Access, Manufacturing and Security - Information Management Today

Chinese Android phones shipped with malware-laced WhatsApp, Telegram apps

Security Affairs

APRIL 16, 2025

Doctor Web warns that the attackers gained access to the supply chain of a number of Chinese manufacturers of Android-based smartphones. A third of the models listed below are manufactured under the SHOWJI brand.“ The kits analyzed by the company are commercialized by many manufacturers including Huawei, Lenovo and Xiaomi.

Manufacturing

Manufacturing Passwords Security IT

Airplane manufacturer Bombardier has disclosed a security breach, data leaked online

Security Affairs

FEBRUARY 24, 2021

Hackers posted data stolen from manufacturer of business jets Bombardier on Clop ransomware leak site following alleged FTA hack. Security experts from FireEye linked the cyber attacks to the cybercrime group UNC2546, aka FIN11. The investigation indicates that the attackers had access only to data stored on the specific servers.

Manufacturing

Manufacturing Security Ransomware Cybersecurity

TIDRONE APT targets drone manufacturers in Taiwan

Security Affairs

SEPTEMBER 9, 2024

Trend Micro spotted an allegedly China-linked threat actor, tracked TIDRONE, targeting drone manufacturers in Taiwan. Since April, the group used CLNTEND , a previously undetected remote access tool (RAT), which supports a wider range of network protocols for communication, further enhancing their capabilities.

Manufacturing

Manufacturing Military Communications Access

Webinars

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

Gaming hardware manufacturer Razer suffered a data leak

Security Affairs

SEPTEMBER 13, 2020

Gaming hardware manufacturer Razer suffered a data leak, an unsecured database managed by the company containing gamers’ info was exposed online. Gaming hardware manufacturer Razer has suffered a data leak, this is the discovery made by the security researcher Bob Diachenko. ” continues the post. Pierluigi Paganini.

Manufacturing

Manufacturing Data breaches Phishing Passwords

Texas oilfield supplier Newpark Resources suffered a ransomware attack

Security Affairs

NOVEMBER 8, 2024

Texas oilfield supplier Newpark Resources revealed that a ransomware attack on October 29 disrupted access to some of its information systems and business applications. ” reads the FORM 8-K filed with Securities and Exchange Commission (SEC). At this time, no ransomware groups claimed responsibility for the security breach.

Ransomware

Ransomware Manufacturing Cybersecurity Access

Mazda Connect flaws allow to hack some Mazda vehicles

Security Affairs

NOVEMBER 9, 2024

Multiple vulnerabilities in the infotainment unit Mazda Connect could allow attackers to execute arbitrary code with root access. This occurs due to improper input sanitization in the Mazda Connect CMU, allowing attackers with physical access to exploit the system using a crafted USB device. . x) may also be vulnerable.

Ransomware

Ransomware Manufacturing Access Risk

Threat actor claims to have hacked European manufacturer of missiles MBDA

Security Affairs

JULY 31, 2022

Threat actors that go online with the moniker Adrastea claim to have hacked the multinational manufacturer of missiles MBDA. We found critical vulnerabilities in your network infrastructure and gained access to the company’s files and confidential data. Currently, the volume of downloaded data is approximately 60 GB.”

Manufacturing

Manufacturing Military Archiving Cybersecurity

Cyber-Criminal espionage Operation insists on Italian Manufacturing

Security Affairs

MAY 22, 2020

ZLab researchers spotted a new malicious espionage activity targeting Italian companies operating worldwide in the manufacturing sector. This actor was first spotted by PaloAlto’s UNIT42 in 2018 during wide scale operations against technology, retail, manufacturing, and local government industries in the US, Europe and Asia.

Manufacturing

Manufacturing e-Delivery IT Security

Port of Seattle ‘s August data breach impacted 90,000 people

Security Affairs

APRIL 5, 2025

The ransomware gang hit organizations in multiple industries, including education, healthcare, manufacturing, information technology, and government sectors. While our response and recovery are still ongoing, we wanted to share updated information about what happened, what we have been doing, and how we are further strengthening our security.

Data breaches

Data breaches Ransomware Manufacturing Education

Security Affairs newsletter Round 377

Security Affairs

AUGUST 7, 2022

Every week the best security articles from Security Affairs free for you in your email box. of its users due to the exposure of salted password hashes Twitter confirms zero-day used to access data of 5.4 of its users due to the exposure of salted password hashes Twitter confirms zero-day used to access data of 5.4

Security

Security Manufacturing Passwords Ransomware

NCSC: New UK law bans default passwords on smart devices

Security Affairs

APRIL 30, 2024

The UK National Cyber Security Centre (NCSC) orders smart device manufacturers to ban default passwords starting from April 29, 2024. National Cyber Security Centre (NCSC) is urging manufacturers of smart devices to comply with new legislation that bans default passwords. ” reads the announcement published by NCSC.

