2023, Manufacturing and Security - Information Management Today

OmniVision disclosed a data breach after the 2023 Cactus ransomware attack

Security Affairs

MAY 22, 2024

The digital imaging products manufacturer OmniVision disclosed a data breach after the 2023 ransomware attack. In 2023, OmniVision employed 2,200 people and had an annual revenue of $1.4 In 2023, the imaging sensors manufacturer was the victim of a Cactus ransomware attack. OmniVision Technologies Inc.

Data breaches

Data breaches Ransomware Manufacturing Encryption

Ransomware attacks break records in 2023: the number of victims rose by 128%

Security Affairs

JANUARY 19, 2024

Ransomware groups claimed that they successfully targeted 4191 victims in 2023, Cybernews researchers report. of attacks in 2023), while summer was the most active for ransomware attacks (30.4%). The top 10 groups, based on the number of victims, collectively account for 59% of the total victims in 2023.

Ransomware

Ransomware Manufacturing Retail Insurance

Alphv group claims the hack of Clarion, a global manufacturer of audio and video equipment for cars

Security Affairs

SEPTEMBER 24, 2023

The Alphv ransomware group claims to have hacked Clarion, the global manufacturer of audio and video equipment for cars and other vehicles. The Alphv ransomware group added Clarion, the global manufacturer of audio and video equipment for cars and other vehicles, to the list of victims on its Tor leak site.

Manufacturing

Manufacturing Ransomware Data breaches Risk

Webinars

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

China’s Volt Typhoon botnet has re-emerged

Security Affairs

NOVEMBER 13, 2024

In May 2023, Microsoft reported that the Volt Typhoon APT infiltrated critical infrastructure organizations in the U.S. In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors.

e-Discovery

e-Discovery Communications Ransomware Government

Port of Seattle ‘s August data breach impacted 90,000 people

Security Affairs

APRIL 5, 2025

The Rhysida ransomware group has been active since May 2023. The ransomware gang hit organizations in multiple industries, including education, healthcare, manufacturing, information technology, and government sectors. In September 2024, Port of Seattle confirmed that the Rhysida ransomware group was behind the cyberattack.

Data breaches

Data breaches Ransomware Manufacturing Education

Cloak ransomware group hacked the Virginia Attorney General’s Office

Security Affairs

MARCH 24, 2025

The Cloak ransowmare group has been active since at least 2023 and breached more than one hundred organizations across the years. The group has extended its operations to countries in Asia and targets various sectors, including healthcare, real estate, construction, IT, food, and manufacturing.”

Ransomware

Ransomware Manufacturing Paper Archiving

Hunters International gang claims the theft of 1.4 TB of data allegedly stolen from Tata Technologies

Security Affairs

MARCH 5, 2025

The company, which is engaged in product engineering, provides services to automotive and aerospace original equipment manufacturers as well as industrial machinery companies. As of 2023, the IT giant has over 11,000 employees across 18 delivery centers worldwide, including India, North America, Europe, and Asia-Pacific.

Ransomware

Ransomware Manufacturing IT Security

Lockbit ransomware gang claims to have stolen data from Boeing

Security Affairs

OCTOBER 27, 2023

The Lockbit ransomware gang claims to have hacked the aerospace manufacturer and defense contractor Boeing and threatened to leak the stolen data. The Boeing Company, commonly known as Boeing, is one of the world’s largest aerospace manufacturers and defense contractors. In 2022, Boeing recorded $66.61 USA ???????:

Ransomware

Ransomware Manufacturing Military Cybersecurity

335,923 out of 489,337 Fortinet firewalls vulnerable to CVE-2023-27997

Security Affairs

JULY 3, 2023

Researchers reported that there are 490,000 Fortinet firewalls exposing SSL VPN interfaces on the internet, and roughly 69% of them are still vulnerable to CVE-2023-27997. The vulnerability was reported to Fortinet by the researcher Charles Fol and Dany Bach ( DDXhunter ) from Lexfo Security. states the report published by Fortinet.

Manufacturing

Manufacturing Authentication Security Risk

A cyberattack halted operations at Varta production plants

Security Affairs

FEBRUARY 15, 2024

On February 12, 2023, a cyber attack halted operations at five production plants of German battery manufacturer Varta. On February 13, German battery manufacturer Varta announced that a cyber attack forced the company to shut down IT systems. billion in 2023. billion in 2023.

