Security Affairs

OCTOBER 26, 2021

“Unknown cyber criminals using Ranzy Locker ransomware had compromised more than 30 US businesses as of July 2021. The victims include the construction subsector of the critical manufacturing sector, the academia subsector of the government facilities sector, the information technology sector, and the transportation sector.”

Ransomware 145

Ransomware Manufacturing Access Phishing 145

The Last Watchdog

MARCH 31, 2021

The start of 2021 brings forth a cyber security crossroads. Many IT experts are warning that it won’t be long before hackers compromise several unprotected home networks simultaneously to manufacture a forceful and large-scale breach of vital services and systems. Many employees don’t have a wide range of security protections.

Cybersecurity 149

Cybersecurity Cloud Authentication IoT 149

Security Affairs

MAY 8, 2022

The American agricultural machinery manufacturer AGCO announced that has suffered a ransomware attack that impacted its production facilities. AGCO, one of the most important agricultural machinery manufacturers, announced that a ransomware attack impacted some of its production facilities. Pierluigi Paganini.

Agriculture 98

Agriculture Manufacturing Ransomware Cybersecurity 98

Security Affairs

AUGUST 9, 2021

The Australian Cyber Security Centre (ACSC) warns of a surge of LockBit 2.0 ransomware attacks against Australian organizations starting July 2021. The Australian Cyber Security Centre (ACSC) warns of an escalation in LockBit 2.0 ransomware attacks against Australian organizations in multiple industry sectors starting July 2021.

Ransomware 128

Ransomware Retail Security Manufacturing 128

Security Affairs

AUGUST 20, 2021

During the first half of 2021, 637 vulnerabilities affecting industrial control system (ICS) products were published, affecting products from 76 vendors. The company reported that during the first half of 2021, 637 vulnerabilities affecting industrial control system (ICS) products were published, affecting products from 76 vendors.

Ransomware 117

Ransomware Manufacturing Cybersecurity Risk 117

Security Affairs

AUGUST 31, 2021

Rapid7 researchers discovered two flaws that can be exploited by attackers to remotely disable one of the home security systems offered by Fortress Security Store. The Fortress S03 Wi-Fi Home Security System allows users to build their own alarm system to secure their homes and small businesses.

Security 123

Security Cloud Manufacturing Cybersecurity 123

Krebs on Security

DECEMBER 13, 2022

“InfraGard connects critical infrastructure owners, operators, and stakeholders with the FBI to provide education, networking, and information-sharing on security threats and risks,” the FBI’s InfraGard fact sheet reads. . That InfraGard member, who is head of security at a major U.S. Department of Defense.

Energy and Utilities 363

Energy and Utilities Sales Communications Data breaches 363

Krebs on Security

SEPTEMBER 10, 2021

But on Thursday DDoS protection firm Qrator Labs identified the culprit — “Meris” — a new IoT monster that first emerged at the end of June 2021. It’s not immediately clear which security vulnerabilities led to these estimated 250,000 MikroTik routers getting hacked by Meris. In its Aug. Image: Qrator.

IoT 317

IoT Manufacturing IT Security 317

Thales Cloud Protection & Licensing

JULY 26, 2022

Establishing an IAM Blueprint for Securing Manufacturing Environments. The manufacturing sector is crucial to the economic prosperity of all countries. Products made by these manufacturing industries are essential to many other critical infrastructure sectors. IAM Blueprint for Securing Manufacturing Environments.

Manufacturing 71

Manufacturing Authentication Security Risk 71

Krebs on Security

JUNE 28, 2022

On December 7, 2021, Google announced it was suing two Russian men allegedly responsible for operating the Glupteba botnet, a global malware menace that has infected millions of computers over the past decade. Two other domains connected to that Google Analytics code — Russian plastics manufacturers techplast[.]ru But on Dec.

Passwords 282

Passwords Analytics Manufacturing Access 282

Security Affairs

JANUARY 12, 2022

2021-11-26 04:34:54 2021-11-26 10:05:15 149.154.167.91 2021-12-05 12:06:03 2021-12-05 13:19:35 149.154.167.91 2021-12-09 16:18:46 2021-12-09 20:00:13 149.154.167.91 2021-12-22 18:38:18 2021-12-23 11:33:58. “Some telemetry data is shown below. IP Address Start Time End Time 149.154.167.91

Manufacturing 145

Manufacturing File names Archiving Encryption 145

Security Affairs

FEBRUARY 28, 2021

Every week the best security articles from Security Affairs free for you in your email box. If you want to receive the weekly Security Affairs Newsletter for free subscribe here. The post Security Affairs newsletter Round 303 appeared first on Security Affairs. Pierluigi Paganini.

