Thales Cloud Protection & Licensing

OCTOBER 11, 2024

divya Fri, 10/11/2024 - 08:54 As user expectations for secure and seamless access continue to grow, the 2024 Thales Consumer Digital Trust Index (DTI) research revealed that 65% of users feel frustrated with frequent password resets. Passwordless Authentication without Secrets!

Authentication 132

Authentication Retail Manufacturing Passwords 132

Security Affairs

SEPTEMBER 16, 2024

D-Link has addressed three critical vulnerabilities, tracked as CVE-2024-45694 , CVE-2024-45695 , CVE-2024-45697 , impacting three wireless router models. The manufacturer also addressed two high-severity vulnerabilities, tracked as CVE-2024-45696 and CVE-2024-45698. CVE-2024-45695 (9.8 and earlier.

Manufacturing 128

Manufacturing Access Security Risk 128

Security Affairs

DECEMBER 27, 2023

Elections are scheduled in several countries worldwide in 2024, with potential geopolitical implications. The 2024 European Union elections face threats from content generated through these platforms. Artificial intelligence is having a significant impact on various industries, such as health, finance, and manufacturing.

Artificial Intelligence 137

Artificial Intelligence Government Manufacturing IT 137

Security Affairs

AUGUST 28, 2024

Cisco Talos observed the BlackByte ransomware group exploiting the recently patched security flaw CVE-2024-37085 in VMware ESXi hypervisors in recent attacks. The flaw CVE-2024-37085 (CVSS score of 6.8) ” The BlackByte’s victimology shows that over 32 percent of known victims are in the manufacturing industry vertical.

Ransomware 125

Ransomware Authentication Encryption Access 125

The Last Watchdog

APRIL 30, 2024

in different industries, including energy, manufacturing, and healthcare. Here are three strategies they should pursue in 2024 to minimize the chance of a Unitronics-style hack. The problem with this from a security perspective is that there tends to be no segregation between services.

Security 182

Security Cybersecurity Unstructured data Cloud 182

OpenText Information Management

SEPTEMBER 27, 2024

The latest 2024 Threat Hunter Perspective from OpenText sheds light on the most pressing threats, nation-state activities, and security recommendations enterprises must consider in the months ahead. The top threat actors in 2024 Our report identifies the top 15 threats and threat actors that enterprises need to be aware of.

Military 106

Military Cybersecurity Ransomware Security 106

Security Affairs

SEPTEMBER 14, 2024

Every week the best security articles from Security Affairs are free in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Security 121

Security Data breaches Computer and Electronics Ransomware 121

Security Affairs

SEPTEMBER 26, 2024

It is widely used for automating machines and processes in industries like manufacturing, energy, and utilities. The vulnerability was discovered by Jared Rittle of Cisco Talos that reported the issue to the maintainers of the project on June 10, 2024. The issue was addressed on September 18, 2024.

Energy and Utilities 139

Energy and Utilities Manufacturing IT Information Security 139

Security Affairs

FEBRUARY 15, 2024

On February 12, 2023, a cyber attack halted operations at five production plants of German battery manufacturer Varta. On February 13, German battery manufacturer Varta announced that a cyber attack forced the company to shut down IT systems. The attack disrupted operations at five production plants and the administration.

Manufacturing 136

Manufacturing Ransomware IT Security 136

Security Affairs

APRIL 16, 2024

Nexperia is a semiconductor manufacturer headquartered in Nijmegen, the Netherlands. The chipmaker has 14,000 employees as of 2024. Gb - NDA The group published a set of files as proof of the security breach and threatens leak all the stolen data if the victim will not pay the ransom. Gb AWACS software - 13 Gb.esm files - 1.9

Ransomware 139

Ransomware Manufacturing Insurance Cybersecurity 139

Security Affairs

JUNE 5, 2024

Zyxel Networks released an emergency security update to address critical vulnerabilities in end-of-life NAS devices. Zyxel Networks released an emergency security update to address three critical flaws in some of its NAS devices that have reached end-of-life. Two flaws can also allow attackers to elevate privileges. 13)C0 and older.

Authentication 125

Authentication Manufacturing Security IT 125

Security Affairs

MARCH 11, 2024

Researchers from GuidePoint Security noticed, while investigating a recent attack linked to the BianLian ransomware group, that the threat actors gained initial access to the target by exploiting flaws in a TeamCity server. which is an IP address linked to a server that hosted the BianLian GO backdoor as of March 6th, 2024.

Ransomware 130

Ransomware Manufacturing Access Security 130

Thales Cloud Protection & Licensing

SEPTEMBER 10, 2024

B2B IAM in Agricultural Machinery: Building a Seamless and Secure Future for Manufacturers madhav Tue, 09/10/2024 - 07:01 As global food demand continues to rise, agricultural machinery manufacturers face growing pressure to modernise and adopt sustainable practices.