Passwords

Passwords Manufacturing IoT Retail

Space and defense tech maker Exail Technologies exposes database access

Security Affairs

SEPTEMBER 21, 2023

Exail Technologies, a high-tech manufacturer whose clients include the US Coast Guard, exposed sensitive company data that could’ve enabled attackers to access its databases. Exail, a French high-tech industrial group, left exposed a publicly accessible environment (.env) What Exail data was exposed?

Access

Access Manufacturing Security IT

HID Mercury Access Controller flaws could allow to unlock Doors

Security Affairs

JUNE 12, 2022

Experts found vulnerabilities in HID Mercury Access Controllers can be exploited by attackers to remotely unlock doors. Researchers from security firm Trellix discovered some critical vulnerabilities in HID Mercury Access Controllers that can be exploited by attackers to remotely unlock doors. ” continues the post.

Access

Access Authentication Manufacturing Cybersecurity

Japanese Kawasaki Heavy Industries discloses security breach

Security Affairs

DECEMBER 29, 2020

Japanese giant Kawasaki Heavy Industries discovered unauthorized access to a Japanese company server from multiple overseas offices. Kawasaki Heavy Industries disclosed a security breach, the company discovered unauthorized access to a Japanese company server from multiple overseas offices. Kawasaki Heavy Industries Ltd.

Security

Security Access Communications Manufacturing

Cloak ransomware group hacked the Virginia Attorney General’s Office

Security Affairs

MARCH 24, 2025

The group has extended its operations to countries in Asia and targets various sectors, including healthcare, real estate, construction, IT, food, and manufacturing.” ” reads a report published by Halcyon.

Ransomware

Ransomware Manufacturing Paper Archiving

Japanese defense contractors Pasco and Kobe Steel disclose security breaches

Security Affairs

FEBRUARY 7, 2020

Japanese defense contractors Pasco and Kobe Steel have disclosed security breaches that they have suffered back in 2016 and 2018. Pasco is Japan’s largest geospatial provider and Kobe Steel is one of the major steel manufacturers. The amount of unauthorized access is approximately 200 megabytes, mainly for documents.”.

Security

Security Manufacturing Data breaches Access

LockBit gang demands a $70 million ransom to the semiconductor manufacturing giant TSMC

Security Affairs

JULY 1, 2023

The LockBit ransomware gang claims to have hacked Taiwan Semiconductor Manufacturing Company (TSMC). The LockBit ransomware group this week claimed to have hacked the Taiwan Semiconductor Manufacturing Company ( TSMC ) and $70 million ransom. In August 2018, a malware infected systems at several Taiwan Semiconductor Manufacturing Co.

Manufacturing

Manufacturing Ransomware Security awareness Cybersecurity

Experts hacked 28,000 unsecured printers to raise awareness of printer security issues

Security Affairs

AUGUST 27, 2020

Cybersecurity experts at CyberNews hijacked close to 28,000 unsecured printers worldwide and forced them to print out a guide on printer security. Most of us already know the importance of using antivirus , anti-malware, and VPNs to secure our computers, phones, and other devices against potential attacks. Original post: [link].

Security

Security IoT Passwords Manufacturing

RobbinHood ransomware exploit GIGABYTE driver flaw to kill security software

Security Affairs

FEBRUARY 7, 2020

Cybercriminals behind the RobbinHood Ransomware are exploiting a vulnerable GIGABYTE driver to install a malicious and unsigned driver into Windows with the intent of disabling security products. Normally, Windows security software processes could only be killed by Kernel drivers. Attackers use this driver to disable security products.

Ransomware

Ransomware Security Encryption Manufacturing

German Federal Office for Information Security (BSI) investigates Chinese mobile phones

Security Affairs

SEPTEMBER 26, 2021

German Federal Office for Information Security is launching an investigation into the cybersecurity of certain Chinese mobile phones. German Federal Office for Information Security (BSI) is launching an investigation into the cybersecurity of mobile phones of certain Chinese manufacturers. Pierluigi Paganini.

Information Security

Information Security Manufacturing Security Communications

Volvo Cars suffers a data breach. Is it a ransomware attack?

