2020 and Manufacturing - Information Management Today

Gaming hardware manufacturer Razer suffered a data leak

Security Affairs

SEPTEMBER 13, 2020

Gaming hardware manufacturer Razer suffered a data leak, an unsecured database managed by the company containing gamers’ info was exposed online. Gaming hardware manufacturer Razer has suffered a data leak, this is the discovery made by the security researcher Bob Diachenko. Pierluigi Paganini.

Manufacturing

Manufacturing Data breaches Phishing Passwords

Airplane manufacturer Bombardier has disclosed a security breach, data leaked online

Security Affairs

FEBRUARY 24, 2021

Hackers posted data stolen from manufacturer of business jets Bombardier on Clop ransomware leak site following alleged FTA hack. Bombardier pointed out that manufacturing and customer support operations have not been impacted. Security experts from FireEye linked the cyber attacks to the cybercrime group UNC2546, aka FIN11.

Manufacturing

Manufacturing Security Ransomware Cybersecurity

Cyber-Criminal espionage Operation insists on Italian Manufacturing

Security Affairs

MAY 22, 2020

ZLab researchers spotted a new malicious espionage activity targeting Italian companies operating worldwide in the manufacturing sector. The group behind this activity is the same we identified in the past malicious operations described in Roma225 (12/2018), Hagga (08/2019), Mana (09/2019), YAKKA (01/2020). Introduction.

Manufacturing

Manufacturing e-Delivery IT Security

Webinars

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

Which is the Threat landscape for the ICS sector in 2020?

Security Affairs

MARCH 22, 2021

The Kaspersky ICS CERT published a report that provided details about the threat landscape for computers in the ICS engineering and integration sector in 2020. Kaspersky ICS CERT published a report that provided details about the threat landscape for ICS engineering and integration sector in 2020. In H2 2020, 39.3%

Phishing

Phishing Access Passwords Manufacturing

COVID-19 themed attacks October 1 – December 5, 2020

Security Affairs

DECEMBER 6, 2020

This post includes the details of the COVID-19 themed attacks launched from October 1 to December 5, 2020. Below a list of attacks detected between October 1 to December 5, 2020. October 26 – COVID19 vaccine manufacturer suffers a data breach. Pierluigi Paganini. SecurityAffairs – hacking, COVID).

Manufacturing

Manufacturing Data breaches Government Security

The number of ICS flaws in 2020 was 24,72% higher compared to 2019

Security Affairs

FEBRUARY 7, 2021

The number of vulnerabilities discovered in industrial control system (ICS) products surged in 2020, security firm Claroty reports. Experts reported that 449 vulnerabilities were disclosed affecting ICS products from 59 vendors during 2H 2020. ” reads the report published by Claroty. Pierluigi Paganini.

Manufacturing

Manufacturing Risk Marketing Security

Top cybersecurity Predictions for 2020

Security Affairs

DECEMBER 27, 2019

The 2020 Cybersecurity Landscape – Below Pierluigi Paganini’s cybersecurity predictions for the next twelve months. In 2020, we will witness an increase in targeted ransomware attacks. The complete list of “Top #Cybersecurity Predictions for 2020” is available at the following URL: [link]. the Mirai bot).

Cybersecurity

Cybersecurity IoT Ransomware Manufacturing

Predicting the top 7 trends in manufacturing for 2020

OpenText Information Management

JANUARY 3, 2020

After starting the year strongly, manufacturing left 2019 faced with shrinking production and global uncertainty. Deloitte suggests manufacturers should increase the resilience in their operations while building and improving their ‘digital muscle’. So how will this translate into the major technology trends in manufacturing for 2020?

Manufacturing

Software firm Blue Yonder providing services to US and UK stores, including Starbucks, hit by ransomware attack

Security Affairs

NOVEMBER 26, 2024

Blue Yonder serves a variety of industries, including retail, manufacturing, and distribution, and is known for helping organizations streamline their operations and enhance customer satisfaction. (formerly JDA Software Group) is an American supply chain management company operating as an independent subsidiary of Panasonic.

