Communications and Manufacturing - Information Management Today

IoT devices at major Manufacturers infected with crypto-miner

Security Affairs

FEBRUARY 8, 2020

Hackers have infected with a piece of malware some IoT devices running Windows 7 designed by three of the world’s largest manufacturers. The experts reported that several IoT devices at some major manufacturers have been infected with a cryptocurrency miner in October 2019. Pierluigi Paganini. SecurityAffairs – Windows 7, hacking).

Manufacturing

Manufacturing IoT Communications Security

TIDRONE APT targets drone manufacturers in Taiwan

Security Affairs

SEPTEMBER 9, 2024

Trend Micro spotted an allegedly China-linked threat actor, tracked TIDRONE, targeting drone manufacturers in Taiwan. Since April, the group used CLNTEND , a previously undetected remote access tool (RAT), which supports a wider range of network protocols for communication, further enhancing their capabilities.

Manufacturing

Manufacturing Military Communications Access

Swiss Air Force sensitive files stolen in the hack of Ultra Intelligence & Communications

Security Affairs

JANUARY 8, 2024

Documents belonging to the Swiss Air Force were leaked on the dark web after the US security company Ultra Intelligence & Communications suffered a data breach. Ultra Intelligence & Communications has been breached by BlackCat. Ultra Intelligence & Communications has allegedly been breached by BlackCat.

Communications

Communications Ransomware Data breaches Manufacturing

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

Sierra Wireless halted production at its manufacturing sites due to ransomware attack

Security Affairs

MARCH 23, 2021

Sierra Wireless is a Canadian multinational wireless communications equipment designer and manufacturer headquartered in Richmond, British Columbia, Canada. The company sells mobile computing and machine-to-machine (M2M) communications products that work over cellular networks. ” . Pierluigi Paganini.

Manufacturing

Manufacturing Ransomware IT IoT

ICS-CERT warns of several flaws in the GE Communicator software

Security Affairs

MAY 6, 2019

ICS-CERT is warning of several vulnerabilities in the GE Communicator software, including hardcoded credentials and privilege escalation bugs. ICS-CERT is warning of five flaws affecting the GE Communicator software, including privilege escalation issues and hardcoded credentials. SecurityAffairs – GE Communicator, hacking).

Communications

Communications Manufacturing Access Security

Winnti Group was planning a devastating supply-chain attack against Asian manufacturer

Security Affairs

OCTOBER 14, 2019

Winnti Group is back with a new modular Win backdoor that was used to infect the servers of a high-profile Asian mobile hardware and software manufacturer. The PortReuse backdoor has a modular architecture, experts discovered that its components are separate processes that communicate through named pipes. Pierluigi Paganini.

Manufacturing

Manufacturing Paper Communications IT

Ransomware Reportedly Hits Ventilator Maker

Data Breach Today

AUGUST 10, 2020

Incident Reflects Threats Facing Those Involved in COVID-19 Response A manufacturer of transit communication systems that pivoted to build ventilators during the COVID-19 pandemic is reportedly the latest victim of the DoppelPaymer ransomware gang.

Ransomware

Ransomware Manufacturing Communications

China’s Volt Typhoon botnet has re-emerged

Security Affairs

NOVEMBER 13, 2024

According to Microsoft, the campaign aimed at building capabilities that could disrupt critical communications infrastructure between the United States and Asia region in the case of future crises. The group also relies on customized versions of open-source tools for C2 communications and stay under the radar.

e-Discovery

e-Discovery Communications Ransomware Government

Japanese tech firm Oomiya hit by LockBit 3.0. Multiple supply chains potentially impacted

Security Affairs

OCTOBER 17, 2022

Oomiya is focused on designing and manufacturing microelectronics and facility system equipment. The business of Omiya Kasei is divided into four major areas, manufacturing and designing chemical and industrial products, designing electronic materials, pharmaceutical development, and factory manufacturing.

Manufacturing

Manufacturing Healthcare Ransomware Communications

Hundreds of vulnerabilities in common Wi-Fi routers affect millions of users

Security Affairs

DECEMBER 5, 2021

Researchers discovered a total of 226 potential security vulnerabilities in nine Wi-Fi popular routers from known manufacturers. Since the integration of a new kernel into the firmware is costly, no manufacturer was up to date here. The experts shared their findings with the manufacturers, most of the flaws have been already fixed. .

