2019 and Manufacturing - Information Management Today

IoT devices at major Manufacturers infected with crypto-miner

Security Affairs

FEBRUARY 8, 2020

Hackers have infected with a piece of malware some IoT devices running Windows 7 designed by three of the world’s largest manufacturers. The experts reported that several IoT devices at some major manufacturers have been infected with a cryptocurrency miner in October 2019. ” reads the report p ublished by TrapX.”First,

Manufacturing

Manufacturing IoT Communications Risk

5 IoT Security Predictions for 2019

Security Affairs

DECEMBER 21, 2018

2018 was the year of the Internet of Things (IoT), massive attacks and various botnets hit smart devices, These are 5 IoT Security Predictions for 2019. 2019 will continue these trends but at a faster pace. Upcoming government standardization efforts will continue to increase substantially in 2019. Pierluigi Paganini.

IoT

IoT Security Manufacturing Privacy

Cyber-Criminal espionage Operation insists on Italian Manufacturing

Security Affairs

MAY 22, 2020

ZLab researchers spotted a new malicious espionage activity targeting Italian companies operating worldwide in the manufacturing sector. The group behind this activity is the same we identified in the past malicious operations described in Roma225 (12/2018), Hagga (08/2019), Mana (09/2019), YAKKA (01/2020). Introduction.

Manufacturing

Manufacturing e-Delivery IT Security

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

Android devices could be hacked by playing a video due to CVE-2019-2107 flaw

Security Affairs

JULY 28, 2019

Playing a video on Android devices could be a dangerous operation due to a critical CVE-2019-2107 RCE flaw in Android OS between version 7.0 The vulnerability, tracked as CVE-2019-2107, affected Android OS between version 7.0 The vulnerability, tracked as CVE-2019-2107, affected Android OS between version 7.0 Pierluigi Paganini.

Manufacturing

Manufacturing Security IT Information Security

Winnti Group was planning a devastating supply-chain attack against Asian manufacturer

Security Affairs

OCTOBER 14, 2019

Winnti Group is back with a new modular Win backdoor that was used to infect the servers of a high-profile Asian mobile hardware and software manufacturer. The organizations is major mobile hardware and software manufacturer based in Asia, experts contacted it to alert the company of the infection. Pierluigi Paganini.

Manufacturing

Manufacturing Paper Communications IT

The number of ICS flaws in 2020 was 24,72% higher compared to 2019

Security Affairs

FEBRUARY 7, 2021

According to a report published by the industrial cybersecurity firm Claroty that focuses on the second half of 2020, the number of flaws discovered in industrial control system (ICS) products in 2020 (893 flaws) was 24,72% higher compared to 2019. ” reads the report published by Claroty. . continues the report. Pierluigi Paganini.

Manufacturing

Manufacturing Risk Marketing Security

GreyEnergy: Welcome to 2019

Security Affairs

JANUARY 16, 2019

In order to investigate the attribution of the sample, Cybaze-Yoroi Zlab researchers performed a comparative analysis of the January 2019’s sample with respect to technical indicators and TTP published in previous articles. The remote destination ends to the 217.12.204.100 IP address, owned by an Ukrainian contractor and manufacturer company.

Phishing

Phishing Manufacturing Encryption IT

CVE-2019-2234 flaws in Android Camera Apps exposed millions of users surveillance

Security Affairs

NOVEMBER 19, 2019

Experts found multiple flaws (CVE-2019-2234) in the Android camera apps provided by Google and Samsung that could allow attackers to spy on users. “After disclosing these findings to Google, they shared the report with other Android manufacturers, and Samsung confirmed the vulnerabilities existed in their smartphones as well. .

Manufacturing

Manufacturing Metadata Security awareness IoT

IPG Photonics high-performance laser developer hit with ransomware

Security Affairs

SEPTEMBER 20, 2020

manufacturer of high-performance fiber lasers for diverse applications and industries was hit by a ransomware attack that disrupted its operations. IPG Photonics manufactures high-performance fiber lasers, amplifiers, and laser systems for diverse applications and industries. billion revenue in 2019. billion revenue in 2019.

Ransomware

Ransomware Manufacturing Encryption Access

Nefilim ransomware operators leak data stolen from Whirlpool

Security Affairs

DECEMBER 28, 2020

The American multinational manufacturer and marketer of home appliances Whirlpool was hit by the Nefilim ransomware gang. The company has over 77,000 employees at 59 manufacturing & technology research centers worldwide and generated $20 billion in revenue for 2019.