Security Affairs

DECEMBER 10, 2021

Swedish automotive manufacturer Volvo Cars revealed that has suffered a cyberattack that resulted in the theft of R&D data. Swedish automotive manufacturer Volvo Cars revealed that threat actors have stolen R&D data from its systems. ” reads the notice of cyber security breach published by Volvo. kronor ($8.00, 7.06

Data breaches

Data breaches Ransomware Manufacturing IT

Critical flaw could have allowed attackers to control traffic lights

Security Affairs

JUNE 6, 2020

A critical vulnerability in traffic light controllers manufactured by SWARCO could have been exploited by attackers to disrupt traffic lights. SWARCO is the world’s largest manufacturer of signal heads and the number two internationally for reflective glass beads. ” reads the security advisory published by the U.S.

Manufacturing

Manufacturing Cybersecurity Access Security

Chinese-Made Biometric Access System Has 24 Vulnerabilities

Data Breach Today

JUNE 11, 2024

Kaspersky Unveils 24 Flaws in ZKTeco Terminals A promise of better security through biometrics fell short after security researchers dismantled an access system manufactured by a Chinese manufacture, only to discover 24 vulnerabilities contained inside.

Access

Access Manufacturing Security

Passwordless Authentication without Secrets!

Thales Cloud Protection & Licensing

OCTOBER 11, 2024

divya Fri, 10/11/2024 - 08:54 As user expectations for secure and seamless access continue to grow, the 2024 Thales Consumer Digital Trust Index (DTI) research revealed that 65% of users feel frustrated with frequent password resets.

Authentication

Authentication Retail Manufacturing Passwords

Australian Cyber Security Centre warns of a surge of LockBit 2.0 ransomware attacks

Security Affairs

AUGUST 9, 2021

The Australian Cyber Security Centre (ACSC) warns of a surge of LockBit 2.0 The Australian Cyber Security Centre (ACSC) warns of an escalation in LockBit 2.0 which includes info related to the activity of the gang, such as initial access, threat activity and mitigations. ransomware attacks appeared first on Security Affairs.

Ransomware

Ransomware Security Retail Manufacturing

Unpatched Manufacturing Camera Could Allow Industrial Spying

Data Breach Today

MARCH 28, 2025

Hackers Can Skip Login Protections to Access the 'choco tei' Camera An industrial camera common to Japanese manufacturer production lines has unpatched vulnerabilities allowing hackers to secretly access live footage or stop it from recording.

Manufacturing

Manufacturing Access Security IT

Zyxel Warns of Attacks on Its Firewall, VPN Products

Data Breach Today

JUNE 30, 2021

Company Advises Users to Maintain Proper Security Policies as It Prepares Hotfix Taiwanese networking device manufacturer Zyxel is notifying customers about an ongoing series of attacks on some of its enterprise firewall and VPN products and is advising users to maintain proper remote access security policies as it prepares a hotfix.

IT

IT Manufacturing Access Security

Raspberry Robin operators are selling initial access to compromised enterprise networks to ransomware gangs

Security Affairs

OCTOBER 27, 2022

DEV-0206 is an access broker tracked by Microsoft, which uses malvertising campaigns to compromise networks worldwide. The discovery made by Microsoft is very interesting because it is the first time that researchers found evidence that worm operators leverage an access broker to compromise enterprise networks. Pierluigi Paganini.

Ransomware

Ransomware Access Encryption Data collection

Security Blueprints of Many Companies Leaked in Hack of Swedish Firm Gunnebo

Krebs on Security

OCTOBER 28, 2020

In March 2020, KrebsOnSecurity alerted Swedish security giant Gunnebo Group that hackers had broken into its network and sold the access to a criminal group which specializes in deploying ransomware. The company has operations in 25 countries, more than 4,000 employees, and billions in revenue annually.

Security

Security Ransomware Agriculture Cybersecurity

US officials claim Huawei Equipment has secret backdoor for spying

Security Affairs

FEBRUARY 13, 2020

officials say Huawei can covertly access telecom networks where its equipment is installed. can covertly access mobile-phone networks around the world through “back doors” designed for use by law enforcement, as Washington tries to persuade allies to exclude the Chinese company from their networks.” “U.S. officials said.

Manufacturing

Manufacturing Access Government Communications

D-Link addressed three critical RCE in wireless router models

Security Affairs

SEPTEMBER 16, 2024

The flaws can allow attackers to remotely execute arbitrary code or access the devices using hardcoded credentials. The manufacturer also addressed two high-severity vulnerabilities, tracked as CVE-2024-45696 and CVE-2024-45698. On June 8, 2021, the TWCERT reported the vulnerabilities in D-Link DIR-X5460 to the company. and earlier.