IoT

IoT Manufacturing Passwords Communications

German Federal Office for Information Security (BSI) investigates Chinese mobile phones

Security Affairs

SEPTEMBER 26, 2021

German Federal Office for Information Security (BSI) is launching an investigation into the cybersecurity of mobile phones of certain Chinese manufacturers. “Xiaomi’s devices do not censor communications to or from its users. Xiaomi fully respects and protects the legal rights of all users.” reads the reply of Xiaomi.

Information Security

Information Security Manufacturing Security Communications

Eken camera doorbells allow ill-intentioned individuals to spy on you

Security Affairs

MARCH 3, 2024

Camera doorbells manufactured by the Chinese company Eken Group Ltd under the brands EKEN and Tuck are affected by major vulnerabilities. Researchers from Consumer Reports (CR) discovered severe vulnerabilities in doorbell cameras manufactured by the Chinese company Eken Group Ltd. ” reads the report published by CR.

Manufacturing

Manufacturing Retail Sales Communications

Security Affairs newsletter Round 377

Security Affairs

AUGUST 7, 2022

Greek intelligence service used surveillance malware to spy on a journalist, Reuters reports Slack resets passwords for about 0.5% of its users due to the exposure of salted password hashes Twitter confirms zero-day used to access data of 5.4

Security

Security Manufacturing Passwords Ransomware

New RedLine malware version distributed as fake Omicron stat counter

Security Affairs

JANUARY 12, 2022

Over the course of the few weeks after this variant was released, we noticed one IP address in particular communicating with this C2 server.” This variant uses 207[.]32.217.89 as its C2 server through port 14588. “This IP is owned by 1gservers. ” states the report published by Fortinet.

Manufacturing

Manufacturing File names Archiving Encryption

High Severity DoS bug affects Several Yokogawa products

Security Affairs

JANUARY 5, 2019

A serious DoS flaw affects several industrial automation products manufactured by the Yokogawa Electric. The DoS vulnerability in several Yokogawa Electric products affects the Open Communication Driver for Vnet/IP, a real-time plant network system for process automation. ” reads the security advisory published by the company.

Agriculture

Agriculture Manufacturing Communications Paper

FCC faces $3B Shortfall In Huawei Rip And Replace Program

Data Breach Today

JULY 18, 2022

A $2 billion fund to root out equipment from Chinese manufacturers Huawei and ZTE operating within small and rural U.S. telecoms isn't enough to cover costs, the Federal Communications Commission informed Congress. The program's full cost is closer to $5 billion, wrote FCC Chair Jessica Rosenworcel.

Manufacturing

Manufacturing Communications

FCC Faces $3B Shortfall in Huawei Rip-and-Replace Program

Data Breach Today

JULY 19, 2022

US Seeking To Shut Out Huawei and ZTT From Domestic Networks A $2 billion fund to root out equipment from Chinese manufacturers Huawei and ZTE operating within small and rural U.S. telecoms isn't enough to cover costs, the Federal Communications Commission informed Congress.

Manufacturing

Manufacturing Communications

The City of Durham shut down its network after Ryuk Ransomware attack

Security Affairs

MARCH 8, 2020

“IT officials are working to get the communication systems back online.” The list of the victims of the Ryuk ransomware is very long and includes the US government contractor Electronic Warfare Associates (EWA) , US railroad company Railworks , Croatian petrol station chain INA Group , and parts manufacturer Visser Precision.

Ransomware

Ransomware IT Computer and Electronics Mining

Experts found a critical authentication bypass flaw in Rockwell Automation software

Security Affairs

FEBRUARY 27, 2021

A critical authentication bypass vulnerability, tracked as CVE-2021-22681 , can be exploited by remote attackers to compromise programmable logic controllers (PLCs) manufactured by Rockwell Automation. ” reads the advisory published by CISA. ” reads the post published by Claroty.