Ransomware

Ransomware Retail Manufacturing Cloud

IPG Photonics high-performance laser developer hit with ransomware

Security Affairs

SEPTEMBER 20, 2020

manufacturer of high-performance fiber lasers for diverse applications and industries was hit by a ransomware attack that disrupted its operations. IPG Photonics manufactures high-performance fiber lasers, amplifiers, and laser systems for diverse applications and industries. IPG Photonics, a leading U.S. billion revenue in 2019. .

Ransomware

Ransomware Manufacturing Encryption Access

Crooks stole 800,000€ from ATMs in Italy with Black Box attack

Security Affairs

NOVEMBER 29, 2020

Here the list of victim Banks with date and impacted City: [link] pic.twitter.com/NkRr5IfUGn — Bank Security (@Bank_Security) November 27, 2020. MARCO 10/28/2020 SPINEA BANCA CAMBIANO 10/30/2020 MONTELUPO FIORENTINO BBPM 11/06/2020 BIASSONO BBPM 11/8/2020 Santo Srefano Ticino BCC 10/11/2020 Junction of Capannelle (RM) OFFICE PP.

Manufacturing

Manufacturing Security Information Security IT

Microsoft spotted multiple malspam campaigns using malware-laced ISO and IMG files

Security Affairs

MAY 4, 2020

pic.twitter.com/EbI8kxICQG — Microsoft Security Intelligence (@MsftSecIntel) May 4, 2020. “We also saw a campaign targeting manufacturing companies in South Korea. Major malspam campaigns monitored by Microsoft include attacks at US small businesses, manufacturing companies in South Korea, and accountants in the US.

Manufacturing

Manufacturing Archiving Access Security

Microsoft released out-of-band Windows fixes for 2 RCE issues

Security Affairs

OCTOBER 18, 2020

The two vulnerabilities, tracked as CVE-2020-17022 and CVE-2020-17023 , have been rated as important severity. The CVE-2020-17022 is a remote code execution vulnerability that exists in the way that Microsoft Windows Codecs Library handles objects in memory. .

Libraries

Libraries Manufacturing Security IT

Researchers shared the lists of victims of SolarWinds hack

Security Affairs

DECEMBER 22, 2020

link] pic.twitter.com/40VfXuR6JI — RedDrip Team (@RedDrip7) December 16, 2020. College of Law and Business, Israel NetBios HTTP Backdoor 2020-05-26 ad001.mtk.lo NetBios HTTP Backdoor 2020-07-03 barrie.ca City of Barrie NetBios HTTP Backdoor 2020-05-13 BCC.l NetBios HTTP Backdoor 2020-07-03 barrie.ca

Communications

Communications Manufacturing Financial Services Security

Steelcase office furniture giant hit by Ryuk ransomware attack

Security Affairs

OCTOBER 28, 2020

It is the largest office furniture manufacturer in the world. billion in 2020. In an 8-K form filed with the Securities and Exchange Commission (SEC), the company has disclosed the ransomware attack that took place on October 22nd, 2020. “On October 22, 2020, Steelcase Inc. Steelcase has 13,000 employees and $3.7

Ransomware

Ransomware Computer and Electronics Manufacturing Mining

A backdoor in millions of Shanghai Fudan Microelectronics RFID cards allows cloning

Security Affairs

AUGUST 21, 2024

A flaw in millions of RFID cards manufactured by Shanghai Fudan Microelectronics allows these contactless cards to be cloned instantly. Researchers from security firm Quarkslab discovered a backdoor in millions of RFID cards manufactured by the Chinese chip manufacturer Shanghai Fudan Microelectronics.