Security 117

Security Blockchain Manufacturing Analytics 117

Security Affairs

AUGUST 8, 2021

Every week the best security articles from Security Affairs free for you in your email box. The post Security Affairs newsletter Round 326 appeared first on Security Affairs. A new round of the weekly SecurityAffairs newsletter arrived! If you want to also receive for free the international press subscribe here.

Security 107

Security Ransomware Mining IoT 107

IT Governance

JULY 7, 2021

The number of officially reported HMRC-branded phishing scams increased from 572,029 in the 2019–2020 fiscal year to 1,069,522 in 2020–2021, according to data obtained under the Freedom of Information Act. Avanan’s 2021 Global Phish Cyber Attack Report found that credential harvesting is used in 54% of all phishing attacks.

Phishing 98

Phishing Manufacturing Insurance Data breaches 98

Security Affairs

JANUARY 26, 2023

Experts warn of a spike in the attacks that between August and October 2022 attempted to exploit a Realtek Jungle SDK RCE (CVE-2021-35394). Palo Alto Networks researchers reported that between August and October 2022 the number of attacks that attempted to exploit a Realtek Jungle SDK RCE ( CVE-2021-35394 ) (CVSS score 9.8)

IoT 98

IoT Manufacturing IT Security 98

IT Governance

JULY 1, 2021

We found a comparatively low 9,780,931 breached records from publicly disclosed security incidents in June 2021. June’s figures bring the annual running total of security incidents to 729 and the total number of breached records to 3,947,030,094.

Data breaches 129

Data breaches Ransomware Computer and Electronics Retail 129

Security Affairs

DECEMBER 27, 2021

Researchers found multiple backdoors in popular VoIP (voice over Internet protocol) appliance made by the German manufacturer Auerswald. Researchers from RedTeam Pentesting discovered multiple backdoors in a popular VoIP (voice over Internet protocol) appliance made by the German manufacturer Auerswald. 7}' 1432d89. Pierluigi Paganini.

Passwords 120

Passwords Manufacturing Authentication Access 120

Security Affairs

MARCH 12, 2021

On March 2nd, Microsoft released emergency out-of-band security updates that address four zero-day issues (CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, and CVE-2021-27065) in all supported MS Exchange versions that are actively exploited in the wild.

Authentication 145

Authentication Military Ransomware Manufacturing 145

Security Affairs

SEPTEMBER 16, 2024

The manufacturer also addressed two high-severity vulnerabilities, tracked as CVE-2024-45696 and CVE-2024-45698. On June 8, 2021, the TWCERT reported the vulnerabilities in D-Link DIR-X5460 to the company. “When D-Link became aware of the reported security issues, we promptly started investigating and developing security patches.

Manufacturing 136

Manufacturing Security Access Risk 136

Security Affairs

FEBRUARY 27, 2021

A critical authentication bypass vulnerability, tracked as CVE-2021-22681 , can be exploited by remote attackers to compromise programmable logic controllers (PLCs) manufactured by Rockwell Automation. If you want to receive the weekly Security Affairs Newsletter for free subscribe here. Pierluigi Paganini.

Authentication 140

Authentication Communications Manufacturing Risk 140

IT Governance

MARCH 1, 2021

The cyber security industry was rocked in February after a ransomware attack against the Cloud service provider Accellion. Dozens of organisations that used the software reported incidents in one of the worst months we’ve ever recorded. We found 118 publicly recorded incidents, of which 43 were ransomware attacks.

Data breaches 129

Data breaches Ransomware Phishing Blockchain 129

Security Affairs

AUGUST 21, 2021

The popular security expert Kevin Beaumont was one of the first researchers to report that the LockFile operators are using the Microsoft Exchange ProxyShell and the Windows PetitPotam vulnerabilities to take over Windows domains. financial organization on July 20, 2021, with its latest activity seen as recently as August 20. .

Ransomware 145

Ransomware Encryption Financial Services Manufacturing 145

eSecurity Planet

JANUARY 26, 2022

An easily exploited flaw in a program found in every major Linux distribution is the latest serious security issue that has arisen in the open-source space in recent weeks. See also: Top IT Asset Management Tools for Security. The priority for organizations should be to patch their Linux machines, but it’s not an easy task.

Manufacturing 142

Manufacturing IoT Cybersecurity Cloud 142

Security Affairs

AUGUST 23, 2021

Razer is a popular manufacturer of computer accessories, including gaming mouses and keyboards. Razer is a very popular computer peripherals manufacturer that designs, develops, and sells consumer electronics, financial services, and gaming hardware, including gaming mouses and keyboards. Pierluigi Paganini.

Computer and Electronics 144

Computer and Electronics Manufacturing Financial Services Access 144

eSecurity Planet

OCTOBER 27, 2021

We here at eSecurity Planet have our own views and methodology on this much-debated issue, and present to you our reviews of the Best Antivirus Software of 2021. Bitdefender Total Security. No security product is perfect, but for just under $4 a month, Bitdefender gives you broad, sophisticated defenses. Bitdefender. Encryption.