Manufacturing

Manufacturing Ransomware IT Security

Fortinet urges to patch the critical RCE flaw CVE-2023-27997 in Fortigate firewalls

Security Affairs

JUNE 13, 2023

Fortinet addressed a new critical flaw, tracked as CVE-2023-27997, in FortiOS and FortiProxy that is likely exploited in a limited number of attacks. Fortinet has finally published an official advisory about the critical vulnerability, tracked as CVE-2023-27997 (CVSS score: 9.2), impacting FortiOS and FortiProxy. through 6.2.13

Manufacturing

Manufacturing Authentication Risk Government

North Korea-linked APT Kimsuky targeted German defense firm Diehl Defence

Security Affairs

OCTOBER 1, 2024

North Korea-linked APT Kimsuky has been linked to a cyberattack on Diehl Defence, a German manufacturer of advanced military systems. KG is a German weapon manufacturer headquartered in Überlingen. Diehl Defence GmbH & Co. It operates as a division of Diehl Stiftung and specializes in the production of missiles and ammunition. .”

Military

Military Manufacturing Phishing Information Security

Chipmaker Qualcomm warns of three actively exploited zero-days

Security Affairs

OCTOBER 4, 2023

Chipmaker Qualcomm released security updates to address 17 vulnerabilities in several components. Google Threat Analysis Group and Google Project Zero first reported that the CVE-2023-33106, CVE-2023-33107, CVE-2022-22071 and CVE-2023-33063 are actively exploited in targeted attacks. ” reads the advisory.

Authentication

Authentication Manufacturing Security Information Security

Ransomware group Dark Angels claims the theft of 1TB of data from chipmaker Nexperia

Security Affairs

APRIL 16, 2024

Nexperia is a semiconductor manufacturer headquartered in Nijmegen, the Netherlands. Gb - NDA The group published a set of files as proof of the security breach and threatens leak all the stolen data if the victim will not pay the ransom. It is a subsidiary of the partially state-owned Chinese company Wingtech Technology.

Ransomware

Ransomware Manufacturing Insurance Cybersecurity

THE 11TH EDITION OF THE ENISA THREAT LANDSCAPE REPORT IS OUT!

Security Affairs

OCTOBER 19, 2023

The Europen Agency for cybersecurity ENISA releases its ENISA Threat Landscape 2023 (ETL) report , which is the annual analysis of the state of the cybersecurity threat landscape. This is the 11th edition of the annual report and analyzes events that took place between July 2022 and July 2023. appeared first on Security Affairs.

Artificial Intelligence

Artificial Intelligence Ransomware Cybersecurity Manufacturing

McLaren Health Care revealed that a data breach impacted 2.2 million people

Security Affairs

NOVEMBER 10, 2023

The security breach exposed the sensitive personal information of 2,192,515 people. The company became aware of anomalous activity on or about August 22, 2023, and immediately launched an investigation with the help of third-party forensic experts. Maclaren Your security is at an all-time low, and we’ve proven it to you.

Data breaches

Data breaches Ransomware Insurance Manufacturing

LockBit ransomware gang leaked data stolen from Boeing

Security Affairs

NOVEMBER 13, 2023

The Boeing Company, commonly known as Boeing, is one of the world’s largest aerospace manufacturers and defense contractors. In early November 2023, the company confirmed that its services division was hit by a cyber attack, it also added that the investigation is still ongoing. In 2022, Boeing recorded $66.61

Ransomware

Ransomware Authentication Manufacturing Sales

Rhysida ransomware gang claimed China Energy hack

Security Affairs

NOVEMBER 25, 2023

ransomfeed #security #infosec #energychina pic.twitter.com/deRRximVPd — Ransomfeed (@ransomfeed) November 25, 2023 The China Energy Engineering Corporation (CEEC) is a state-owned company in China that operates in the energy and infrastructure sectors. The Rhysida ransomware group has been active since May 2023.

Ransomware

Ransomware Manufacturing Education Libraries

BlackCat gang claims they stole data of 2.5 million patients of McLaren Health Care

Security Affairs

OCTOBER 1, 2023

The ransomware group accused the organization of has attempted to cover up the security breach. Maclaren Your security is at an all-time low, and we’ve proven it to you. The cyber security researcher Dominic Alvieri reported that ALPHV BlackCat Ransomware has breached 15 more US hospitals & 2 HMOs.

Ransomware

Ransomware Manufacturing Privacy Security

BianLian group exploits JetBrains TeamCity bugs in ransomware attacks

Security Affairs

MARCH 11, 2024

Researchers from GuidePoint Security noticed, while investigating a recent attack linked to the BianLian ransomware group, that the threat actors gained initial access to the target by exploiting flaws in a TeamCity server. ” reads the report published by GuidePoint Security.