Ransomware

Ransomware Manufacturing Marketing Archiving

Thunderbolt Flaws Expose Millions of PCs to Hands-On Hacking

WIRED Threat Level

MAY 10, 2020

The so-called Thunderspy attack takes less than five minutes to pull off with physical access to a device, and affects any PC manufactured before 2019.

Manufacturing

Manufacturing Access Security

Exclusive: TIM’s Red Team Research finds 4 zero-days in WOWZA Streaming Engine product

Security Affairs

AUGUST 5, 2020

Today, the TIM’s Red Team Research led by Massimiliano Brolli, discovered 4 new vulnerabilities that have been addressed by the manufacturer WOWZA Streaming Engine, between the end of 2019 and July 2020.

Manufacturing

Manufacturing Government Access Security

Predicting the top 7 trends in manufacturing for 2020

OpenText Information Management

JANUARY 3, 2020

After starting the year strongly, manufacturing left 2019 faced with shrinking production and global uncertainty. Deloitte suggests manufacturers should increase the resilience in their operations while building and improving their ‘digital muscle’.

Manufacturing

Japanese defense contractors Pasco and Kobe Steel disclose security breaches

Security Affairs

FEBRUARY 7, 2020

Pasco is Japan’s largest geospatial provider and Kobe Steel is one of the major steel manufacturers. The breach was detected almost eight months ago, on June 28, 2019, with the delay being attributed to the increased complexity of the investigation caused by the attackers deleting activity logs.

Security

Security Manufacturing Data breaches Access

Flaws in 4G Routers of various vendors put millions of users at risk

Security Affairs

AUGUST 13, 2019

Security expert discovered multiple flaws in 4G routers manufactured by several companies, some of them could allow attackers to take over the devices. G Richter, a security researcher at Pen Test Partners discovered multiple vulnerabilities 4G routers manufactured by different vendors. high severity CVSS v3. 0 base score) .

Risk

Risk Manufacturing Passwords Authentication

Botnet operators target multiple zero-day flaws in LILIN DVRs

Security Affairs

MARCH 23, 2020

Experts observed multiple botnets exploiting zero-day vulnerabilities in DVRs for surveillance systems manufactured by Taiwan-based LILIN. Botnet operators are exploiting several zero-day vulnerabilities in digital video recorders (DVRs) for surveillance systems manufactured by Taiwan-based LILIN-.

Manufacturing

Manufacturing Passwords Access Security

Hackers hit Luxottica, production stopped at two Italian plants

Security Affairs

SEPTEMBER 22, 2020

As a vertically integrated company, Luxottica designs, manufactures, distributes and retails its eyewear brands, including LensCrafters, Sunglass Hut, Apex by Sunglass Hut, Pearle Vision, Target Optical, Eyemed vision care plan, and Glasses.com. billion in revenue for 2019. Luxottica Group S.p.A.

Retail

Retail Manufacturing Ransomware Security

Critical flaw could have allowed attackers to control traffic lights

Security Affairs

JUNE 6, 2020

A critical vulnerability in traffic light controllers manufactured by SWARCO could have been exploited by attackers to disrupt traffic lights. SWARCO is the world’s largest manufacturer of signal heads and the number two internationally for reflective glass beads. .

Manufacturing

Manufacturing Cybersecurity Access Security

DoppelPaymer ransomware gang hit Foxconn electronics giant

Security Affairs

DECEMBER 7, 2020

Electronics contract manufacturer Foxconn is the last victim of the DoppelPaymer ransomware operators that hit a Mexican facility. Foxconn manufactures electronic products for major American, Canadian, Chinese, Finnish, and Japanese companies. The plan is located in Ciudad Juárez, Chihuahua, Mexico. ” reported BleepingComputer.

Ransomware

Ransomware Manufacturing Encryption Cybersecurity

Data-Wiping Attacks Hit Outdated Western Digital Devices

Data Breach Today

JUNE 28, 2021

Manufacturer Stopped Supporting Targeted Network-Attached Storage Devices in 2015 Owners of Western Digital My Book Live devices have seen their data remotely wiped by attackers targeting a flaw first detailed in 2019.

Manufacturing

Manufacturing Security

Mitsubishi Electric Corp. was hit by a new cyberattack

Security Affairs

NOVEMBER 20, 2020

The breach was detected almost eight months ago, on June 28, 2019, with the delay being attributed to the increased complexity of the investigation caused by the attackers deleting activity logs. The intrusion took place on June 28, 2019, and the company launched an investigation in September 2019.