Ransomware 98

Ransomware Marketing Security Mining 98

Security Affairs

APRIL 19, 2022

Lenovo has published a security advisory to warn customers of vulnerabilities that affect its Unified Extensible Firmware Interface (UEFI) loaded on at least 100 of its notebook models, including IdeaPad 3, Legion 5 Pro-16ACH6 H, and Yoga Slim 9-14ITL05. Both drivers are used only during the manufacturing process.

Manufacturing 104

Manufacturing Cybersecurity Security IT 104

erwin

JANUARY 7, 2021

Our predictions for 2021 are rooted in what we’ve learned from the past year and the relevance of data in getting us to where we are and where we need to go. Data Becomes a Matter of Life or Death: To say that data will be the difference between life and death in 2021 is not hyperbole. COVID changed everything.

Metadata 98

Metadata Government Compliance Artificial Intelligence 98

Security Affairs

AUGUST 24, 2021

Realtek published a security advisory on August 15 to warn customers about security updates to address vulnerabilities in its software developers kits (SDK) which is used by at least 65 separate vendors. On August 15, firmware security company IoT Inspector published details about the flaws. ” reported IoT Inspector.

IoT 139

IoT Manufacturing Authentication Security 139

Security Affairs

JULY 19, 2021

Security researchers demonstrated how to bypass the Windows Hello facial recognition that is used in Windows 10 as a login mechanism. Microsoft already fixed the vulnerability with the release of July Patch Tuesday security updates. For more information, please see CVE-2021-34466: [link]. Pierluigi Paganini.

Manufacturing 134

Manufacturing Authentication Security Access 134

Security Affairs

NOVEMBER 9, 2022

Google Project Zero disclosed three Samsung phone vulnerabilities, tracked as CVE-2021-25337, CVE-2021-25369 and CVE-2021-25370, that have been exploited by a surveillance company. Google reported the vulnerabilities to Samsung immediately after their discovery in late 2020s, and the vendor addressed them in March 2021.

Manufacturing 136

Manufacturing Access IT Security 136

Krebs on Security

AUGUST 12, 2022

The Department of Homeland Security (DHS) is urging states and localities to beef up security around proprietary devices that connect to the Emergency Alert System — a national public warning system used to deliver important emergency information, such as severe weather and AMBER alerts. “But nothing ever happened. .

Passwords 214

Passwords Manufacturing Security Risk 214

Security Affairs

JUNE 27, 2022

CODESYS addressed 11 security flaws in the ICS Automation Software that could lead to information disclosure and trigger a denial-of-service (DoS) condition. CODESYS has released security patches to fix eleven 11 vulnerabilities in its ICS Automation Software. The timeline of the issues is: On September 15, 2021 ?Started

Manufacturing 115

Manufacturing Risk Security Authentication 115

Security Affairs

NOVEMBER 6, 2022

Every week the best security articles from Security Affairs free for you in your email box. The post Security Affairs newsletter Round 392 appeared first on Security Affairs. A new round of the weekly SecurityAffairs newsletter arrived! Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Security 101

Security Ransomware Military Manufacturing 101

Security Affairs

NOVEMBER 4, 2021

US CISA is urging vendors to address BrakTooth flaws after security researchers have released public exploit code and a proof of concept tool to test Bluetooth devices against potential Bluetooth exploits. BrakTooth—originally disclosed in August 2021—is a family of security vulnerabilities in commercial Bluetooth stacks.

Manufacturing 125

Manufacturing Security IT Information Security 125

Security Affairs

AUGUST 2, 2021

The flaw affects the Translogic PTS system manufactured by Swisslog Healthcare, which is installed in about 80% of all major hospitals in North America and thousands of hospitals worldwide. The CVE-2021-37160 has yet to be addressed. Swisslog has also published security advisories for these vulnerabilities. Pierluigi Paganini.

Ransomware 122

Ransomware Manufacturing Cybersecurity Passwords 122

Hunton Privacy

NOVEMBER 3, 2021

On October 28, 2021, the European Parliament’s Committee on Industry, Research and Energy adopted a draft directive on cybersecurity (“NIS2 Directive”). The NIS2 Directive imposes specific cybersecurity requirements relating to incident response, supply chain security, encryption and vulnerability disclosure obligations.

Cybersecurity 126

Cybersecurity Manufacturing Encryption Security 126

Security Affairs

DECEMBER 14, 2022

All too often, this gives them a false sense of security: when in fact, threat actors can not only access and watch your camera feed but exploit the unsecured device to hack into your network. After looking at 28 of the most popular manufacturers, our research team found 3.5 Surge in internet-facing cameras. Most insecure brands.

Passwords 145

Passwords Manufacturing Authentication Government 145