Security Affairs

OCTOBER 4, 2021

ChamelGang APT is a new cyberespionage group that focuses on fuel and energy organizations and aviation industry in Russia. ChamelGang is a new APT group that was first spotted in March by researchers at security firm Positive Technologies, it targets Russian companies in the energy and aviation industry.

Energy and Utilities 123

Energy and Utilities Malware Technology Antivirus 123

Security Affairs

MAY 19, 2020

Spear-phishing is a rapidly emerging threat. It’s more specific than generic phishing attempts and often targets a single person or company. Data from Barracuda cybersecurity researchers identified a 667% increase in spear-phishing attacks between the end of February and the following month.

Energy and Utilities 125

Energy and Utilities Phishing Advertising Technology 125

Joseph Steinberg

MAY 12, 2021

And, just before the COVID-19 pandemic hit the United States, the Department of Homeland Security alerted information security professionals that a ransomware attack delivered via phishing emails had adversely impacted operations at one of the country’s natural gas processors. Nor were those isolated incidents.

Energy and Utilities 219

Energy and Utilities Ransomware Artificial Intelligence Cyber Attacks 219

SecureList

AUGUST 19, 2024

They have been targeting entities in multiple sectors, including governmental institutions, financial companies, energy and oil and gas companies, among others. The eagle goes phishing The spreading method used by BlindEagle is via phishing emails. Spam campaigns impersonating financial and banking entities are also common.

Phishing 135

Phishing Energy and Utilities Malware Banking 135

Krebs on Security

DECEMBER 12, 2018

But in a marketing email sent to FICO members on Tuesday advertising its new benchmarking feature, FICO accidentally exposed the FICO Cyber Risk Score of energy giant ExxonMobil. The October analysis by the Chamber and FICO gives U.S. businesses an overall score of 687 on a scale of 300-850. ARE YOU EXPERIANSED?

Cyber Risk 243

Cyber Risk Energy and Utilities Risk Marketing 243

SecureList

DECEMBER 16, 2021

In June 2021, Kaspersky ICS CERT experts identified malware whose loader has some similarities to the Manuscrypt malware, which is part of the Lazarus APT group’s arsenal. We dubbed the newly-identified malware PseudoManuscrypt. In 2020, the group used Manuscrypt in attacks on defense enterprises in different countries.

Spyware 135

Spyware Energy and Utilities Malware VPN 135

Security Affairs

MARCH 25, 2022

has indicted four Russian government employees for their role in cyberattacks targeting hundreds of companies and organizations in the energy sector worldwide between 2012 and 2018. The conspirators designed the Triton malware to prevent the refinery’s safety systems from functioning (i.e., ” continues the DoJ.

Government 115

Government Energy and Utilities Malware Hacking 115

SecureList

APRIL 27, 2023

Further analysis revealed that the malware is signed with valid certificates and appears to have a connection to the threat actor Winnti, a connection established through several overlaps such as shared infrastructure, code signing and victimology. The threat actor utilized embedded Proton Mail and Gmail addresses for data exfiltration.

Energy and Utilities 145

Energy and Utilities Malware Government Manufacturing 145

Security Affairs

MAY 9, 2020

30), we have observed three SilverTerrier actors/groups launch a series of 10 COVID-19 themed malware campaigns.” ” Between January 30 and April 30, 2020, the researchers observed three SilverTerrier groups launching ten COVID-19-themed malware campaigns, some of them also targeted organizations involved in the COVID-19 response.

Healthcare 101

Healthcare Government Energy and Utilities Insurance 101

Security Affairs

FEBRUARY 28, 2024

“As early as 2022, APT28 actors had utilized compromised EdgeRouters to facilitate covert cyber operations against governments, militaries, and organizations around the world.” The court order allowed authorities to use the Moobot malware to copy and delete stolen and malicious data and files from compromised routers.

Energy and Utilities 132

Energy and Utilities Government Firewall Malware 132

The Last Watchdog

MARCH 4, 2019

In fact, memory attacks have quietly emerged as a powerful and versatile new class of hacking technique that threat actors in the vanguard are utilizing to subvert conventional IT security systems. Allegedly developed by US and Israeli operatives, Stuxnet was discovered circulating through Iranian nuclear energy facilities in 2010.

Hacking 212

Hacking Energy and Utilities System Administration Accountability 212

SecureList

MARCH 13, 2025

Additionally, Head Mare attacks utilized command-and-control (C2) servers exclusively linked to Twelve prior to these incidents. The attackers also exploited software vulnerabilities, most commonly CVE-2023-38831 in WinRAR through phishing emails. This suggests potential collaboration and joint campaigns between the two groups.

Energy and Utilities 79

Energy and Utilities Software Accountability Phishing 79

eSecurity Planet

SEPTEMBER 14, 2022

As a matter of fact, the most-reported crime in the 2021 Internet Crime Report report was phishing , a social engineering scam wherein the victim receives a deceptive message from someone in an attempt to get the victim to reveal personal information or account credentials or to trick them into downloading malware. Social Tactics.