Agriculture 62

Agriculture B2B Manufacturing Security 62

Security Affairs

NOVEMBER 2, 2024

Hackers are exploiting two zero-day vulnerabilities, tracked as CVE-2024-8956 and CVE-2024-8957, in PTZOptics cameras. Threat actors are attempting to exploit two zero-day vulnerabilities, tracked as CVE-2024-8956 and CVE-2024-8957 , in PTZOptics pan-tilt-zoom (PTZ) live streaming cameras, GretNoise researchers warn.

Manufacturing 119

Manufacturing IoT Data breaches Passwords 119

Security Affairs

NOVEMBER 9, 2024

” The research targeted a CMU unit manufactured by Visteon, with software initially developed by Johnson Controls Inc. Below are the vulnerabilities reported by ZDI: CVE-2024-8355 : SQL injection in DeviceManager, enabling database manipulation or code execution via spoofed Apple device connections. x) may also be vulnerable.

Ransomware 127

Ransomware Manufacturing Access Risk 127

Security Affairs

OCTOBER 2, 2024

Of the 14 security flaws nine are rated high, and three are rated medium in severity. The flaws impact residential and enterprise routers manufactured by DrayTek that could be exploited to take over susceptible devices. The most severe vulnerability, tracked as CVE-2024-41592 (CVSS score 10), is a DoS/RCE issue.

IoT 136

IoT Manufacturing Communications Ransomware 136

KnowBe4

AUGUST 8, 2024

The financial repercussions of the May 2024 ransomware attack on the electronics manufacturing services firm Key Tronic underscores just how costly these attacks are.

Ransomware 117

Ransomware Manufacturing Security 117

Security Affairs

AUGUST 9, 2024

The researchers have disclosed the vulnerabilities during the BLACK HAT USA 2024 conference. MediaTek, who manufactures Wi-Fi SoC for Sonos speaker, released a security advisory in March 2024 (CVE-2024-20018). NCC Group previously identified weaknesses within the secure boot process on the device.”

Manufacturing 125

Manufacturing Paper Security IT 125

eSecurity Planet

MAY 2, 2024

Most organizations express confidence in their current status and budgets, but also expect to experience at least one data breach in 2024. Password manager : Stores passwords securely, enforces quality, permits safe internal and external sharing, and ties into HR software for effective off-boarding of users.

Cybersecurity 103

Cybersecurity Ransomware Passwords Cloud 103

Security Affairs

AUGUST 28, 2024

Cybersecurity and Infrastructure Security Agency (CISA) adds Apache OFBiz bug to its Known Exploited Vulnerabilities catalog. Cybersecurity and Infrastructure Security Agency (CISA) added Apache OFBiz Incorrect Authorization Vulnerability CVE-2024-38856 (CVSS score of 9.8) to its Known Exploited Vulnerabilities (KEV) catalog.

IT 123

IT Authentication Manufacturing Cybersecurity 123

Security Affairs

AUGUST 5, 2024

Experts urge organizations to address a new critical vulnerability, tracked as CVE-2024-38856, in Apache OFBiz. Apache OFBiz is an open-source ERP system that helps businesses automate and integrate various processes such as accounting, HR, CRM, order management, manufacturing, and e-commerce. addressed the flaw.

Authentication 127

Authentication Manufacturing Cybersecurity Security 127

Security Affairs

SEPTEMBER 13, 2024

In August 2024, several users reported that Dr.Web antivirus detected changes in their TV box system files. Unfortunately, often manufacturers sell older OS versions as newer ones. Doctor Web researchers uncovered a malware, tracked as Vo1d , that infected nearly 1.3 million Android-based TV boxes belonging to users in 197 countries.

Manufacturing 139

Manufacturing Access Risk IT 139

Security Affairs

NOVEMBER 6, 2024

Taiwanese vendor Synology has addressed a critical security vulnerability, tracked as CVE-2024-10443, that impacts DiskStation and BeePhotos. Security researcher Rick de Jager demonstrated the vulner ability, called RISK:STATION by cybersecurity firm Midnight Blue, at the Pwn2Own Ireland 2024 hacking contest.

Manufacturing 122

Manufacturing Cybersecurity Risk Security 122

Security Affairs

NOVEMBER 5, 2024

Cybersecurity and Infrastructure Security Agency (CISA) adds PTZOptics PT30X-SDI/NDI camera bugs to its Known Exploited Vulnerabilities catalog. The vulnerabilities impact NDI-enabled pan-tilt-zoom (PTZ) cameras from multiple manufacturers. CVE-2024-8957 (CVSS score of CVSS 7.2) reads the analysis published by GreyNoise.

