Graham Cluley

NOVEMBER 25, 2021

Security researchers are warning biomanufacturing facilities around the world that they are being targeted by a sophisticated new strain of malware, known as Tardigrade. Read more in my article on the Tripwire State of Security blog.

Manufacturing 145

Manufacturing Malware Data breaches Ransomware 145

Schneier on Security

JUNE 21, 2019

In 2017, some Android phones came with a backdoor pre-installed : Criminals in 2017 managed to get an advanced backdoor preinstalled on Android devices before they left the factories of manufacturers, Google researchers confirmed on Thursday. That meant the malware could directly tamper with every installed app.

Firmware 279

Firmware Manufacturing Malware Mobile 279

Digital Shadows

AUGUST 17, 2022

The cyber risk facing the manufacturing sector is likely greater at this point than ever before. The post Stop the line: Cyber threats facing manufacturing first appeared on Digital Shadows. Cybercriminals have demonstrably pivoted.

Manufacturing 126

Manufacturing Cyber threats Cyber Risk Risk 126

Krebs on Security

APRIL 19, 2019

Marcus Hutchins, a 24-year-old blogger and malware researcher arrested in 2017 for allegedly authoring and selling malware designed to steal online banking credentials, has pleaded guilty to criminal charges of conspiracy and to making, selling or advertising illegal wiretapping devices. The government says between July 2012 and Sept.

Banking 224

Banking Malware Advertising Government 224

Security Boulevard

JUNE 8, 2023

Whether it’s production lines halted by a malware attack causing millions of lost revenue, or a cyber-espionage attempt that stealthily infiltrates your network and steals your trade secrets, countless plausible scenarios threaten cybersecurity in manufacturing in the modern hyperconnected, digital age.

Manufacturing 115

Manufacturing Risk Digital transformation Cybersecurity 115

The Last Watchdog

MAY 15, 2023

These include ransomware targeting backend servers, distributed denial of service (DDoS) attacks, destructive malware, and even weaponizing charging stations to deploy malware. Rising regulations As the attack surface broadens, original equipment manufacturers (OEMs) find themselves in a unique position.

Malware 230

Malware Manufacturing IoT Software 230

Security Affairs

DECEMBER 26, 2024

In November 2024, the Akamai Security Intelligence Research Team (SIRT) observed increased activity targeting the URI /cgi-bin/cgi_main.cgi , linked to a Mirai-based malware campaign exploiting an unassigned RCE vulnerability in DVR devices, including DigiEver DS-2105 Pro. ” reads the analysis published by Akamai. in newer ones.

Manufacturing 88

Manufacturing Malware Firmware IoT 88

Malwarebytes

MARCH 2, 2022

Hino suspended all operations at its Koga facility, which manufactures large and midsize trucks for export and domestic sale, and its Hamura plant, which makes small trucks and handles production for Toyota. Kojima is a business partner of the Toyota Motor Corporation that manufactures interior and exterior automotive components.

Manufacturing 133

Manufacturing Government Ransomware Malware 133

Schneier on Security

APRIL 7, 2022

The operation copied and removed malware from vulnerable internet-connected firewall devices that Sandworm used for command and control (C2) of the underlying botnet. The botnet “targets network devices manufactured by WatchGuard Technologies Inc. WatchGuard) and ASUSTek Computer Inc. Those devices are still vulnerable.

Manufacturing 273

Manufacturing Firewall Malware Internet 273

Security Affairs

NOVEMBER 8, 2024

” Newpark Resources pointed out that its manufacturing and field operations remain largely unaffected, continuing with established downtime procedures despite the ransomware attack. The company did not share details about the attack either the family of malware that infected its systems.

Ransomware 122

Ransomware Manufacturing Malware Hacking 122

Schneier on Security

SEPTEMBER 1, 2021

Citizen Lab is reporting on two zero-click iMessage exploits, in spyware sold by the cyberweapons arms manufacturer NSO Group to the Bahraini government. These are particularly scary exploits, since they don’t require to victim to do anything, like click on a link or open a file. More on this here.

Spyware 343

Spyware Manufacturing Government Hacking 343

Security Affairs

OCTOBER 30, 2022

The BlackByte ransomware group claims to have compromised Asahi Group Holdings, a precision metal manufacturing and metal solution provider. The post BlackByte ransomware group hit Asahi Group Holdings, a precision metal manufacturing and metal solution provider appeared first on Security Affairs. Asahi Group Holdings, Ltd.

