2021 and Manufacturing - Information Management Today

BlackByte ransomware group hit Asahi Group Holdings, a precision metal manufacturing and metal solution provider

Security Affairs

OCTOBER 30, 2022

The BlackByte ransomware group claims to have compromised Asahi Group Holdings, a precision metal manufacturing and metal solution provider. In 2021, a flaw in the operation was found that allowed a free BlackByte decryptor to be created. Asahi Group Holdings, Ltd. uses extortion techniques similar to LockBit ones. Pierluigi Paganini.

Manufacturing

Manufacturing Ransomware Sales Security

CVE-2021-20090 actively exploited to target millions of IoT devices worldwide

Security Affairs

AUGUST 7, 2021

Threat actors are actively exploiting a critical authentication bypass issue (CVE-2021-20090 ) affecting home routers with Arcadyan firmware. Threat actors actively exploit a critical authentication bypass vulnerability, tracked as CVE-2021-20090 , impacting home routers with Arcadyan firmware to deploy a Mirai bot.

IoT

IoT Authentication Manufacturing Security

Mazda Connect flaws allow to hack some Mazda vehicles

Security Affairs

NOVEMBER 9, 2024

The vulnerabilities impact the Mazda Connect Connectivity Master Unit (CMU) system installed in multiple car models, including the Mazda 3 model year 2014-2021. ” The research targeted a CMU unit manufactured by Visteon, with software initially developed by Johnson Controls Inc. ” reads the advisory.

Ransomware

Ransomware Manufacturing Access Risk

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

Alphv group claims the hack of Clarion, a global manufacturer of audio and video equipment for cars

Security Affairs

SEPTEMBER 24, 2023

The Alphv ransomware group claims to have hacked Clarion, the global manufacturer of audio and video equipment for cars and other vehicles. The Alphv ransomware group added Clarion, the global manufacturer of audio and video equipment for cars and other vehicles, to the list of victims on its Tor leak site.

Manufacturing

Manufacturing Ransomware Data breaches Risk

2021 State of Analytics: Why Users Demand Better

The sample included 1,931 knowledge workers, or end users, from financial services, healthcare, and manufacturing who are familiar with the analytics tools within their applications.

Analytics

MITRE and CISA publish the 2021 list of most common hardware weaknesses

Security Affairs

OCTOBER 30, 2021

MITRE and CISA announced the release of the “2021 Common Weakness Enumeration (CWE) Most Important Hardware Weaknesses” list. MITRE and the DHS’s Cybersecurity and Infrastructure Security Agency (CISA) have announced the release of the “2021 Common Weakness Enumeration (CWE) Most Important Hardware Weaknesses” list. Pierluigi Paganini.

Manufacturing

Manufacturing Education Access Security

Ranzy Locker ransomware hit tens of US companies in 2021

Security Affairs

OCTOBER 26, 2021

“Unknown cyber criminals using Ranzy Locker ransomware had compromised more than 30 US businesses as of July 2021. The victims include the construction subsector of the critical manufacturing sector, the academia subsector of the government facilities sector, the information technology sector, and the transportation sector.”

Ransomware

Ransomware Manufacturing Access Phishing

US agricultural machinery manufacturer AGCO suffered a ransomware attack

Security Affairs

MAY 8, 2022

The American agricultural machinery manufacturer AGCO announced that has suffered a ransomware attack that impacted its production facilities. AGCO, one of the most important agricultural machinery manufacturers, announced that a ransomware attack impacted some of its production facilities. To nominate, please visit:?

Agriculture

Agriculture Manufacturing Ransomware Cybersecurity

637 flaws in industrial control system (ICS) products were published in H1 2021

Security Affairs

AUGUST 20, 2021

During the first half of 2021, 637 vulnerabilities affecting industrial control system (ICS) products were published, affecting products from 76 vendors. The company reported that during the first half of 2021, 637 vulnerabilities affecting industrial control system (ICS) products were published, affecting products from 76 vendors.

Ransomware

Ransomware Manufacturing Cybersecurity Risk

Software firm Blue Yonder providing services to US and UK stores, including Starbucks, hit by ransomware attack

Security Affairs

NOVEMBER 26, 2024

Blue Yonder serves a variety of industries, including retail, manufacturing, and distribution, and is known for helping organizations streamline their operations and enhance customer satisfaction.