Manufacturing

Manufacturing Cloud Cybersecurity Security

SweynTooth Bluetooth flaws affect devices from major system-on-a-chip (SoC) vendors

Security Affairs

FEBRUARY 15, 2020

We also urge SoC vendors and IoT product manufacturers to be aware of such security issues and to initiate focused effort in security testing.” “The exploitation of the vulnerabilities translates to dangerous attack vectors against many IoT products released in 2018-2019. 2.60 (CVE-2019-16336) and NXP KW41Z 3.40

IoT

IoT Security Manufacturing Communications

QSnatch malware infected over 62,000 QNAP NAS Devices

Security Affairs

JULY 28, 2020

The malicious code specifically targets QNAP NAS devices manufactured by Taiwanese company QNAP, it already infected over 62,000 QNAP NAS devices. In November 2019, security experts first spotted the QSnatch malware that at the time infected thousands of QNAP NAS devices worldwide. Webshell functionality for remote access.

Manufacturing

Manufacturing Cybersecurity Encryption Passwords

A new wave of ech0raix ransomware attacks targets QNAP NAS devices

Security Affairs

DECEMBER 27, 2021

“It is important to note that there is a free decryptor for files locked with an older version (before July 17th, 2019) of eCh0raix ransomware. In 2019, Anomali researchers reported a wave of eCh0raix attacks against Synology NAS devices, threat actors conducted brute-force attacks against them. TXTT” extension. and 1.0.6).”

Ransomware

Ransomware Encryption Manufacturing Passwords

Chinese hackers exploited a Trend Micro antivirus zero-day used in Mitsubishi Electric hack

Security Affairs

JANUARY 25, 2020

The breach was detected almost eight months ago, on June 28, 2019, with the delay being attributed to the increased complexity of the investigation caused by the attackers deleting activity logs. “On The intrusion took place on June 28, 2019, and the company launched an investigation in September 2019.

Manufacturing

Manufacturing Data breaches Access Sales

TinyNuke banking malware targets French organizations

Security Affairs

DECEMBER 13, 2021

The TinyNuke malware is back and now was used in attacks aimed at French users working in manufacturing, technology, construction, and business services. The attackers used invoice-themed lures targeting entities in manufacturing, industry, technology, finance, and other verticals. .

Manufacturing

Manufacturing Business Services Communications IT

Iran-linked APT group Pioneer Kitten sells access to hacked networks

Security Affairs

SEPTEMBER 1, 2020

“The adversary is particularly interested in exploits related to VPNs and network appliances , including CVE-2019-11510, CVE-2019-19781, and most recently CVE-2020-5902; reliance on exploits such as these lends to an opportunistic operational model.” ” reads the report published by Crowdstrike.

Access

Access Financial Services Retail Insurance

Researchers found alleged sensitive documents of NATO and Turkey

Security Affairs

OCTOBER 12, 2020

Researchers from the US-based firm Cyble recently came across a post shared by an unknown threat actor that goes online with the moniker Spectre123, where he has allegedly leaked the sensitive documents of NATO and Havelsan (Turkish Military/defence manufacturer). ” reads the post published by Cyble.

Military

Military Manufacturing Phishing Government

DoppelPaymer crew leaked internal confidential documents belonging to aerospace companies

Security Affairs

APRIL 10, 2020

Visser Precision is a parts maker for many companies in several industries, including aerospace, automotive, industrial and manufacturing. Some documents provide details about the SpaceX’s manufacturing partner program. The DoppelPaymer gang uploaded a portion of the stolen documents to a website that is publicly accessible.

Ransomware

Ransomware Manufacturing Military Cybersecurity

Industry Guide to Manufacturing: Four trends for the Intelligent and Connected manufacturer

OpenText Information Management

MAY 2, 2019

While the manufacturing sector has continued to grow steadily over the last decade, the forecast from the US National Association of Manufacturers is for growth in the US to slow in 2019 due to skills shortages and the high cost of raw materials.

Manufacturing

Manufacturing Digital transformation Analytics

Lazarus APT uses DTrack backdoor in attacks against LATAM and European orgs

Security Affairs

NOVEMBER 16, 2022

DTrack is a modular backdoor used by the Lazarus group since 2019 , it was employed in attacks against a wide variety of targets, from financial environments to a nuclear power plan. Despite this, Lazarus has not changed the backdoor much since 2019, when it was initially discovered.” ” concludes the report.