Manufacturing 141

Manufacturing Ransomware Hacking Data breaches 141

Malwarebytes

JUNE 28, 2024

Temu purports to be an online shopping platform, but it is dangerous malware, surreptitiously granting itself access to virtually all data on a user’s cellphone.” The online webshop pressures manufacturers to lower their prices even further to appease discount-seeking customers, leaving those manufacturers with little to no profit in return.

Malware 145

Malware Manufacturing Spyware Mobile 145

Security Affairs

JANUARY 12, 2022

Experts warn of a new variant of the RedLine malware that is distributed via emails as fake COVID-19 Omicron stat counter app as a lure. The malicious code can also act as a first-stage malware. SecurityAffairs – hacking, RedLine malware). This variant uses 207[.]32.217.89 as its C2 server through port 14588. 154.167.91

Malware 145

Malware Manufacturing Cryptocurrency Cybercrime 145

Security Affairs

SEPTEMBER 13, 2024

Researchers uncovered an Android malware, dubbed Vo1d, that has already infected nearly 1.3 Doctor Web researchers uncovered a malware, tracked as Vo1d , that infected nearly 1.3 Unfortunately, often manufacturers sell older OS versions as newer ones. million Android devices in 197 countries.

Malware 140

Malware Firmware Antivirus Manufacturing 140

SecureList

MARCH 20, 2024

Introduction Malware for mobile devices is something we come across very often. million malware, adware, and riskware attacks on mobile devices. Last month, we wrote a total of four private crimeware reports on Android malware, three of which are summarized below. In 2023 , our technologies blocked 33.8 and sends it to the C2.

Malware 129

Malware Mobile Firmware Spyware 129

The Hacker News

OCTOBER 16, 2024

A new spear-phishing campaign targeting Brazil has been found delivering a banking malware called Astaroth (aka Guildma) by making use of obfuscated JavaScript to slip past security guardrails.

Banking 127

Banking Phishing Malware Retail 127

Adam Levin

JUNE 8, 2020

Japanese automotive manufacturer Honda is investigating a possible ransomware attack that has caused company-wide network outages. ” EKANS (snake spelled backwards) is what is known as an Industrial Control System, or ICS, malware variant that specifically targets and disables factories and heavy equipment. .

Ransomware 283

Ransomware Manufacturing Malware Data breaches 283

Adam Levin

MARCH 23, 2020

Update your camera’s firmware and software: Whether it’s an external camera or one built into your laptop or tablet, check for manufacturer updates and always keep your camera’s software and firmware fully up to date because patches are often released specifically to patch security vulnerabilities.

Firmware 219

Firmware Manufacturing Passwords Software 219

Graham Cluley

MARCH 6, 2024

Chinese mini PC manufacturer ACEMAGIC has made life a bit more interesting for its customers, by admitting that it has also been throwing in free malware with its products.

Malware 116

Malware Manufacturing 116

Security Affairs

NOVEMBER 9, 2024

” The research targeted a CMU unit manufactured by Visteon, with software initially developed by Johnson Controls Inc. This quick compromise allows vehicles to be targeted during valet service, ride-sharing, or through USB malware. x) may also be vulnerable. ” concludes the report.

Hacking 128

Hacking Firmware Software Manufacturing 128

Krebs on Security

JUNE 25, 2019

” What follows is a deep dive into the identity of that Chinese vendor, which appears to have a long and storied history of pushing the envelope on mobile malware. com — were implicated in propagating the Triada malware. “Yehuo” ( ? ? ) Two of those domains registered to tosaka1027@gmail.com — elsyzsmc[.]com

Mobile 275

Mobile Technology Manufacturing Malware 275

Security Affairs

FEBRUARY 10, 2025

. “XE Group transitioned from credit card skimming to targeted information theft, marking a significant shift in their operational priorities.Their attacks now target supply chains in the manufacturing and distribution sectors, leveraging new vulnerabilities and advanced tactics.” ” reads the analysis published by Intezer.

Manufacturing 110

Manufacturing Cybercrime Passwords Authentication 110

SecureList

OCTOBER 15, 2024

It uses the CPUID instruction to obtain information about the processor manufacturer. The malware uses different strings to load libraries and functions required for execution. In particular, Avast and AVG solutions are of interest to the malware. If the CPU is not from Intel or AMD, it terminates execution. dll” library.