Manufacturing

Manufacturing Security Access Risk

IPG Photonics high-performance laser developer hit with ransomware

Security Affairs

SEPTEMBER 20, 2020

manufacturer of high-performance fiber lasers for diverse applications and industries was hit by a ransomware attack that disrupted its operations. IPG Photonics manufactures high-performance fiber lasers, amplifiers, and laser systems for diverse applications and industries. IPG Photonics, a leading U.S. billion revenue in 2019. .

Ransomware

Ransomware Manufacturing Encryption Access

3.5m IP cameras exposed, with US in the lead

Security Affairs

DECEMBER 14, 2022

All too often, this gives them a false sense of security: when in fact, threat actors can not only access and watch your camera feed but exploit the unsecured device to hack into your network. After looking at 28 of the most popular manufacturers, our research team found 3.5 The reign of a Chinese brand. Most insecure brands.

Passwords

Passwords Manufacturing Authentication Government

A backdoor in millions of Shanghai Fudan Microelectronics RFID cards allows cloning

Security Affairs

AUGUST 21, 2024

A flaw in millions of RFID cards manufactured by Shanghai Fudan Microelectronics allows these contactless cards to be cloned instantly. Researchers from security firm Quarkslab discovered a backdoor in millions of RFID cards manufactured by the Chinese chip manufacturer Shanghai Fudan Microelectronics. And we broke it.

Manufacturing

Manufacturing Paper Authentication Risk

Security Affairs newsletter Round 392

Security Affairs

NOVEMBER 6, 2022

Every week the best security articles from Security Affairs free for you in your email box. The post Security Affairs newsletter Round 392 appeared first on Security Affairs. A new round of the weekly SecurityAffairs newsletter arrived! Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Security

Security Ransomware Military Manufacturing

Threat actors can remotely disable Fortress S03 Wi-Fi Home Security System

Security Affairs

AUGUST 31, 2021

Rapid7 researchers discovered two flaws that can be exploited by attackers to remotely disable one of the home security systems offered by Fortress Security Store. The Fortress S03 Wi-Fi Home Security System allows users to build their own alarm system to secure their homes and small businesses. Pierluigi Paganini.

Security

Security Cloud Manufacturing Cybersecurity

Microsoft spotted multiple malspam campaigns using malware-laced ISO and IMG files

Security Affairs

MAY 4, 2020

Microsoft warns of threat actors targeting organizations with malware-laced ISO and IMG files aimed at delivering a remote access trojan. The bait ISO or IMG files were infected with a strain of the Remcos remote access trojan (RAT). pic.twitter.com/EbI8kxICQG — Microsoft Security Intelligence (@MsftSecIntel) May 4, 2020.

Manufacturing

Manufacturing Archiving Access Security

Vo1d malware infected 1.3 Million Android-based TV Boxes in 197 countries

Security Affairs

SEPTEMBER 13, 2024

“If any malware has root access and the ability to write to the /system system directory, it can anchor itself in the infected device by adding itself to this script (or by creating it from scratch if it is not present in the system). Unfortunately, often manufacturers sell older OS versions as newer ones.

Manufacturing

Manufacturing Access Risk IT

China’s Volt Typhoon botnet has re-emerged

Security Affairs

NOVEMBER 13, 2024

The group managed to maintain access without being detected for as long as possible. In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. and Guam without being detected.

e-Discovery

e-Discovery Communications Ransomware Government

National Safety Council data leak: Credentials of NASA, Tesla, DoJ, Verizon, and 2K others leaked by workplace safety organization

Security Affairs

AUGUST 31, 2023

The Cybernews research team discovered public access to the web directories that exposed thousands of credentials. Also, the credentials could have been used to gain initial access into corporate networks to deploy ransomware, steal or sabotage internal documents, or gain access to user data.

Passwords

Passwords Healthcare Manufacturing Access

MITRE released EMB3D Threat Model for embedded devices

Security Affairs

MAY 14, 2024

Automotive, healthcare, and manufacturing), including critical infrastructure. Multiple partners have contributed to the design of the threat model, including Red Balloon Security, Narf Industries, and Niyo ‘Little Thunder’ Pearson of ONE Gas. The threat model provides a knowledge base of cyber threats to embedded devices.