Manufacturing

Manufacturing Education Encryption IT

New financially motivated attacks in Western Europe traced to Russian-speaking threat actors

Security Affairs

MARCH 27, 2020

At least two companies operating in pharmaceutical and manufacturing sectors have been affected. If the latter are the ones to blame, this marks the first time the gang has launched the attacks against pharmaceutical and manufacturing companies and may indicate a significant shift in their modus operandi. . Downloader and FlawedAmmyy.

Healthcare

Healthcare Manufacturing Cybersecurity Retail

Black Basta ransomware gang hacked Hyundai Motor Europe

Security Affairs

FEBRUARY 9, 2024

In December 2019, German media reported that hackers suspected to be members of the Vietnam-linked APT Ocean Lotus ( APT32 ) group breached the networks of the car manufacturers BMW and Hyundai. Hyundai Italy has notified the privacy watchdog and hired external cybersecurity experts to determine the scope of the incident.

Ransomware

Ransomware Data breaches Manufacturing Sales

Belgium telecom operators Proximus and Orange drop Huawei

Security Affairs

OCTOBER 10, 2020

Major Belgium’s telecom operator Proximus announced on Friday that it will gradually replace its equipment from the Chinese manufacturer Huawei. One of the major Belgium telecom operator Proximus announced on Friday that it will gradually replace its equipment from the Chinese manufacturer Huawei.

Manufacturing

Manufacturing Risk Communications Security

Law enforcement operation seized Ragnar Locker group’s infrastructure

Security Affairs

OCTOBER 19, 2023

The ransomware operation has been active since late December 2019, the FBI published two flash alert to warn of the operation of the group. This is an important achievement in the fight against cybercrime. Both FBI and Europol declined to comment on the events. More details are expected to be released tomorrow.

Ransomware

Ransomware Financial Services Manufacturing Government

Australian Cyber Security Centre warns of a surge of LockBit 2.0 ransomware attacks

Security Affairs

AUGUST 9, 2021

Most of the attacks have been reported in July, the organizations hit by the ransomware gang operate in professional services, construction, manufacturing, retail, and food industries. The LockBit ransomware gang has been active since September 2019, in June the group announced the LockBit 2.0 in Australia since 2020.

Ransomware

Ransomware Security Retail Manufacturing

LockBit Ransomware gang claims to have stolen SpaceX confidential data from Maximum Industries

Security Affairs

MARCH 14, 2023

Maximum Industries is a full-service, piece-part production, and contract manufacturing facility. The ransomware gang hacked the systems of the production firm, which also provides its services to SpaceX, and stole its data, including files of the American spacecraft manufacturer and a satellite communications corporation.

Ransomware

Ransomware Manufacturing Communications IT

Security Affairs newsletter Round 250

Security Affairs

FEBRUARY 9, 2020

Sudo CVE-2019-18634 flaw allows Non-Privileged Linux and macOS Users run commands as Root. Google mistakenly shared private videos of some users with others in 2019. IoT devices at major Manufacturers infected with crypto-miner. Attackers are hacking NSC Linear eMerge E3 building access systems to launch DDoS attacks.

Security

Security Ransomware IoT Manufacturing

Qualcomm and MediaTek Wi-Fi chips impacted by Kr00k-Like attacks

Security Affairs

AUGUST 8, 2020

Wi-Fi chips manufactured by Qualcomm and MediaTek are impacted by vulnerabilities similar to the Kr00k issue disclosed early this year. Earlier this year, experts from ESET disclosed the Kr00k , a new high-severity hardware vulnerability, that affects Wi-Fi chips manufactured by Broadcom and Cypress.

Encryption

Encryption Manufacturing IoT Communications

Japan suspects HGV missile data leak in Mitsubishi security breach

Security Affairs

MAY 21, 2020

The breach was detected almost eight months ago, on June 28, 2019, with the delay being attributed to the increased complexity of the investigation caused by the attackers deleting activity logs. The intrusion took place on June 28, 2019, and the company launched an investigation in September 2019.

Security

Security Military Manufacturing Personal data

China-linked Winnti APT steals intellectual property from companies worldwide

Security Affairs

MAY 4, 2022

A sophisticated cyberespionage campaign, dubbed Operation CuckooBees, conducted by the China-linked Winnti group remained undetected since at least 2019. The attackers targeted intellectual property developed by the victims, including sensitive documents, blueprints, diagrams, formulas, and manufacturing-related proprietary data.”