Malware 143

Malware Encryption Architecture Phishing 143

Malwarebytes

MARCH 5, 2022

The Formbook malware is an information stealer that is in use by many threat actors. Manufacturer's Name and Country of Origin. The embedded object downloaded a remote template that exploits CVE-2017-11882 to download and execute the FormBook malware. Latest Delivery Date and Shipment Terms. Malwarebytes. Exploit blocked.

Malware 136

Malware Manufacturing Marketing 136

Heimadal Security

DECEMBER 13, 2023

Researchers warn Lazarus threat actors still exploit known Log4j vulnerability to infect devices with new DLang malware strains. Hackers target manufacturing, agricultural, and physical security companies that failed to apply existing patches against Log4Shell vulnerability.

Malware 110

Malware Manufacturing Cybersecurity 110

Security Affairs

SEPTEMBER 2, 2022

Researchers attribute the Raspberry Robin malware to the Russian cybercrime group known as Evil Corp group. IBM Security X-Force researchers discovered similarities between a component used in the Raspberry Robin malware and a Dridex malware loader, which was part of the malicious operations of the cybercrime gang Evil Corp.

Cybercrime 123

Cybercrime Malware Backups Manufacturing 123

Security Boulevard

JANUARY 20, 2025

How cars became the worst product category for privacy Session Covers the extensive data collection (and subsequent sharing with car manufacturers and their affiliates) enabled by modern vehicles; they can collect way beyond location data. Malware campaigns covered generally target/affect the end user.

Surveillance 97

Surveillance Malware Data breaches Scams 97

Security Affairs

DECEMBER 12, 2023

Cisco Talos researchers tracked the campaign as Operation Blacksmith, the nation-state actors are employing at least three new DLang -based malware families. Two of these malware strains are remote access trojans (RATs), respectively tracked as NineRAT and “DLRAT” The former relies on Telegram bots and channels for C2 communications.

Malware 130

Malware Data collection Manufacturing Healthcare 130

Security Affairs

MARCH 12, 2025

“The botnet exploits this vulnerability by injecting a payload that downloads and executes a cleartext shell dropper named dropbpb.sh, responsible for downloading the malware binaries and executing them on the compromised device.” 70) via HTTP on port 81. It processes encrypted data over a RAW socket, limiting further analysis.

IoT 72

IoT Malware Encryption DDOS 72

Security Affairs

FEBRUARY 12, 2025

The Sarcoma ransomware group announced a breach of the Taiwanese printed circuit board (PCB) manufacturing giant Unimicron. The Sarcoma ransomware group claims to have breached Taiwanese PCB manufacturer Unimicron, leaked sample files, and threatened a full data release if no ransom is paid by Tuesday, February 20, 2025.

Computers and Electronics 77

Computers and Electronics Ransomware Manufacturing Data breaches 77

SecureList

OCTOBER 6, 2022

During the pandemic, lockdowns forced people to stay at home and do their shopping online, which was mirrored in point-of-sale (PoS) and ATM malware activity, as certain regions saw malicious transactions drop significantly. Perpetrators continue to spread already-existing, widely used malware to attack PoS terminals and ATMs.

Malware 143

Malware Banking Software Cybercrime 143

Security Affairs

DECEMBER 31, 2021

Researchers devised a series of attacks against SSDs that could allow to implant malware in a location that is not monitored by security solutions. Korean researchers devised a series of attacks against solid-state drives (SSDs) that could allow to implant malware in specific memory locations bypassing security solutions.

Malware 145

Malware Firmware Manufacturing Media 145

The Hacker News

JUNE 3, 2024

The North Korea-linked threat actor known as Andariel has been observed using a new Golang-based backdoor called Dora RAT in its attacks targeting educational institutes, manufacturing firms, and construction businesses in South Korea.

Manufacturing 123

Manufacturing Education Malware Security Intelligence 123

The Hacker News

SEPTEMBER 15, 2023

The attacks are reaching victims mainly in Southern Europe and North America across different segments, led by the manufacturing services and technology

Accountability 132

Accountability Manufacturing Malware Technology 132

SecureWorld News

APRIL 11, 2024

The Raspberry Robin malware, a heavily obfuscated Windows worm first identified in late 2021, has become one of the most prevalent threats facing enterprises today. Jason Soroko, Senior Vice President of Product at Sectigo, discussed the sophistication of this malware.

Malware 104

Malware IoT Ransomware Manufacturing 104

Security Affairs

NOVEMBER 13, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. The Volt Typhoon group has been active since at least mid-2021 it carried out cyber operations against critical infrastructure.

VPN 122

VPN Government Malware Manufacturing 122