Manufacturing

Manufacturing Paper Authentication Risk

Critical flaw could have allowed attackers to control traffic lights

Security Affairs

JUNE 6, 2020

A critical vulnerability in traffic light controllers manufactured by SWARCO could have been exploited by attackers to disrupt traffic lights. SWARCO is the world’s largest manufacturer of signal heads and the number two internationally for reflective glass beads. ” reads the security advisory published by the U.S.

Manufacturing

Manufacturing Cybersecurity Access Security

DoppelPaymer ransomware gang hit Foxconn electronics giant

Security Affairs

DECEMBER 7, 2020

Electronics contract manufacturer Foxconn is the last victim of the DoppelPaymer ransomware operators that hit a Mexican facility. Foxconn manufactures electronic products for major American, Canadian, Chinese, Finnish, and Japanese companies. The plan is located in Ciudad Juárez, Chihuahua, Mexico. ” reported BleepingComputer.

Ransomware

Ransomware Manufacturing Encryption Cybersecurity

Exclusive: Experts from TIM’s Red Team Research (RTR) found 6 zero-days

Security Affairs

NOVEMBER 30, 2020

The flaws have been addressed by the manufacturer Schneider Electric, between April and November 2020. Below the list of vulnerabilities discovered by the TIM’s Red Team Research team: CVE Vulnerability Severity CVE-2020-7569: Upload of File with Dangerous Type 8.8 CVE-2020-28209 Windows Unquoted Search Path 7.0

IoT

IoT Manufacturing Cybersecurity Access

Qualcomm and MediaTek Wi-Fi chips impacted by Kr00k-Like attacks

Security Affairs

AUGUST 8, 2020

Wi-Fi chips manufactured by Qualcomm and MediaTek are impacted by vulnerabilities similar to the Kr00k issue disclosed early this year. Earlier this year, experts from ESET disclosed the Kr00k , a new high-severity hardware vulnerability, that affects Wi-Fi chips manufactured by Broadcom and Cypress.

Encryption

Encryption Manufacturing IoT Communications

ATM vendors Diebold and NCR fixed deposit forgery bugs

Security Affairs

AUGUST 22, 2020

The ATM manufacturer giants, Diebold Nixdorf and NCR, have released software updates to fix a flaw that could have been exploited for ‘deposit forgery’ attacks. The ATM manufacturers Diebold Nixdorf and NCR have addressed a bug that could have been exploited for ‘deposit forgery’ attacks. and 05.01.00

Manufacturing

Manufacturing Communications Encryption Access

AMD is going to patch UEFI SMM callout privilege escalation flaw

Security Affairs

JUNE 22, 2020

AMD recently announced that it was preparing patches for an SMM Callout Privilege Escalation vulnerability, tracked as CVE-2020-12890 , that affects the System Management Mode (SMM) of the Unified Extensible Firmware Interface (UEFI). ” reads the AMD’s announcement. ” reads the AMD’s announcement.

Manufacturing

Manufacturing Access Security IT

Technology giant Konica Minolta hit by a ransomware attack

Security Affairs

AUGUST 17, 2020

The company manufactures business and industrial imaging products, including copiers, laser printers, multi-functional peripherals (MFPs) and digital print systems for the production printing market. In June 2020, the same ransomware was employed in an attack on the Texas Department of Transportation.

Ransomware

Ransomware Encryption Manufacturing Access

Voting Machine Firm CEOs Open to Greater Federal Oversight

Data Breach Today

JANUARY 10, 2020

Congress Wants Security Vulnerabilities Addressed to Thwart Foreign Interference The CEOs of the three largest voting machine manufacturers testified before a U.S.

Manufacturing

Manufacturing Security

The CallStranger UPnP vulnerability affects billions of devices

Security Affairs

JUNE 9, 2020

According to the CERT Coordination Center (CERT/CC), the UPnP protocol in effect prior to April 17, 2020 can be abused to send traffic to arbitrary destinations using the SUBSCRIBE functionality. This vulnerability has been assigned CVE-2020-12695 and is also known as Call Stranger.” ” reads the alert published by CERT/CC.