Ransomware

Ransomware Retail Manufacturing Cloud

New RedLine malware version distributed as fake Omicron stat counter

Security Affairs

JANUARY 12, 2022

2021-11-26 04:34:54 2021-11-26 10:05:15 149.154.167.91 2021-12-05 12:06:03 2021-12-05 13:19:35 149.154.167.91 2021-12-09 16:18:46 2021-12-09 20:00:13 149.154.167.91 2021-12-22 18:38:18 2021-12-23 11:33:58. “Some telemetry data is shown below. IP Address Start Time End Time 149.154.167.91

Manufacturing

Manufacturing File names Archiving Encryption

Experts warn of a surge of attacks exploiting a Realtek Jungle SDK RCE (CVE-2021-35394)

Security Affairs

JANUARY 26, 2023

Experts warn of a spike in the attacks that between August and October 2022 attempted to exploit a Realtek Jungle SDK RCE (CVE-2021-35394). Palo Alto Networks researchers reported that between August and October 2022 the number of attacks that attempted to exploit a Realtek Jungle SDK RCE ( CVE-2021-35394 ) (CVSS score 9.8)

IoT

IoT Manufacturing IT Security

The top tech trends in manufacturing for 2021

OpenText Information Management

JANUARY 7, 2021

Cloud is the foundation of digital transformation… According to Forbes, manufacturers will … The post The top tech trends in manufacturing for 2021 appeared first on OpenText Blogs. It accelerated them – especially the drive toward digital transformation, according to McKinsey. So, what does the year ahead hold?

Manufacturing

Manufacturing Digital transformation Cloud IT

Australian Cyber Security Centre warns of a surge of LockBit 2.0 ransomware attacks

Security Affairs

AUGUST 9, 2021

ransomware attacks against Australian organizations starting July 2021. ransomware attacks against Australian organizations in multiple industry sectors starting July 2021. The Australian agency also published 2021-006: ACSC Ransomware Profile – Lockbit 2.0 ransomware. in Australia since 2020. ” states the advisory.

Ransomware

Ransomware Retail Security Manufacturing

Researchers warn of a surge in cyber attacks against Microsoft Exchange

Security Affairs

MARCH 12, 2021

On March 2nd, Microsoft released emergency out-of-band security updates that address four zero-day issues (CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, and CVE-2021-27065) in all supported MS Exchange versions that are actively exploited in the wild. 2/5 — ESET research (@ESETresearch) March 2, 2021.

Authentication

Authentication Military Ransomware Manufacturing

Experts found backdoors in a popular Auerswald VoIP appliance

Security Affairs

DECEMBER 27, 2021

Researchers found multiple backdoors in popular VoIP (voice over Internet protocol) appliance made by the German manufacturer Auerswald. Researchers from RedTeam Pentesting discovered multiple backdoors in a popular VoIP (voice over Internet protocol) appliance made by the German manufacturer Auerswald. 7}' 1432d89.

Passwords

Passwords Manufacturing Authentication Access

Experts found a critical authentication bypass flaw in Rockwell Automation software

Security Affairs

FEBRUARY 27, 2021

A critical authentication bypass vulnerability, tracked as CVE-2021-22681 , can be exploited by remote attackers to compromise programmable logic controllers (PLCs) manufactured by Rockwell Automation. ” reads the advisory published by CISA. ” reads the advisory published by CISA.

Authentication

Authentication Communications Manufacturing Risk

LPE zero-day flaw in Razer Synapse allows attackers to take over Windows PCs

Security Affairs

AUGUST 23, 2021

Razer is a popular manufacturer of computer accessories, including gaming mouses and keyboards. So here's a freebie pic.twitter.com/xDkl87RCmz — jonhat (@j0nh4t) August 21, 2021. So here's a freebie pic.twitter.com/xDkl87RCmz — jonhat (@j0nh4t) August 21, 2021. Pierluigi Paganini.

Computer and Electronics

Computer and Electronics Manufacturing Financial Services Access

New LockFile ransomware gang uses ProxyShell and PetitPotam exploits

Security Affairs

AUGUST 21, 2021

The three vulnerabilities used in ProxyShell attacks are: CVE-2021-34473 – Pre-auth Path Confusion leads to ACL Bypass (Patched in April by KB5001779 ) CVE-2021-34523 – Elevation of Privilege on Exchange PowerShell Backend (Patched in April by KB5001779 ) CVE-2021-31207 – Post-auth Arbitrary-File-Write leads to RCE (Patched in May by KB5003435 ).

Ransomware

Ransomware Encryption Financial Services Manufacturing

ESET warns of three flaws that affect over 100 Lenovo notebook models

Security Affairs

APRIL 19, 2022

“CVE-2021-3970: A potential vulnerability in LenovoVariable SMI Handler due to insufficient validation in some Lenovo Notebook models may allow an attacker with local access and elevated privileges to execute arbitrary code. Both drivers are used only during the manufacturing process. ” reads the advisory published by ESET.