Ransomware

Ransomware Manufacturing Access Security

City of Dallas has set a budget of $8.5 million to mitigate the May Royal ransomware attack

Security Affairs

SEPTEMBER 23, 2023

In May 2023, a ransomware attack hit the IT systems at the City of Dallas , Texas. The City confirmed the security incident and is working to recover from the ransomware attack that impacted its services, including the police department. During this time, Royal performed data exfiltration and ransomware delivery preparation activities.”

Ransomware

Ransomware Encryption Systems administration Cybersecurity

Rhysida Ransomware group claims to have breached Bayhealth Hospital in Delaware

Security Affairs

AUGUST 7, 2024

In December 2023, the group claimed to have hacked Abdali Hospital, a multi-specialty hospital located in Jordan. The Rhysida ransomware group has been active since May 2023. The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors.

Ransomware

Ransomware Manufacturing Libraries Education

As of May 2024, Black Basta ransomware affiliates hacked over 500 organizations worldwide

Security Affairs

MAY 12, 2024

The alert provides Tactics, Techniques, and Procedures (TTPs) and Indicators of Compromise (IOCs) obtained from law enforcement investigations and reports from third-party security firms. Most of the victims are in the manufacturing, engineering and construction, and retail sectors. ” reads the CSA. in Germany, and 5.9%

Ransomware

Ransomware Blockchain Retail Insurance

Rhysida ransomware gang is auctioning data stolen from the British Library

Security Affairs

NOVEMBER 20, 2023

pic.twitter.com/Wdj7VfkWXa — British Library (@britishlibrary) November 20, 2023 The library plans to partially restore many services in the next few weeks, but it believes that some disruption may persist for longer. The report includes IOCs and TTPs identified through investigations as recently as September 2023.

Libraries

Libraries Ransomware Manufacturing Education

MY TAKE: New tech standards, like ‘Matter’ and ‘BIMI,’ point the way to secure interoperability

The Last Watchdog

NOVEMBER 12, 2023

However, there’s still a long way to go to achieve deep interoperability of interconnected services in a way that preserves privacy and is very secure. This is precisely what the consortium of software companies and device manufacturers, led Google, Amazon and Apple, set out to achieve when Matter was conceived four years ago.

Security

Security Manufacturing Authentication Marketing

Sonos smart speakers flaw allowed to eavesdrop on users

Security Affairs

AUGUST 9, 2024

Researchers from NCC Group have discovered multiple vulnerabilities in Sonos smart speakers, including a flaw, tracked as CVE-2023-50809, that could have allowed eavesdropping on users. MediaTek, who manufactures Wi-Fi SoC for Sonos speaker, released a security advisory in March 2024 (CVE-2024-20018). ” states NCC Group.

Manufacturing

Manufacturing Paper Security IT

Lacroix Group shut down three facilities after a ‘targeted cyberattack’

Security Affairs

MAY 16, 2023

French electronics manufacturer Lacroix Group shut down three plants after a cyber attack, experts believe it was the victim of a ransomware attack. The French electronics manufacturer Lacroix Group shut down three facilities in France, Germany, and Tunisia in response to a cyber attack. ” reported Yahoo Finance.

Manufacturing

Manufacturing Ransomware Sales Encryption

Nexx bugs allow to open garage doors, and take control of alarms and plugs

Security Affairs

APRIL 5, 2023

A series of vulnerabilities in multiple smart devices manufactured by Nexx can be exploited to remotely open garage doors, and take control of alarms and plugs. Authorization Bypass Through User-Controlled Key CWE-639 ( CVE-2023–1749 , CVSS3.0: Authorization Bypass Through User-Controlled Key CWE-639 ( CVE-2023–1750 , CVSS3.0:

Manufacturing

Manufacturing Cybersecurity Education Authentication

Security Affairs newsletter Round 404 by Pierluigi Paganini

Security Affairs

JANUARY 29, 2023

Every week the best security articles from Security Affairs free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! If you want to also receive for free the newsletter with the international press subscribe here.

Security

Security Data breaches Military Ransomware

Raspberry Robin spotted using two new 1-day LPE exploits

Security Affairs

FEBRUARY 11, 2024

The malware was first spotted in September 2021, the experts observed it targeting organizations in the technology and manufacturing industries. An exploit for one of the vulnerabilities, CVE-2023-36802 , was also used in the wild as a 0-day and was sold on the Dark Web.” ” continues the report.

Communications

Communications Manufacturing Libraries Cybersecurity

Security Affairs newsletter Round 421 by Pierluigi Paganini – International edition

Security Affairs

MAY 27, 2023

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Is the BlackByte ransomware gang behind the City of Augusta attack?