Manufacturing

Manufacturing Communications Security Access

Researchers found alleged sensitive documents of NATO and Turkey

Security Affairs

OCTOBER 12, 2020

Researchers from the US-based firm Cyble recently came across a post shared by an unknown threat actor that goes online with the moniker Spectre123, where he has allegedly leaked the sensitive documents of NATO and Havelsan (Turkish Military/defence manufacturer). ” reads the post published by Cyble.

Military

Military Manufacturing Phishing Government

Botnet operators target multiple zero-day flaws in LILIN DVRs

Security Affairs

MARCH 23, 2020

Experts observed multiple botnets exploiting zero-day vulnerabilities in DVRs for surveillance systems manufactured by Taiwan-based LILIN. Botnet operators are exploiting several zero-day vulnerabilities in digital video recorders (DVRs) for surveillance systems manufactured by Taiwan-based LILIN-.

Manufacturing

Manufacturing Passwords Access Security

Zero Day in Bitcoin ATMs Exploited in a Crypto Heist

Data Breach Today

AUGUST 22, 2022

Attack Comes Days After General Bytes Introduced 'Help Ukraine' Feature Hackers looted Bitcoin ATMs of $16,000 in an attack manufacturer General Bytes says stems from a zero day vulnerability accidently introduced in 2020.

Manufacturing

Manufacturing IT

The IoT Cybersecurity Act of 2020: Implications for Devices

eSecurity Planet

JANUARY 22, 2021

Last month’s passage of the IoT Cybersecurity Improvement Act of 2020 means all IoT devices used by government agencies will soon have to comply with strict NIST standards. While SP 800-213 applies to federal agencies, the latter three are specific to IoT manufacturers. Guidance for Manufacturers. Device configuration.

IoT

IoT Cybersecurity Manufacturing Government

Maybe don’t call Saul? Over 30,000 VoIP devices identifiable worldwide, some with suspected vulnerabilities

Security Affairs

MAY 12, 2021

Our research shows that large and small manufacturers are identifiable, with Aastra-Mitel topping the list. Aastra-Mitel tops the manufacturer list, the United States leads the list among countries, and London tops the chart among cities. Devices made by the US manufacturer Polycom, a subsidiary of Plantronics Inc.,

Manufacturing

Manufacturing Honeypots Communications Marketing

Iran-linked APT group Pioneer Kitten sells access to hacked networks

Security Affairs

SEPTEMBER 1, 2020

“The adversary is particularly interested in exploits related to VPNs and network appliances , including CVE-2019-11510, CVE-2019-19781, and most recently CVE-2020-5902; reliance on exploits such as these lends to an opportunistic operational model.” .” reads the report published by Crowdstrike.

Access

Access Financial Services Retail Insurance

Siemens fixed tens of flaws in Siemens Digital Industries Software products

Security Affairs

JANUARY 16, 2021

only affected by CVE-2020-26989, CVE-2020-26990, CVE-2020-26991 Teamcenter Visualization: All versions prior to V13.1.0 only affected by CVE-2020-26989, CVE-2020-26990, CVE-2020-26991. The following products are affected by the vulnerabilities addressed by Siemens: JT2Go: All versions prior to v13.1.0

Manufacturing

Manufacturing Access Security Cybersecurity

Rhysida ransomware gang claimed China Energy hack

Security Affairs

NOVEMBER 25, 2023

The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors. According to the advisory, the threat actors have exploited Zerologon ( CVE-2020-1472 ) in Microsoft’s Netlogon Remote Protocol in phishing attempts.

Ransomware

Ransomware Manufacturing Education Libraries

StrandHogg 2.0 Android flaw affects over 1 Billion devices

Security Affairs

MAY 26, 2020

Researchers disclosed a new critical vulnerability (CVE-2020-0096, aka StrandHogg 2.0) A group of Norwegian researchers disclosed a critical flaw, tracked as CVE-2020-0096, affecting Android OS that could allow attackers to carry out a sophisticated version of the Strandhogg attack.

