransomware dubbed as Cring and confirmed sources say that the malware is being spread by exploitation of Fortinet VPN Vulnerability.

Ransomware 140

Ransomware VPN Manufacturing Backups 140

Security Affairs

SEPTEMBER 20, 2020

manufacturer of high-performance fiber lasers for diverse applications and industries was hit by a ransomware attack that disrupted its operations. IPG Photonics manufactures high-performance fiber lasers, amplifiers, and laser systems for diverse applications and industries. IPG Photonics, a leading U.S. Pierluigi Paganini.

Ransomware 143

Ransomware Manufacturing Advertising Encryption 143

CyberSecurity Insiders

AUGUST 8, 2021

A ransomware attack targeted on Taiwan-based Laptop Manufacturer Gigabyte is said to have halted the production operation of the company from the past few days. Preliminary investigation has proved that few of the servers related to manufacturing were hit badly by the file encrypting malware.

Ransomware 119

Ransomware Manufacturing Encryption Cryptocurrency 119

Security Affairs

JUNE 6, 2020

eCh0raix Ransomware operators are back after months of apparent inactivity, now are targeting QNAP storage devices in a new campaign. Threat actors behind the eCh0raix Ransomware have launched a new campaign aimed at infecting QNAP storage devices. encrypt extension to filenames of encrypted files. Pierluigi Paganini.

Ransomware 142

Ransomware Encryption Advertising Manufacturing 142

Bleeping Computer

AUGUST 2, 2022

German power electronics manufacturer Semikron has disclosed that it was hit by a ransomware attack that partially encrypted the company's network. [.].

Manufacturing 78

Manufacturing Ransomware Encryption 78

Security Affairs

MARCH 26, 2021

The Federal Bureau of Investigation (FBI) issued an alert to warn that the Mamba ransomware is abusing the DiskCryptor open source tool to encrypt entire drives. Mamba ransomware is one of the first malware that encrypted hard drives rather than files that was detected in public attacks.

Ransomware 145

Ransomware Encryption Passwords Malware 145

Security Affairs

MAY 22, 2024

The digital imaging products manufacturer OmniVision disclosed a data breach after the 2023 ransomware attack. In 2023, the imaging sensors manufacturer was the victim of a Cactus ransomware attack. In October, 2023, the Cactus ransomware group added OmniVision to the list of victims on its Tor leak site.

Data breaches 134

Data breaches Ransomware Manufacturing Encryption 134

Webroot

OCTOBER 31, 2024

This year has seen ransomware groups adapt and innovate, pushing the boundaries of their malicious capabilities and evasiveness from law enforcement. The ransomware sector, in particular, has witnessed the emergence of “business models,” with ransomware-as-a-service (RaaS) dominating the scene.

Malware 108

Malware Ransomware Passwords Healthcare 108

SecureWorld News

JANUARY 16, 2025

A report from 2023 revealed that 67% of energy and utility companies faced ransomware attacks, with many incidents exploiting unpatched vulnerabilities. Hackers used compromised credentials to gain access to Colonial Pipeline's network, deploying ransomware that encrypted critical systems.

Energy and Utilities 108

Energy and Utilities IoT Artificial Intelligence Backups 108

Security Affairs

DECEMBER 19, 2022

Researchers spotted a new variant of the Agenda ransomware which is written in the cross-platform programming language Rust. Trend Micro researchers have spotted a new variant of the Agenda ransomware (aka Qilin) that is written in Rust Language. The researchers estimated that combined revenue surpasses US$550 million. AGENDA.THIAFBB.”

Ransomware 143

Ransomware Encryption Healthcare Education 143

Security Affairs

DECEMBER 7, 2020

Electronics contract manufacturer Foxconn is the last victim of the DoppelPaymer ransomware operators that hit a Mexican facility. DoppelPaymer ransomware operators infected the systems at a Mexican facility of Foxconn electronics giant over the Thanksgiving weekend. The plan is located in Ciudad Juárez, Chihuahua, Mexico.

Ransomware 118

Ransomware Manufacturing Encryption Hacking 118

Security Affairs

DECEMBER 4, 2021

The FBI has revealed that the Cuba ransomware gang breached the networks of at least 49 US critical infrastructure organizations. A flash alert published by the FBI has reported that the Cuba ransomware gang breached the networks of at least 49 US critical infrastructure organizations.

Ransomware 145

Ransomware Hacking Malware Encryption 145

Security Affairs

DECEMBER 27, 2021

A new wave of ech0raix ransomware attacks is targeting QNAP network-attached storage (NAS) devices. The threat actors behind the ech0raix ransomware are targeting NAP network-attached storage (NAS) devices. The attackers first create a user in the administrator group, then use it to encrypt the content of the NAS. and 1.0.6).”

Ransomware 142

Ransomware Encryption Manufacturing Hacking 142

Security Affairs

FEBRUARY 7, 2020

The operators behind the infamous RobbinHood ransomware are exploiting a vulnerable GIGABYTE driver to kill antivirus products. Cybercriminals behind the RobbinHood Ransomware are exploiting a vulnerable GIGABYTE driver to install a malicious and unsigned driver into Windows with the intent of disabling security products.

Software 145

Software Ransomware Antivirus Encryption 145

CyberSecurity Insiders

OCTOBER 7, 2021

UK based Water Pump maker that has a global presence has made it official that it was targeted by a ransomware attack in the second week of September 2021, negatively affecting its profit margin deeply. A ransomware attack is a kind of malware attack where hackers encrypt a database from access until a ransom is paid.