Security

Security Ransomware Manufacturing Cybersecurity

MSI confirms security breach after Money Message ransomware attack

Security Affairs

APRIL 7, 2023

Multinational IT corporation MSI (Micro-Star International) confirms security breach after Money Message ransomware gang claimed the hack. Micro-Star International AKA MSI designs, manufactures, and sells motherboards and graphics cards for customers in the United States, Canada, and internationally.

Ransomware

Ransomware Security Manufacturing Cybersecurity

Security Affairs newsletter Round 426 by Pierluigi Paganini – International edition

Security Affairs

JULY 2, 2023

Every week the best security articles from Security Affairs are free for you in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Security

Security Ransomware Authentication Marketing

FBI and CISA update a joint advisory on the BlackSuit Ransomware group

Security Affairs

AUGUST 8, 2024

The BlackSuit ransomware has targeted various critical infrastructure sectors, including commercial facilities, healthcare, government, and manufacturing. Historically, Royal actors were observed leveraging Chisel , Secure Shell (SSH) client, PuTTY, OpenSSH, and MobaXterm for C2 communications.

Ransomware

Ransomware Communications Manufacturing Phishing

Rhysida ransomware group hacked King Edward VII’s Hospital in London

Security Affairs

NOVEMBER 29, 2023

GossiTheDog @SOSIntel @UK_Daniel_Card @LisaForteUK pic.twitter.com/L7A3XNNxU7 — Dominic Alvieri (@AlvieriD) November 29, 2023 The group published images of stolen documents as proof of the hack. The Rhysida ransomware group has been active since May 2023. “Unique files are presented to your attention!

Ransomware

Ransomware Manufacturing Education Libraries

Rhysida ransomware group hacked Abdali Hospital in Jordan

Security Affairs

DECEMBER 26, 2023

pic.twitter.com/6uHMDcNhTC — Dominic Alvieri (@AlvieriD) December 26, 2023 The group published images of stolen documents as proof of the hack. The Rhysida ransomware group has been active since May 2023. The report includes IOCs and TTPs identified through investigations as recently as September 2023.

Ransomware

Ransomware Manufacturing Education Libraries

Huawei faces 5G ban from British’s 5G network within months

Security Affairs

JULY 5, 2020

British Prime Minister Boris Johnson is expected to begin phasing out the use of network equipment manufactured by the Chinese tech giant Huawei in the UK’s 5G network as little as six months, The Daily Telegraph reported. The post Huawei faces 5G ban from British’s 5G network within months appeared first on Security Affairs.

Risk

Risk Manufacturing Government Communications

Multiple flaws in Teltonika industrial cellular router expose OT networks to hack

Security Affairs

MAY 16, 2023

Teltonika Networks is a leading manufacturer of networking solutions, widely adopted in industrial environments, including gateways, LTE routers, and modems. The study focuses on the RUT241 and RUT955 cellular routers manufactured by Teltonika, and on the Remote Management System (RMS) provided by the vendor. through 00.07.03.4

Manufacturing

Manufacturing Cloud Cybersecurity Access

FBI and CISA warn of attacks by Rhysida ransomware gang

Security Affairs

NOVEMBER 15, 2023

The report includes IOCs and TTPs identified through investigations as recently as September 2023. The Rhysida ransomware group has been active since May 2023, according to the gang’s Tor leak site, at least 62 companies are victims of the operation. The victims of the group are “targets of opportunity.”

Ransomware

Ransomware Manufacturing Education Passwords

Swiss Air Force sensitive files stolen in the hack of Ultra Intelligence & Communications

Security Affairs

JANUARY 8, 2024

Documents belonging to the Swiss Air Force were leaked on the dark web as a result of cyberattack on a US security provider. Documents belonging to the Swiss Air Force were leaked on the dark web after the US security company Ultra Intelligence & Communications suffered a data breach. ” reported the SwissInfo website.

Communications

Communications Ransomware Data breaches Manufacturing

Law enforcement operation seized Ragnar Locker group’s infrastructure

Security Affairs

OCTOBER 19, 2023

“As of January 2022, the FBI has identified at least 52 entities across 10 critical infrastructure sectors affected by RagnarLocker ransomware, including entities in the critical manufacturing, energy, financial services, government, and information technology sectors,” reads the FBI’s flash alert.

Ransomware

Ransomware Financial Services Manufacturing Government

Who is behind the Mozi Botnet kill switch?