Access

Access Manufacturing Phishing Security

China-linked APT41 group exploits Citrix, Cisco, Zoho flaws

Security Affairs

MARCH 25, 2020

Victims operate in the Banking/Finance, Construction, Defense Industrial Base, Government, Healthcare, High Technology, Higher Education, Legal, Manufacturing, Media, Non-profit, Oil & Gas, Petrochemical, Pharmaceutical, Real Estate, Telecommunications, Transportation, Travel, and Utility. .

Healthcare

Healthcare Education Manufacturing Government

Operation Cronos: law enforcement disrupted the LockBit operation

Security Affairs

FEBRUARY 19, 2024

Since January 2020, affiliates utilizing LockBit have targeted organizations of diverse sizes spanning critical infrastructure sectors such as financial services, food and agriculture, education, energy, government and emergency services, healthcare, manufacturing, and transportation. on January 5, 2020.

Energy and Utilities

Energy and Utilities Ransomware Agriculture Financial Services

The German BSI agency recommends replacing Kaspersky antivirus software

Security Affairs

MARCH 15, 2022

“The Federal Office for Information Security (BSI) warns according to §7BSIlaw before using virus protection software from the Russian manufacturer Kaspersky. BSI remarks that the trust in the reliability and self-protection of a manufacturer as well as his authentic ability to act is crucial for the safe use of any defense software.

Manufacturing

Manufacturing Information Security Military Cybersecurity

Australian Cyber Security Centre warns of a surge of LockBit 2.0 ransomware attacks

Security Affairs

AUGUST 9, 2021

Most of the attacks have been reported in July, the organizations hit by the ransomware gang operate in professional services, construction, manufacturing, retail, and food industries. in Australia since 2020. “The ACSC is aware of numerous incidents involving LockBit and its successor ‘LockBit 2.0’ ” states the advisory.

Ransomware

Ransomware Security Retail Manufacturing

Bad actor sells Huiying Medical Technology’s source code for AI-assisted COVID-19 detection

Security Affairs

APRIL 25, 2020

Huiying Medical Breached; Source Code for AI-assisted COVID-19 Detection, and Experimental Data of COVID-19 on Sale (4 BTC) [link] #cyber #cybersecurity #covid19 #DarkWeb #breached @Huawei @intel pic.twitter.com/Wk9fLzviQT — Cyble (@AuCyble) April 25, 2020. researches, develops, manufactures, and distributes medical imaging devices.

Data breaches

Data breaches Sales Manufacturing Cybersecurity

NI CompactRIO controller flaw could allow disrupting production

Security Affairs

DECEMBER 12, 2020

A high-severity vulnerability affecting CompactRIO controllers manufactured by the vendor National Instruments (NI) could allow remote attackers to disrupt production processes in an organization. The flaw, tracked as CVE-2020-25191, affects driver versions prior to 20.5. ” reads the security advisory published by CISA.

Manufacturing

Manufacturing Authentication Cybersecurity Security

Finnish intelligence warns of Russia’s cyberespionage activities

Security Affairs

OCTOBER 3, 2022

It is also likely that the threat of business espionage will grow as Russia feels the need to begin substitute manufacturing of cutting-edge technology. In December 2020, the Parliament of Finland confirmed that threat actors had access to the email accounts of multiple members of parliament (MPs). .

Manufacturing

Manufacturing Access Security Government

LockBit ransomware attack impacted production in a Mexican Foxconn plant

Security Affairs

JUNE 2, 2022

LockBit ransomware gang claimed responsibility for an attack against the electronics manufacturing giant Foxconn that impacted production in Mexico. The electronics manufacturing giant Foxconn confirmed that its production plant in Tijuana (Mexico) has been impacted by a ransomware attack in late May.