Manufacturing

Manufacturing Security Cybersecurity IT

Surveillance vendor exploited Samsung phone zero-days

Security Affairs

NOVEMBER 9, 2022

Google Project Zero disclosed three Samsung phone vulnerabilities, tracked as CVE-2021-25337, CVE-2021-25369 and CVE-2021-25370, that have been exploited by a surveillance company. Google reported the vulnerabilities to Samsung immediately after their discovery in late 2020s, and the vendor addressed them in March 2021.

Manufacturing

Manufacturing Access IT Security

China’s Volt Typhoon botnet has re-emerged

Security Affairs

NOVEMBER 13, 2024

The Volt Typhoon group has been active since at least mid-2021 it carried out cyber operations against critical infrastructure. In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors.

e-Discovery

e-Discovery Communications Ransomware Government

D-Link addressed three critical RCE in wireless router models

Security Affairs

SEPTEMBER 16, 2024

The manufacturer also addressed two high-severity vulnerabilities, tracked as CVE-2024-45696 and CVE-2024-45698. On June 8, 2021, the TWCERT reported the vulnerabilities in D-Link DIR-X5460 to the company. The flaws can allow attackers to remotely execute arbitrary code or access the devices using hardcoded credentials.

Manufacturing

Manufacturing Security Access Risk

Witchetty APT used steganography in attacks against Middle East entities

Security Affairs

OCTOBER 1, 2022

The APT group has been continuously improving its toolset by employing new malware in attacks aimed at governments, diplomatic missions, charities, and industrial/manufacturing organizations in the Middle East and Africa.

Manufacturing

Manufacturing Government Cybersecurity IT

US offers $10 million reward for info on Hive ransomware group leaders

Security Affairs

FEBRUARY 8, 2024

The authorities reported that from June 2021 through at least November 2022, threat actors targeted a wide range of businesses and critical infrastructure sectors, including Government Facilities, Communications, Critical Manufacturing, Information Technology, and especially Healthcare and Public Health (HPH).

Ransomware

Ransomware Blockchain Manufacturing Analytics

Realtek SDK flaws exploited to deliver Mirai bot variant

Security Affairs

AUGUST 24, 2021

“One of the vulnerabilities disclosed, CVE-2021-35395 [2], affects the web interface that is part of the SDK, and is a collection of 6 different vulnerabilities. As of August 18th, we have identified attempts to exploit CVE-2021-35395 in the wild.” ” reported IoT Inspector. ” states SAM experts.

IoT

IoT Manufacturing Authentication Security

Threat actors can remotely disable Fortress S03 Wi-Fi Home Security System

Security Affairs

AUGUST 31, 2021

Researchers at cybersecurity firm Rapid7 discovered two vulnerabilities that can be exploited by hackers to remotely disarm the Fortress S03 WiFi Security System manufactured by Fortress Security Store. The flaws, tracked as CVE-2021-39276 (CVSS score: 5.3) Both issues were reported by cybersecurity firm Rapid7 in May 2021.

Security

Security Cloud Manufacturing Cybersecurity

PwnedPiper flaws in PTS systems affect 80% of major US hospitals

Security Affairs

AUGUST 2, 2021

The flaw affects the Translogic PTS system manufactured by Swisslog Healthcare, which is installed in about 80% of all major hospitals in North America and thousands of hospitals worldwide. The CVE-2021-37160 has yet to be addressed. Swisslog has released Nexus Control Panel version 7.2.5.7

Ransomware

Ransomware Manufacturing Cybersecurity Passwords

ALPHV/BlackCat ransomware gang hacked the hotel chain Motel One

Security Affairs

SEPTEMBER 30, 2023

the fashion giant Moncler , the Swissport , NCR , and Western Digital.

Ransomware

Ransomware Manufacturing Risk IT

Two critical flaws affect CODESYS ICS Automation Software

Security Affairs

JUNE 27, 2022

.” The Chinese researchers who discovered the vulnerabilities pointed out that CODESYS V2 Runtime is used by many manufacturers, and most of these manufacturers still use outdated versions. The vulnerabilities affect a large number of manufacturers using a version of CODESYS V2 Runtime older than V2.4.7.57.

Manufacturing

Manufacturing Risk Security Authentication

Experts show how to bypass Windows Hello feature to login on Windows 10 PCs

Security Affairs

JULY 19, 2021

Security researchers at CyberArk Labs discovered a security bypass vulnerability, tracked as CVE-2021-34466 , affecting the Windows Hello facial authentication process, An attacker could exploit the vulnerability to login systems running the Windows 10 OS. For more information, please see CVE-2021-34466: [link]. Pierluigi Paganini.