IT 123

IT Manufacturing Authentication IoT 123

Security Affairs

OCTOBER 1, 2024

North Korea-linked APT Kimsuky has been linked to a cyberattack on Diehl Defence, a German manufacturer of advanced military systems. KG is a German weapon manufacturer headquartered in Überlingen. In May 2024, Symantec researchers observed the North Korea-linked group Kimsuky using a new Linux backdoor dubbed Gomir.

Military 132

Military Manufacturing Phishing Information Security 132

Security Affairs

AUGUST 8, 2024

FBI and CISA published a joint advisory on the BlackSuit Ransomware group, the document provides TTPs and IOCs as recently as July 2024. The BlackSuit ransomware has targeted various critical infrastructure sectors, including commercial facilities, healthcare, government, and manufacturing.

Ransomware 129

Ransomware Communications Manufacturing Phishing 129

Krebs on Security

APRIL 4, 2024

com is currently selling security cameras made by the Chinese manufacturer Hikvision , via an Internet address based in Hong Kong. For example, this account at Medium has authored more than a dozen blog posts in the past year singing the praises of Tornote as a secure, self-destructing messaging service.

Phishing 255

Phishing Blockchain Manufacturing Encryption 255

Security Affairs

SEPTEMBER 20, 2024

The threat actor has been active since July 2022, it was observed targeting organizations in the education, healthcare, IT, and manufacturing sectors. Microsoft observed the financially motivated threat actor tracked as Vanilla Tempest using INC ransomware for the first time to target the healthcare sector in the United States.

Ransomware 129

Ransomware Manufacturing Education IT 129

Security Affairs

AUGUST 21, 2024

A flaw in millions of RFID cards manufactured by Shanghai Fudan Microelectronics allows these contactless cards to be cloned instantly. Researchers from security firm Quarkslab discovered a backdoor in millions of RFID cards manufactured by the Chinese chip manufacturer Shanghai Fudan Microelectronics.

Manufacturing 135

Manufacturing Paper Authentication Risk 135

Security Affairs

OCTOBER 8, 2024

Qualcomm addressed 20 vulnerabilities in its products, including a potential zero-day issue tracked as CVE-2024-43047 (CVSS score 7.8). ” The flaw was reported by cybersecurity researchers Seth Jenkins from Google Project Zero and Conghui Wang from Amnesty International Security Lab. See [link] for the details.

Manufacturing 118

Manufacturing Cybersecurity IT Security 118

OpenText Information Management

APRIL 15, 2024

At our premiere information management conference OpenText World Europe 2024 this week, the attention is focused on new innovations that meet new customer needs. Help-desk employees can now find very specific, summarized answers from a deep repository of private, secured, semi-structured information in minutes instead of days.

Cloud 69

Cloud Compliance Government Retail 69

The Last Watchdog

JANUARY 22, 2024

23, 2024 — Sternum, the pioneer in embedded IoT security and observability, today announced enhanced security for the ChargePoint Home Flex. Thanks to the analysis and help of Sternum IoT, ChargePoint was able to correct weaknesses in CPH50, reduce the attack surface and thus improve the security of the product.

IoT 100

IoT Security Manufacturing Access 100

eSecurity Planet

NOVEMBER 1, 2021

The European Union is poised to place more demands on manufacturers to design greater security into their wireless and Internet of Things (IoT) devices. Manufacturers will be required to adhere to the new cybersecurity safeguards when designing and producing these products. Common EU Security Standards.

IoT 103

IoT Security Manufacturing Marketing 103

Data Matters

SEPTEMBER 27, 2024

On September 26, 2024, the U.S. BIS also proposed extensive compliance obligations for importers and manufacturers of connected vehicles and related components, which come as the automotive industry continues to grapple with how to protect critical safety-related data as vehicle interconnectivity increases. The post U.S.

Manufacturing 97

Manufacturing Compliance Communications Privacy 97

Security Affairs

MAY 22, 2024

The digital imaging products manufacturer OmniVision disclosed a data breach after the 2023 ransomware attack. The company designs and develops digital imaging products for use in mobile phones, laptops, netbooks and webcams, security and surveillance cameras, entertainment, automotive and medical imaging systems.

Data breaches 132

Data breaches Ransomware Manufacturing Encryption 132

Security Affairs

SEPTEMBER 15, 2024

— Port of Seattle – (@PortofSeattle) August 24, 2024 Passengers were recommended to check with their airlines for the latest information for their flights. The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors.

Ransomware 127

Ransomware Manufacturing Education Encryption 127

Security Affairs

FEBRUARY 19, 2024

Return here for more information at: 11:30 GMT on Tuesday 20th Feb” The Operation Cronos operation is still ongoing and NCA’s announced that more information will be published tomorrow, February 20, 2024. “The site is now under the control of law enforcement.

Energy and Utilities 133

Energy and Utilities Ransomware Agriculture Financial Services 133