Manufacturing

Manufacturing IoT Security Access

Lazarus Exploits Log4Shell to Deploy Telegram-Based Malware

Data Breach Today

DECEMBER 12, 2023

North Korean Hackers Deploy Novel Malware Families North Korean hacking group Lazarus Group is exploiting Log4Shell to target manufacturing, agriculture and physical security sectors, resulting in the deployment of a tailored implant on compromised systems. The attack campaign targeted publicly accessible VMware Horizon servers.

Agriculture

Agriculture Manufacturing Access Security

Eken camera doorbells allow ill-intentioned individuals to spy on you

Security Affairs

MARCH 3, 2024

Camera doorbells manufactured by the Chinese company Eken Group Ltd under the brands EKEN and Tuck are affected by major vulnerabilities. Researchers from Consumer Reports (CR) discovered severe vulnerabilities in doorbell cameras manufactured by the Chinese company Eken Group Ltd. ” reads the report published by CR.

Manufacturing

Manufacturing Retail Sales Communications

MITRE and CISA publish the 2021 list of most common hardware weaknesses

Security Affairs

OCTOBER 30, 2021

MITRE and the DHS’s Cybersecurity and Infrastructure Security Agency (CISA) have announced the release of the “2021 Common Weakness Enumeration (CWE) Most Important Hardware Weaknesses” list. CIOs and security managers could also use the list to assess the efficiency of their program to secure hardware within in their organizations.

Manufacturing

Manufacturing Access Education Security

Chinese Android phones shipped with malware-laced WhatsApp, Telegram apps

Airplane manufacturer Bombardier has disclosed a security breach, data leaked online

Webinars

Trending Sources

TIDRONE APT targets drone manufacturers in Taiwan

Webinars

Gaming hardware manufacturer Razer suffered a data leak

Texas oilfield supplier Newpark Resources suffered a ransomware attack

Mazda Connect flaws allow to hack some Mazda vehicles

Threat actor claims to have hacked European manufacturer of missiles MBDA

Cyber-Criminal espionage Operation insists on Italian Manufacturing

Port of Seattle ‘s August data breach impacted 90,000 people

Security Affairs newsletter Round 377

NCSC: New UK law bans default passwords on smart devices

Space and defense tech maker Exail Technologies exposes database access

HID Mercury Access Controller flaws could allow to unlock Doors

Japanese Kawasaki Heavy Industries discloses security breach

Cloak ransomware group hacked the Virginia Attorney General’s Office

Japanese defense contractors Pasco and Kobe Steel disclose security breaches

LockBit gang demands a $70 million ransom to the semiconductor manufacturing giant TSMC

Experts hacked 28,000 unsecured printers to raise awareness of printer security issues

RobbinHood ransomware exploit GIGABYTE driver flaw to kill security software

German Federal Office for Information Security (BSI) investigates Chinese mobile phones

Volvo Cars suffers a data breach. Is it a ransomware attack?

Critical flaw could have allowed attackers to control traffic lights

Chinese-Made Biometric Access System Has 24 Vulnerabilities

Passwordless Authentication without Secrets!

Australian Cyber Security Centre warns of a surge of LockBit 2.0 ransomware attacks

Unpatched Manufacturing Camera Could Allow Industrial Spying

Zyxel Warns of Attacks on Its Firewall, VPN Products

Raspberry Robin operators are selling initial access to compromised enterprise networks to ransomware gangs

Security Blueprints of Many Companies Leaked in Hack of Swedish Firm Gunnebo

US officials claim Huawei Equipment has secret backdoor for spying

D-Link addressed three critical RCE in wireless router models

IPG Photonics high-performance laser developer hit with ransomware

3.5m IP cameras exposed, with US in the lead

A backdoor in millions of Shanghai Fudan Microelectronics RFID cards allows cloning

Security Affairs newsletter Round 392

Threat actors can remotely disable Fortress S03 Wi-Fi Home Security System

Microsoft spotted multiple malspam campaigns using malware-laced ISO and IMG files

Vo1d malware infected 1.3 Million Android-based TV Boxes in 197 countries

China’s Volt Typhoon botnet has re-emerged

National Safety Council data leak: Credentials of NASA, Tesla, DoJ, Verizon, and 2K others leaked by workplace safety organization

MITRE released EMB3D Threat Model for embedded devices

Lazarus Exploits Log4Shell to Deploy Telegram-Based Malware

Eken camera doorbells allow ill-intentioned individuals to spy on you

MITRE and CISA publish the 2021 list of most common hardware weaknesses

Stay Connected