Authentication

Authentication Communications Manufacturing Risk

US officials claim Huawei Equipment has secret backdoor for spying

Security Affairs

FEBRUARY 13, 2020

Huawei can secretly tap into communications through the networking equipment, states a U.S. “Independent cybersecurity experts say the intelligence services of global powers including the United States routinely exploit vulnerabilities in networking equipment — regardless of the manufacturer — for espionage purposes.”

Manufacturing

Manufacturing Access Government Communications

ATM vendors Diebold and NCR fixed deposit forgery bugs

Security Affairs

AUGUST 22, 2020

The ATM manufacturer giants, Diebold Nixdorf and NCR, have released software updates to fix a flaw that could have been exploited for ‘deposit forgery’ attacks. The ATM manufacturers Diebold Nixdorf and NCR have addressed a bug that could have been exploited for ‘deposit forgery’ attacks. and 05.01.00

Manufacturing

Manufacturing Communications Encryption Access

Maybe don’t call Saul? Over 30,000 VoIP devices identifiable worldwide, some with suspected vulnerabilities

Security Affairs

MAY 12, 2021

Our research shows that large and small manufacturers are identifiable, with Aastra-Mitel topping the list. Aastra-Mitel tops the manufacturer list, the United States leads the list among countries, and London tops the chart among cities. Devices made by the US manufacturer Polycom, a subsidiary of Plantronics Inc.,

Manufacturing

Manufacturing Honeypots Communications Marketing

DoppelPaymer crew leaked internal confidential documents belonging to aerospace companies

Security Affairs

APRIL 10, 2020

Visser Precision is a parts maker for many companies in several industries, including aerospace, automotive, industrial and manufacturing. Some documents provide details about the SpaceX’s manufacturing partner program. Other companies impacted by the security incident did not provide any official communication.

Ransomware

Ransomware Manufacturing Military Cybersecurity

China-linked APT Volt Typhoon remained undetected for years in US infrastructure

Security Affairs

FEBRUARY 8, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. The group also relies on customized versions of open-source tools for C2 communications and to stay under the radar.

Energy and Utilities

Energy and Utilities Communications Military Manufacturing

3.5m IP cameras exposed, with US in the lead

Security Affairs

DECEMBER 14, 2022

After looking at 28 of the most popular manufacturers, our research team found 3.5 What is more, the overwhelming majority of internet-facing cameras are manufactured by Chinese companies. Most of the public-facing cameras we discovered are manufactured by the Chinese company Hikvision: the Cybernews research team found over 3.37

Passwords

Passwords Manufacturing Authentication Government

District Court Finds Communications Decency Act Provides Automotive Device Manufacturer Immunity for Clean Air Act Violations

Data Matters

APRIL 4, 2024

The decision gives effect to the CDA as drafted and will make it significantly harder for the government to hold manufacturers and online retailers liable for content, including software, created and sold by third parties. This decision of first impression offers an important precedent in the automotive industry and beyond.

Manufacturing

Manufacturing Communications Retail Sales

FBI and CISA update a joint advisory on the BlackSuit Ransomware group

Security Affairs

AUGUST 8, 2024

The BlackSuit ransomware has targeted various critical infrastructure sectors, including commercial facilities, healthcare, government, and manufacturing. Historically, Royal actors were observed leveraging Chisel , Secure Shell (SSH) client, PuTTY, OpenSSH, and MobaXterm for C2 communications.

Ransomware

Ransomware Communications Manufacturing Phishing

Usage of TLS in DDNS Services leads to Information Disclosure in Multiple Vendors

Security Affairs

MAY 24, 2024

Introduction to TLS and Certificate Transparency Log Securing Internet communications is crucial for maintaining the confidentiality and integrity of information in transit. For instance, suppose firewall manufacturer ACME Inc. This is typically achieved through a combination of Public Key Infrastructure (using X.509

Manufacturing

Manufacturing Encryption Communications Cybersecurity

How Artificial Intelligence Manufacturers Can Protect Themselves Against Future Negligence Claims

Data Matters

OCTOBER 27, 2021

Medtech often involves a complex chain of actions involving a number of different parties, ranging from medical device manufacturers to programmers to physicians. Communicate in a manner that clearly delineates that any final decisions on patient care must rest with the patient’s treating physician.