Social Engineering 120

Social Engineering Energy and Utilities Phishing Internet 120

CyberSecurity Insiders

OCTOBER 26, 2021

Industries such as healthcare and energy and utilities are susceptible and arguably the most vulnerable to ransomware or other cybersecurity incidents. Phishing incident. The AT&T Managed Threat Detection and Response (MTDR) analyst team was notified that a user fell victim to a phishing email.

Cybersecurity 128

Cybersecurity Threat Detection Energy and Utilities Ransomware 128

Security Affairs

SEPTEMBER 9, 2020

K-Electric (KE) (formerly known as Karachi Electric Supply Company / Karachi Electric Supply Corporation Limited) is a Pakistani investor-owned utility managing all three key stages – generation, transmission and distribution – of producing and delivering energy to consumers. million customers and around 10,000 people.

Ransomware 145

Ransomware Energy and Utilities VPN Advertising 145

Thales Cloud Protection & Licensing

NOVEMBER 6, 2019

That pace is unlikely to slow down over the coming years; Pagely noted that organizations are still turning to IoT devices as a way to automate and optimize their business processes as well as save on energy costs. billion in number and generate 79.4 zettabytes (ZB) of data by 2025. Healthcare is in Need of a Check-Up.

IoT 122

IoT Risk Energy and Utilities Healthcare 122

Security Affairs

JULY 2, 2019

Malware is currently delivered from: 'hxxps://customermgmt.net/page/macrocosm' #cybersecurity #infosec — USCYBERCOM Malware Alert (@CNMF_VirusAlert) July 2, 2019. These executables are both downloaders that utilize powershell to load the PUPY RAT. The attacks are targeting U.S. industries and government agencies.

Energy and Utilities 109

Energy and Utilities Malware Advertising InfoSec 109

SecureList

NOVEMBER 23, 2021

Reducing the life cycle of malware. To avoid detection, more and more cybercriminals are adopting the strategy of frequently upgrading malware in their chosen family. The evolution of modern MaaS platforms makes it much easier for malware operators globally to use this strategy. Current attack vectors.

Spyware 137

Spyware Phishing Cybercrime Energy and Utilities 137

SecureList

NOVEMBER 22, 2022

Decreasing CTI quality – unfounded politically motivated cyberthreat attribution, exaggerated threats, lower statement validity criteria due to political pressure and in an attempt to utilize the government’s political narrative to earn additional profits.

Energy and Utilities 130

Energy and Utilities Marketing Government Phishing 130

Security Affairs

APRIL 19, 2023

Mint Sandstorm also used custom tools in selected targets, notably organizations in the energy and transportation sectors. In the last stage of the attack, the subgroup deploys a custom malware variant, such as Drokbk or Soldier instead of using publicly available tools and simple scripts. ” concludes Microsoft.

Energy and Utilities 98

Energy and Utilities Accountability Education Media 98

SecureList

NOVEMBER 26, 2021

The PyInstaller module for Windows contains a script named “Guard” Interestingly, this malware was developed for both Windows and macOS operating systems. The attackers obtain initial access to a system by sending a spear-phishing email to the victim containing a Dropbox download link.

Malware 135

Malware Banking Energy and Utilities Accountability 135

CyberSecurity Insiders

JUNE 3, 2021

This breach, like every major ransomware attack, was likely because of spear phishing, where someone either received the malware via an emailed attachment or clicked on a link that took them to a website that hosted it. The malware was place inside the code. This requires a high level of coding sophistication.

Cybersecurity 136

Cybersecurity Energy and Utilities Social Engineering Phishing 136

SecureList

NOVEMBER 9, 2022

Phishing attacks are going to become even more sophisticated, since a lot of basic tactics have already been tried this year, and businesses learned to repel those. The economic downturn (caused by energy prices, inflation, sanctions, etc.) Malware attacks like ransomware will happen to businesses more frequently.

Cybersecurity 144

Cybersecurity Cyber Insurance Cybercrime IoT 144

CyberSecurity Insiders

FEBRUARY 1, 2022

Most of our current online privacy protocols utilize cryptography to maintain privacy and data integrity. Quantum computing focuses on developing computer technology based on principles that describe how particles and energy react at the atomic and subatomic levels. Phishing and spoofing attacks can be highly covert.

Risk 134

Risk Social Engineering Threat Detection Encryption 134

IT Security Guru

OCTOBER 24, 2024

This attack method utilizes a “clean” URL within the body of the email before redirecting the user to a malicious one upon clicking it. Manufacturing (27%) suffered the most from BEC, phishing, and malspam emails this quarter. RedLine Malware Takes the Top Spot The RedLine Stealer malware was the top malware family in Q3 2024.