Ransomware

Ransomware Manufacturing Cybersecurity Security

APT32 state hackers target human rights defenders with spyware

Security Affairs

FEBRUARY 24, 2021

Vietnam-linked APT32 group targeted Vietnamese human rights defenders (HRDs) between February 2018 and November 2020. Since at least 2014, experts at FireEye have observed APT32 targeting foreign corporations with an interest in Vietnam’s manufacturing, consumer products, and hospitality sectors.

Phishing

Phishing Manufacturing Government Security

Orange Business Services hit by Nefilim ransomware operators

Security Affairs

JULY 17, 2020

Orange confirmed to BleepingComputer that the Orange Business Services division was victim of a ransomware attack on the night of Saturday, July 4th, 2020, into July 5th. A cryptovirus-type computer attack was detected by Orange teams during the night of Saturday 04 July to Sunday 05 July 2020.

Business Services

Business Services Ransomware Manufacturing Archiving

Gaming hardware manufacturer Razer suffered a data leak

Airplane manufacturer Bombardier has disclosed a security breach, data leaked online

Webinars

Trending Sources

Cyber-Criminal espionage Operation insists on Italian Manufacturing

Webinars

Which is the Threat landscape for the ICS sector in 2020?

COVID-19 themed attacks October 1 – December 5, 2020

The number of ICS flaws in 2020 was 24,72% higher compared to 2019

Top cybersecurity Predictions for 2020

Predicting the top 7 trends in manufacturing for 2020

Software firm Blue Yonder providing services to US and UK stores, including Starbucks, hit by ransomware attack

IPG Photonics high-performance laser developer hit with ransomware

Crooks stole 800,000€ from ATMs in Italy with Black Box attack

Microsoft spotted multiple malspam campaigns using malware-laced ISO and IMG files

Microsoft released out-of-band Windows fixes for 2 RCE issues

Researchers shared the lists of victims of SolarWinds hack

Steelcase office furniture giant hit by Ryuk ransomware attack

A backdoor in millions of Shanghai Fudan Microelectronics RFID cards allows cloning

Critical flaw could have allowed attackers to control traffic lights

DoppelPaymer ransomware gang hit Foxconn electronics giant

Exclusive: Experts from TIM’s Red Team Research (RTR) found 6 zero-days

Qualcomm and MediaTek Wi-Fi chips impacted by Kr00k-Like attacks

ATM vendors Diebold and NCR fixed deposit forgery bugs

AMD is going to patch UEFI SMM callout privilege escalation flaw

Technology giant Konica Minolta hit by a ransomware attack

Voting Machine Firm CEOs Open to Greater Federal Oversight

The CallStranger UPnP vulnerability affects billions of devices

Researchers found alleged sensitive documents of NATO and Turkey

Botnet operators target multiple zero-day flaws in LILIN DVRs

Zero Day in Bitcoin ATMs Exploited in a Crypto Heist

The IoT Cybersecurity Act of 2020: Implications for Devices

Maybe don’t call Saul? Over 30,000 VoIP devices identifiable worldwide, some with suspected vulnerabilities

Iran-linked APT group Pioneer Kitten sells access to hacked networks

Siemens fixed tens of flaws in Siemens Digital Industries Software products

Rhysida ransomware gang claimed China Energy hack

StrandHogg 2.0 Android flaw affects over 1 Billion devices

China-linked APT41 group exploits Citrix, Cisco, Zoho flaws

Operation Cronos: law enforcement disrupted the LockBit operation

The German BSI agency recommends replacing Kaspersky antivirus software

Australian Cyber Security Centre warns of a surge of LockBit 2.0 ransomware attacks

Bad actor sells Huiying Medical Technology’s source code for AI-assisted COVID-19 detection

NI CompactRIO controller flaw could allow disrupting production

Finnish intelligence warns of Russia’s cyberespionage activities

LockBit ransomware attack impacted production in a Mexican Foxconn plant

APT32 state hackers target human rights defenders with spyware

Orange Business Services hit by Nefilim ransomware operators

Stay Connected