Artificial Intelligence

Artificial Intelligence Manufacturing Risk Privacy

Volvo retailer leaks sensitive files

Security Affairs

APRIL 15, 2023

The Brazilian retail arm of car manufacturing giant Volvo leaked sensitive files, putting its clientele in the vast South American country in peril. The leaked files could have served malicious actors in various ways, including hijacking official communication channels and infiltrating the company’s systems.

Retail

Retail Manufacturing Communications Passwords

Belgium telecom operators Proximus and Orange drop Huawei

Security Affairs

OCTOBER 10, 2020

Major Belgium’s telecom operator Proximus announced on Friday that it will gradually replace its equipment from the Chinese manufacturer Huawei. One of the major Belgium telecom operator Proximus announced on Friday that it will gradually replace its equipment from the Chinese manufacturer Huawei.

Manufacturing

Manufacturing Risk Communications Security

Your Garage Opener Is More Secure Than Industrial Remotes

Data Breach Today

JANUARY 16, 2019

To address the issue, manufacturers need to move away from proprietary communication protocols and embrace secure standards, such as Bluetooth Low Energy.

Mining

Mining Manufacturing Security Communications

14 New DrayTek routers’ flaws impacts over 700,000 devices in 168 countries

Security Affairs

OCTOBER 2, 2024

The flaws impact residential and enterprise routers manufactured by DrayTek that could be exploited to take over susceptible devices. The “recvCmd” binary, which facilitates communication between the host and guest operating systems, is vulnerable to OS command injection attacks. ” reads the advisory.

IoT

IoT Manufacturing Communications Ransomware

Cuba ransomware gang hacked 49 US critical infrastructure organizations

Security Affairs

DECEMBER 4, 2021

. “The FBI has identified, as of early November 2021 that Cuba ransomware actors have compromised at least 49 entities in five critical infrastructure sectors, including but not limited to the financial, government, healthcare, manufacturing, and information technology sectors.” ” states the alert.

Ransomware

Ransomware Encryption Communications Manufacturing

Avaddon Ransomware gang hacked France-based Acer Finance and AXA Asia

Security Affairs

MAY 16, 2021

The Avaddon ransomware gang is giving Acer Finance 240 hours to communicate and cooperate with them before start leaking the stolen valuable company documents. The Company offers risk management, mutual funds, analysis, financial planning, and advisory services. ” reads the statement published by the group on its leak site.

Ransomware

Ransomware Manufacturing Communications Risk

LockBit Ransomware gang claims to have stolen SpaceX confidential data from Maximum Industries

Security Affairs

MARCH 14, 2023

Maximum Industries is a full-service, piece-part production, and contract manufacturing facility. The ransomware gang hacked the systems of the production firm, which also provides its services to SpaceX, and stole its data, including files of the American spacecraft manufacturer and a satellite communications corporation.

Ransomware

Ransomware Manufacturing Communications IT

Paragon: Yet Another Cyberweapons Arms Manufacturer

Schneier on Security

AUGUST 3, 2021

Forbes has the story : Paragon’s product will also likely get spyware critics and surveillance experts alike rubbernecking: It claims to give police the power to remotely break into encrypted instant messaging communications, whether that’s WhatsApp, Signal, Facebook Messenger or Gmail, the industry sources said.

Manufacturing

Manufacturing Encryption Communications Access

Qualcomm and MediaTek Wi-Fi chips impacted by Kr00k-Like attacks

Security Affairs

AUGUST 8, 2020

Wi-Fi chips manufactured by Qualcomm and MediaTek are impacted by vulnerabilities similar to the Kr00k issue disclosed early this year. Earlier this year, experts from ESET disclosed the Kr00k , a new high-severity hardware vulnerability, that affects Wi-Fi chips manufactured by Broadcom and Cypress.

Encryption

Encryption Manufacturing IoT Communications

Japanese Kawasaki Heavy Industries discloses security breach

Security Affairs

DECEMBER 29, 2020

is a Japanese public multinational corporation primarily known as a manufacturer of motorcycles, engines, heavy equipment, aerospace and defense equipment, rolling stock and ships. Within the same day, communication between the overseas office and our Japan office was fully terminated considering as a case of unauthorized access.”