Energy and Utilities 73

Energy and Utilities Scams Manufacturing Malware 73

Thales Cloud Protection & Licensing

JULY 21, 2022

The threat of attacks against Critical National Infrastructure (CNI) – energy, utilities, telecommunications, and transportation – is now front of mind for many. Reducing the risk of attacks such as ransomware and malware on CNI will be of paramount importance to the stability of nation states for years to come.

Cyber threats 71

Cyber threats Energy and Utilities Ransomware IoT 71

SecureList

DECEMBER 1, 2023

DroxiDat, a lean variant of SystemBC that acts as a system profiler and simple SOCKS5-capable bot, was detected at an electric utility company. The C2 (command and control) infrastructure for the incident involved an energy-related domain, ‘powersupportplan[.]com’, com’, that resolved to an already suspicious IP host.

Malware 138

Malware Ransomware Encryption Energy and Utilities 138

eSecurity Planet

MARCH 14, 2022

Cobalt Strike – now owned by HelpSystems – provides various packages and tools to detect outdated software, generate malware , test endpoints , or run spear phishing campaigns that maximize success rate. While that’s true, it requires time, effort, and energy. Threat actors manage to grab these tools (e.g.,

Energy and Utilities 131

Energy and Utilities DNS Penetration Testing Ransomware 131

Security Affairs

AUGUST 31, 2022

“The joint efforts of Proofpoint and PwC researchers provide a moderate confidence assessment that recent campaigns targeting the federal government, energy, and manufacturing sectors globally may represent recent efforts by TA423 / Red Ladon.” ” read the report published by the experts.

Energy and Utilities 98

Energy and Utilities Manufacturing Government Media 98

Security Boulevard

APRIL 28, 2021

A few years ago, a group of attackers used the Trojan to deploy SCADA-related plugins against victims in energy and ICS/SCADA networks in Ukraine and around the world. In later rounds, the Trojan spread through spear-phishing emails with malicious Excel or Word files. The malware targeted the Siemens Spirotec Digital Relay.

Energy and Utilities 72

Energy and Utilities Malware DDOS Internet 72

CyberSecurity Insiders

OCTOBER 28, 2022

In another example from this year, a version of the Industroyer malware that spreads via spear phishing emails which are part of cloud-based email systems, got access to power grids and almost shut down power supply to a portion of Ukraine’s capital (lack of or poor implementation of cloud native controls to detect and avoid phishing).

IoT 134

IoT Architecture Energy and Utilities Firewall 134

SecureList

NOVEMBER 25, 2024

The devices were initially infected with Moobot, a Mirai-based malware, which was then used to deploy additional scripts and facilitate targeted attacks against various entities, collect credentials, proxy network traffic, establish reverse SSH tunnels, host spoofed landing pages, and control other remote systems infected with a Python backdoor.

IoT 119

IoT Energy and Utilities Phishing Cryptocurrency 119

SecureList

NOVEMBER 14, 2023

The malware posed as ransomware, demanding money from the victims for “decrypting” their data. UNC4841 deployed new malware designed to maintain presence on a small subset of high-priority targets compromised either before the patch was released or shortly afterwards. Verdict: prediction not fulfilled ❌ 4.

Hacking 141

Hacking Energy and Utilities Media Malware 141

Spinone

MARCH 10, 2019

There are constantly new headlines, blog posts, statistics, and other information pointing to the fact that security breaches, malware, ransomware, data leak events, phishing and other security concerns are not going away. Data is driving business for most organizations who utilize technology to carry out normal business operations.

Ransomware 53

Ransomware Backups Energy and Utilities Encryption 53

Cisco Security

AUGUST 26, 2021

With the addition of Kenna Security into our program we now have over 250 technology partners and over 400 integrations for our mutual customers to utilize. Playbooks allow you to respond to events within your environment such as notifications from a SIEM, suspected phishing emails, or alerts from asset monitoring. Read more here.

Technology 145

Technology Firewall VPN Authentication 145

Security Boulevard

DECEMBER 13, 2024

As 2024 comes to a close, I revisit my forecasts to assess their utility in guiding meaningful decisions. Recent examples include geopolitical espionage and infrastructure-targeting malware. The brutal reality is that cybersecurity predictions are only as valuable as their accuracy. Sources : MIT Technology Review , CSIS Analysis.

Cybersecurity 59

Cybersecurity Energy and Utilities CISO Marketing 59

Security Boulevard

FEBRUARY 28, 2021

The energy firm did not say how many accounts were affected by the breach, which was first reported by MoneySavingExpert.com. In Israel, Iranian state actors attempted, without success, to attack Israeli water utilities last year. Apple Users Targeted by ‘Mysterious’ Malware. Npower App Hack. Critical VMware Vulnerabilities.

Energy and Utilities 145

Energy and Utilities Ransomware DDOS Accountability 145