Manufacturing

Manufacturing Archiving Access Cybersecurity

Advantech addressed code execution and DoS flaws in WebAccess software

Security Affairs

APRIL 4, 2019

The software is widely adopted in many sectors worldwide, such as critical manufacturing, energy, and water and wastewater. CVE-2019-6552 has been assigned to these vulnerabilities. CVE-2019-6550 has been assigned to these vulnerabilities. CVE-2019-6550 has been assigned to these vulnerabilities. of WebAccess.

Manufacturing

Manufacturing Access Security IT

eCh0raix ransomware is back and targets QNAP NAS devices again

Security Affairs

JUNE 6, 2020

The eCh0raix ransomware was appeared in the threat landscape in June 2019 by experts at security firms Intezer and Anomali. The ransomware targets poorly protected or vulnerable NAS servers manufactured by Taiwan-based QNAP Systems, attackers exploits known vulnerabilities or carry out brute-force attacks.

Ransomware

Ransomware Encryption Manufacturing Passwords

Kr00k Wi-Fi Encryption flaw affects more than a billion devices

Security Affairs

FEBRUARY 26, 2020

A high-severity hardware vulnerability, dubbed Kr00k , in Wi-Fi chips manufactured by Broadcom and Cypress expose over a billion devices to hack. Cybersecurity researchers from ESET have discovered a new high-severity hardware vulnerability, dubbed Kr00k , that affects Wi-Fi chips manufactured by Broadcom and Cypress.

Encryption

Encryption Manufacturing Paper Communications

IoT devices at major Manufacturers infected with crypto-miner

5 IoT Security Predictions for 2019

Webinars

Trending Sources

Cyber-Criminal espionage Operation insists on Italian Manufacturing

Webinars

Android devices could be hacked by playing a video due to CVE-2019-2107 flaw

Winnti Group was planning a devastating supply-chain attack against Asian manufacturer

The number of ICS flaws in 2020 was 24,72% higher compared to 2019

GreyEnergy: Welcome to 2019

CVE-2019-2234 flaws in Android Camera Apps exposed millions of users surveillance

IPG Photonics high-performance laser developer hit with ransomware

Nefilim ransomware operators leak data stolen from Whirlpool

Thunderbolt Flaws Expose Millions of PCs to Hands-On Hacking

Exclusive: TIM’s Red Team Research finds 4 zero-days in WOWZA Streaming Engine product

Predicting the top 7 trends in manufacturing for 2020

Japanese defense contractors Pasco and Kobe Steel disclose security breaches

Flaws in 4G Routers of various vendors put millions of users at risk

Botnet operators target multiple zero-day flaws in LILIN DVRs

Hackers hit Luxottica, production stopped at two Italian plants

Critical flaw could have allowed attackers to control traffic lights

DoppelPaymer ransomware gang hit Foxconn electronics giant

Data-Wiping Attacks Hit Outdated Western Digital Devices

Mitsubishi Electric Corp. was hit by a new cyberattack

SweynTooth Bluetooth flaws affect devices from major system-on-a-chip (SoC) vendors

QSnatch malware infected over 62,000 QNAP NAS Devices

A new wave of ech0raix ransomware attacks targets QNAP NAS devices

Chinese hackers exploited a Trend Micro antivirus zero-day used in Mitsubishi Electric hack

TinyNuke banking malware targets French organizations

Iran-linked APT group Pioneer Kitten sells access to hacked networks

Researchers found alleged sensitive documents of NATO and Turkey

DoppelPaymer crew leaked internal confidential documents belonging to aerospace companies

Industry Guide to Manufacturing: Four trends for the Intelligent and Connected manufacturer

Lazarus APT uses DTrack backdoor in attacks against LATAM and European orgs

New financially motivated attacks in Western Europe traced to Russian-speaking threat actors

Black Basta ransomware gang hacked Hyundai Motor Europe

Belgium telecom operators Proximus and Orange drop Huawei

Law enforcement operation seized Ragnar Locker group’s infrastructure

Australian Cyber Security Centre warns of a surge of LockBit 2.0 ransomware attacks

LockBit Ransomware gang claims to have stolen SpaceX confidential data from Maximum Industries

Security Affairs newsletter Round 250

Qualcomm and MediaTek Wi-Fi chips impacted by Kr00k-Like attacks

Japan suspects HGV missile data leak in Mitsubishi security breach

China-linked Winnti APT steals intellectual property from companies worldwide

Advantech addressed code execution and DoS flaws in WebAccess software

eCh0raix ransomware is back and targets QNAP NAS devices again

Kr00k Wi-Fi Encryption flaw affects more than a billion devices

Stay Connected