Manufacturing

Manufacturing Authentication Security Access

French authorities arrested a Russian national for his role in the Hive ransomware operation

Security Affairs

DECEMBER 14, 2023

The authorities reported that from June 2021 through at least November 2022, threat actors targeted a wide range of businesses and critical infrastructure sectors, including Government Facilities, Communications, Critical Manufacturing, Information Technology, and especially Healthcare and Public Health (HPH).

Ransomware

Ransomware Blockchain Manufacturing Analytics

CISA recommends vendors to fix BrakTooth issues after the release of PoC tool

Security Affairs

NOVEMBER 4, 2021

“On November 1, 2021, researchers publicly released a BrakTooth proof-of-concept (PoC) tool to test Bluetooth-enabled devices against potential Bluetooth exploits using the researcher’s software tools. BrakTooth—originally disclosed in August 2021—is a family of security vulnerabilities in commercial Bluetooth stacks.

Manufacturing

Manufacturing Security IT Information Security

3.5m IP cameras exposed, with US in the lead

Security Affairs

DECEMBER 14, 2022

After looking at 28 of the most popular manufacturers, our research team found 3.5 million IP cameras exposed to the internet, signifying an eightfold increase since April 2021. What is more, the overwhelming majority of internet-facing cameras are manufactured by Chinese companies. The reign of a Chinese brand.

Passwords

Passwords Manufacturing Authentication Government

Who is behind the Mozi Botnet kill switch?

Security Affairs

NOVEMBER 2, 2023

In mid-2021, Qihoo 360 researchers reported that the botnet was composed of more 1.5 In July 2021, Netlab experts helped law enforcement to identify and arrest the alleged author of the Mozi bot. million infected systems, most of them in China (830,000). One botnet down more to go.

IoT

IoT Manufacturing Security IT

New eCh0raix ransomware variant targets NAS devices from both QNAP and Synology vendors

Security Affairs

AUGUST 10, 2021

NAS servers are a privileged target for hackers because they normally store large amounts of data.The ransomware was targeting poorly protected or vulnerable NAS servers manufactured by QNAP, threat actors exploited known vulnerabilities or carried out brute-force attacks. ” reads the report published by Palo Alto Researchers.

Ransomware

Ransomware Encryption Passwords Manufacturing

CISA warns of high-severity flaws in Fuji Electric Tellus Lite V-Simulator and Server Lite

Security Affairs

JANUARY 28, 2021

Telus and V-Server SCADA/HMI allow organizations to remotely monitor and control equipment in a factory, they are widely adopted in the critical manufacturing sector. The vulnerabilities affect the Tellus Lite V-Simulator (Versions prior to v4.0.10.0) and Server Lite (Versions prior to v4.0.10.0).

Manufacturing

Manufacturing Cybersecurity Security Access

BlackCat gang claims they stole data of 2.5 million patients of McLaren Health Care

Security Affairs

OCTOBER 1, 2023

The Alphv ransomware group has been very active in this period, recently it claimed to have hacked Clarion , the global manufacturer of audio and video equipment for cars and other vehicles, and the hotel chain Motel One. .” reads the message published by the ALPHV gang on its leak site.

Ransomware

Ransomware Manufacturing Privacy Security

A new wave of Qlocker ransomware attacks targets QNAP NAS devices

Security Affairs

JANUARY 16, 2022

The threat actors behind the attacks were exploiting an improper authorization vulnerability, tracked as CVE-2021-28799 , that could allow them to log in to a NAS device. “A A ransomware campaign targeting QNAP NAS began the week of April 19th, 2021. reads the security advisory published by the vendor. .

Ransomware

Ransomware Encryption Passwords Manufacturing

The German BSI agency recommends replacing Kaspersky antivirus software

Security Affairs

MARCH 15, 2022

“The Federal Office for Information Security (BSI) warns according to §7BSIlaw before using virus protection software from the Russian manufacturer Kaspersky. BSI remarks that the trust in the reliability and self-protection of a manufacturer as well as his authentic ability to act is crucial for the safe use of any defense software.

Manufacturing

Manufacturing Information Security Military Cybersecurity

Holy Ghost ransomware operation is linked to North Korea

Security Affairs

JULY 15, 2022

The Holy Ghost ransomware gang has been active since June 2021 and it conducted ransomware attacks against small businesses in multiple countries. The list of victims includes manufacturing organizations, banks, schools, and event and meeting planning companies.