Security Affairs

NOVEMBER 2, 2023

[link] — 360 Netlab (@360Netlab) July 28, 2021 Earlier in August 2021, Microsoft researchers reported that the Mozi botnet was improved by implementing new capabilities to target network gateways manufactured by Netgear, Huawei, and ZTE. appeared first on Security Affairs. ” reads the analysis published by ESET.

IoT

IoT Manufacturing Security IT

Researchers warn of a new critical Apache OFBiz flaw

Security Affairs

AUGUST 5, 2024

This is the second major flaw SonicWall has discovered in Apache OFBiz in recent months, the first coming in December 2023.” Apache OFBiz is an open-source ERP system that helps businesses automate and integrate various processes such as accounting, HR, CRM, order management, manufacturing, and e-commerce. ” wrote Vhora.

Authentication

Authentication Manufacturing Cybersecurity Security

Ukraine’s intelligence service hacked Russia’s Federal Air Transport Agency, Rosaviatsia

Security Affairs

NOVEMBER 27, 2023

The agency’s primary role is to ensure the safety, security, and efficiency of air transport within the country. The content of the alleged stolen data demonstrates that: In January 2023, 185 accidents were recorded in Russian civil aviation. About a third of them were classified as incidents of varying levels of danger.

Military

Military Manufacturing Government Authentication

OmniVision disclosed a data breach after the 2023 Cactus ransomware attack

Ransomware attacks break records in 2023: the number of victims rose by 128%

Webinars

Trending Sources

Alphv group claims the hack of Clarion, a global manufacturer of audio and video equipment for cars

Webinars

China’s Volt Typhoon botnet has re-emerged

Port of Seattle ‘s August data breach impacted 90,000 people

Cloak ransomware group hacked the Virginia Attorney General’s Office

Hunters International gang claims the theft of 1.4 TB of data allegedly stolen from Tata Technologies

Lockbit ransomware gang claims to have stolen data from Boeing

335,923 out of 489,337 Fortinet firewalls vulnerable to CVE-2023-27997

A cyberattack halted operations at Varta production plants

Fortinet urges to patch the critical RCE flaw CVE-2023-27997 in Fortigate firewalls

North Korea-linked APT Kimsuky targeted German defense firm Diehl Defence

Chipmaker Qualcomm warns of three actively exploited zero-days

Ransomware group Dark Angels claims the theft of 1TB of data from chipmaker Nexperia

THE 11TH EDITION OF THE ENISA THREAT LANDSCAPE REPORT IS OUT!

McLaren Health Care revealed that a data breach impacted 2.2 million people

LockBit ransomware gang leaked data stolen from Boeing

Rhysida ransomware gang claimed China Energy hack

BlackCat gang claims they stole data of 2.5 million patients of McLaren Health Care

BianLian group exploits JetBrains TeamCity bugs in ransomware attacks

City of Dallas has set a budget of $8.5 million to mitigate the May Royal ransomware attack

Rhysida Ransomware group claims to have breached Bayhealth Hospital in Delaware

As of May 2024, Black Basta ransomware affiliates hacked over 500 organizations worldwide

Rhysida ransomware gang is auctioning data stolen from the British Library

MY TAKE: New tech standards, like ‘Matter’ and ‘BIMI,’ point the way to secure interoperability

Sonos smart speakers flaw allowed to eavesdrop on users

Lacroix Group shut down three facilities after a ‘targeted cyberattack’

Nexx bugs allow to open garage doors, and take control of alarms and plugs

Security Affairs newsletter Round 404 by Pierluigi Paganini

Raspberry Robin spotted using two new 1-day LPE exploits

Security Affairs newsletter Round 421 by Pierluigi Paganini – International edition

MSI confirms security breach after Money Message ransomware attack

Security Affairs newsletter Round 426 by Pierluigi Paganini – International edition

FBI and CISA update a joint advisory on the BlackSuit Ransomware group

Rhysida ransomware group hacked King Edward VII’s Hospital in London

Rhysida ransomware group hacked Abdali Hospital in Jordan

Huawei faces 5G ban from British’s 5G network within months

Multiple flaws in Teltonika industrial cellular router expose OT networks to hack

FBI and CISA warn of attacks by Rhysida ransomware gang

Swiss Air Force sensitive files stolen in the hack of Ultra Intelligence & Communications

Law enforcement operation seized Ragnar Locker group’s infrastructure

Who is behind the Mozi Botnet kill switch?

Researchers warn of a new critical Apache OFBiz flaw

Ukraine’s intelligence service hacked Russia’s Federal Air Transport Agency, Rosaviatsia

Stay Connected