Ransomware 125

Ransomware Manufacturing Encryption Engineering 125

Security Affairs

AUGUST 17, 2020

IT giant Konica Minolta was hit with a ransomware attack at the end of July, its services have been impacted for almost a week. A ransomware attack has impacted the services at the business technology giant Konica Minolta for almost a week, the attack took place at the end of July. Pierluigi Paganini.

Technology 145

Technology Ransomware Advertising Encryption 145

Centraleyes

DECEMBER 16, 2024

Ransomware Still Reigns Supreme Ransomware attacks continue to plague organizations globally, and 2024 will be no different. Attackers are becoming more organized, with ransomware-as-a-service (RaaS) operations providing easy access to malicious tools for even novice cybercriminals.

Cybersecurity 98

Cybersecurity Insurance Cyber Insurance Risk 98

Security Affairs

FEBRUARY 12, 2024

Researchers discovered a vulnerability in the code of the Rhysida ransomware that allowed them to develop a decryption tool. Cybersecurity researchers from Kookmin University and the Korea Internet and Security Agency (KISA) discovered an implementation vulnerability in the source code of the Rhysida ransomware.

Ransomware 130

Ransomware Encryption VPN Manufacturing 130

Security Affairs

JULY 15, 2022

Microsoft researchers linked the Holy Ghost ransomware (H0lyGh0st) operation to North Korea-linked threat actors. The Microsoft Threat Intelligence Center (MSTIC) researchers linked the activity of the Holy Ghost ransomware (H0lyGh0st) operation to a North Korea-linked group they tracked as DEV-0530. ” concludes Microsoft.

Ransomware 144

Ransomware Cryptocurrency Government Small Business 144

Security Affairs

MARCH 26, 2021

Experts discovered that threat actors targeted a large US transportation & logistics organization, a large US consumer products organization, and a global manufacturing organization. Researchers from Crowdstrike speculate that the new variant is a successor to WastedLocker ransomware and linked the operations to Evil Corp operations.

Ransomware 145

Ransomware Encryption Malware VPN 145

CyberSecurity Insiders

NOVEMBER 22, 2021

Vestas Wind Systems, a Denmark-based company that is into the manufacturing and installation of wind turbines, has announced that its systems were disrupted by a cyber attack that occurred on Friday and their recovery is in progress. NOTE- Ransomware is a kind of malware that encrypts a database until a ransom is paid.

Ransomware 110

Ransomware Manufacturing Encryption Cyber Attacks 110

Security Affairs

MAY 11, 2021

The FBI and Australian Australian Cyber Security Centre (ACSC) warn of an ongoing Avaddon ransomware campaign targeting organizations worldwide. “The Australian Cyber Security Centre (ACSC) is aware an ongoing ransomware campaign utilising the Avaddon Ransomware malware. . ” reads the alert published by ACSC.

Ransomware 139

Ransomware Backups Antivirus DDOS 139

CyberSecurity Insiders

JULY 31, 2022

Industrial Spy, a hacking group involved in ransomware attacks, targeted at Novartis last week, stealing sensitive information from the manufacturing division of the company servers. It first infiltrates the victim network, steals data and then locks it out with encryption until a ransom is paid.

Ransomware 133

Ransomware Hacking Encryption Manufacturing 133

Security Affairs

JANUARY 28, 2020

The recently discovered Snake Ransomware has been targeting processes and files associated with industrial control systems (ICS). Security experts from SentinelOne reported that the recently discovered Snake Ransomware has been targeting processes and files associated with industrial control systems (ICS).

Ransomware 128

Ransomware Energy and Utilities Manufacturing Malware 128

Security Affairs

JANUARY 16, 2022

QNAP NAS devices are under attack, experts warn of a new Qlocker ransomware campaign that hit devices worldwide. A new wave of Qlocker ransomware it targeting QNAP NAS devices worldwide, the new campaign started on January 6 and it drops ransom notes named !!!READ_ME.txt READ_ME.txt on infected devices.

Ransomware 140

Ransomware Encryption Backups Firmware 140

Security Affairs

OCTOBER 23, 2020

French IT outsourcer Sopra Steria hit by ‘cyberattack’, Ryuk ransomware suspected. French IT outsourcer Sopra Steria has been hit by a ransomware attack, while the company did not reveal the family of malware that infected its systems, local media speculate the involvement of the Ryuk ransomware. “A

Ransomware 142

Ransomware Computers and Electronics Healthcare Advertising 142

Security Affairs

AUGUST 15, 2020

Sodinokibi (REvil) ransomware operators announced on Friday to have hacked Brown-Forman, one of the largest U.S. Sodinokibi (REvil) ransomware operators announced last week to have breached the network of the Brown-Forman, one of the largest U.S. firm in the spirits and wine business. firm in the spirits and wine business.

Ransomware 144

Ransomware Advertising Hacking Encryption 144

CyberSecurity Insiders

DECEMBER 28, 2021

McMenamins, a family owned company of crafted breweries in Oregon & Washington, has reportedly suffered a ransomware attack, blocking down several of its digital services like hotel room booking and such. The post McMenamins suffers a Ransomware Attack appeared first on Cybersecurity Insiders.

Ransomware 114

Ransomware Encryption Manufacturing Cryptocurrency 114