Ransomware

Ransomware Encryption Government Manufacturing

GUEST ESSAY: Lessons learned in 2021 as cloud services, mobility and cybersecurity collided

The Last Watchdog

DECEMBER 9, 2021

In 2021 we witnessed the continuation of the seismic shift in how people work, a change that started at the beginning of the global pandemic. The explosion of 5G this past year has created transformational opportunities around Smart Manufacturing, Augmented Reality / Virtual Reality (AR/VR), and more. Securing Iot, MEC.

Cloud

Cloud IoT Cybersecurity Digital transformation

Operation Blacksmith: Lazarus exploits Log4j flaws to deploy DLang malware

Security Affairs

DECEMBER 12, 2023

The experts observed the use of NineRAT at around September 2023 against a European manufacturing entity. Operation Blacksmith involved the exploitation of CVE-2021-44228 , also known as Log4Shell. In March, the threat actors hit a South American agricultural organization. ” reads the analysis published by Talos.

Agriculture

Agriculture Data collection Access Manufacturing

Avaddon ransomware gang shuts down their operations and releases decryption keys

Security Affairs

JUNE 11, 2021

— Fabian Wosar (@fwosar) June 11, 2021. link] — Emsisoft (@emsisoft) June 11, 2021. A public Emsisoft decryption tool is coming soon. Do not pay. If you are a victim and want to know if your files can be decrypted, please reach out to fw@emsisoft.com. ” states Emsisoft. . ” states Emsisoft.

Ransomware

Ransomware Passwords Manufacturing Archiving

BlackByte ransomware group hit Asahi Group Holdings, a precision metal manufacturing and metal solution provider

CVE-2021-20090 actively exploited to target millions of IoT devices worldwide

Webinars

Trending Sources

Mazda Connect flaws allow to hack some Mazda vehicles

Webinars

Alphv group claims the hack of Clarion, a global manufacturer of audio and video equipment for cars

2021 State of Analytics: Why Users Demand Better

MITRE and CISA publish the 2021 list of most common hardware weaknesses

Ranzy Locker ransomware hit tens of US companies in 2021

US agricultural machinery manufacturer AGCO suffered a ransomware attack

637 flaws in industrial control system (ICS) products were published in H1 2021

Software firm Blue Yonder providing services to US and UK stores, including Starbucks, hit by ransomware attack

New RedLine malware version distributed as fake Omicron stat counter

Experts warn of a surge of attacks exploiting a Realtek Jungle SDK RCE (CVE-2021-35394)

The top tech trends in manufacturing for 2021

Australian Cyber Security Centre warns of a surge of LockBit 2.0 ransomware attacks

Researchers warn of a surge in cyber attacks against Microsoft Exchange

Experts found backdoors in a popular Auerswald VoIP appliance

Experts found a critical authentication bypass flaw in Rockwell Automation software

LPE zero-day flaw in Razer Synapse allows attackers to take over Windows PCs

New LockFile ransomware gang uses ProxyShell and PetitPotam exploits

ESET warns of three flaws that affect over 100 Lenovo notebook models

Surveillance vendor exploited Samsung phone zero-days

China’s Volt Typhoon botnet has re-emerged

D-Link addressed three critical RCE in wireless router models

Witchetty APT used steganography in attacks against Middle East entities

US offers $10 million reward for info on Hive ransomware group leaders

Realtek SDK flaws exploited to deliver Mirai bot variant

Threat actors can remotely disable Fortress S03 Wi-Fi Home Security System

PwnedPiper flaws in PTS systems affect 80% of major US hospitals

ALPHV/BlackCat ransomware gang hacked the hotel chain Motel One

Two critical flaws affect CODESYS ICS Automation Software

Experts show how to bypass Windows Hello feature to login on Windows 10 PCs

French authorities arrested a Russian national for his role in the Hive ransomware operation

CISA recommends vendors to fix BrakTooth issues after the release of PoC tool

3.5m IP cameras exposed, with US in the lead

Who is behind the Mozi Botnet kill switch?

New eCh0raix ransomware variant targets NAS devices from both QNAP and Synology vendors

CISA warns of high-severity flaws in Fuji Electric Tellus Lite V-Simulator and Server Lite

BlackCat gang claims they stole data of 2.5 million patients of McLaren Health Care

A new wave of Qlocker ransomware attacks targets QNAP NAS devices

The German BSI agency recommends replacing Kaspersky antivirus software

Holy Ghost ransomware operation is linked to North Korea

GUEST ESSAY: Lessons learned in 2021 as cloud services, mobility and cybersecurity collided

Operation Blacksmith: Lazarus exploits Log4j flaws to deploy DLang malware

Avaddon ransomware gang shuts down their operations and releases decryption keys

Stay Connected