Security

Security Access Communications Manufacturing

TinyNuke banking malware targets French organizations

Security Affairs

DECEMBER 13, 2021

The TinyNuke malware is back and now was used in attacks aimed at French users working in manufacturing, technology, construction, and business services. The attackers used invoice-themed lures targeting entities in manufacturing, industry, technology, finance, and other verticals. . . ” concludes the report.

Manufacturing

Manufacturing Business Services Communications IT

China-linked APT Volt Typhoon linked to KV-Botnet

Security Affairs

DECEMBER 13, 2023

According to Microsoft, the campaign aimed at building capabilities that could disrupt critical communications infrastructure between the United States and Asia region in the case of future crises. The group also relies on customized versions of open-source tools for C2 communications and stay under the radar.

Communications

Communications Manufacturing Education Government

IoT Cybersecurity: 5 Major Vulnerabilities and How to Tackle Them

Security Affairs

OCTOBER 13, 2020

As a result, you will prevent unauthorized access or communication interception. As an example, we could use communications between systems that are not properly encrypted. Hackers or other malicious sources can intercept poorly encrypted communications on the web. The Flaws in Manufacturing Process. Poor credentials.

IoT

IoT Cybersecurity Passwords Manufacturing

Kr00k Wi-Fi Encryption flaw affects more than a billion devices

Security Affairs

FEBRUARY 26, 2020

A high-severity hardware vulnerability, dubbed Kr00k , in Wi-Fi chips manufactured by Broadcom and Cypress expose over a billion devices to hack. Cybersecurity researchers from ESET have discovered a new high-severity hardware vulnerability, dubbed Kr00k , that affects Wi-Fi chips manufactured by Broadcom and Cypress.

Encryption

Encryption Manufacturing Paper Communications

Medtronic’s implantable heart defibrillators vulnerable to hack

Security Affairs

MARCH 22, 2019

Security firm Clever Security discovered that heart defibrillators manufactured by Medtronic are affected by two serious vulnerabilities. An attacker with adjacent short-range access to a target product can listen to communications, including the transmission of sensitive data.” ” continues the advisory.

Communications

Communications Encryption Access Manufacturing

IoT devices at major Manufacturers infected with crypto-miner

TIDRONE APT targets drone manufacturers in Taiwan

Webinars

Trending Sources

Swiss Air Force sensitive files stolen in the hack of Ultra Intelligence & Communications

Webinars

Sierra Wireless halted production at its manufacturing sites due to ransomware attack

ICS-CERT warns of several flaws in the GE Communicator software

Winnti Group was planning a devastating supply-chain attack against Asian manufacturer

Ransomware Reportedly Hits Ventilator Maker

China’s Volt Typhoon botnet has re-emerged

Japanese tech firm Oomiya hit by LockBit 3.0. Multiple supply chains potentially impacted

Hundreds of vulnerabilities in common Wi-Fi routers affect millions of users

German Federal Office for Information Security (BSI) investigates Chinese mobile phones

Eken camera doorbells allow ill-intentioned individuals to spy on you

Security Affairs newsletter Round 377

New RedLine malware version distributed as fake Omicron stat counter

High Severity DoS bug affects Several Yokogawa products

FCC faces $3B Shortfall In Huawei Rip And Replace Program

FCC Faces $3B Shortfall in Huawei Rip-and-Replace Program

The City of Durham shut down its network after Ryuk Ransomware attack

Experts found a critical authentication bypass flaw in Rockwell Automation software

US officials claim Huawei Equipment has secret backdoor for spying

ATM vendors Diebold and NCR fixed deposit forgery bugs

Maybe don’t call Saul? Over 30,000 VoIP devices identifiable worldwide, some with suspected vulnerabilities

DoppelPaymer crew leaked internal confidential documents belonging to aerospace companies

China-linked APT Volt Typhoon remained undetected for years in US infrastructure

3.5m IP cameras exposed, with US in the lead

District Court Finds Communications Decency Act Provides Automotive Device Manufacturer Immunity for Clean Air Act Violations

FBI and CISA update a joint advisory on the BlackSuit Ransomware group

Usage of TLS in DDNS Services leads to Information Disclosure in Multiple Vendors

How Artificial Intelligence Manufacturers Can Protect Themselves Against Future Negligence Claims

Volvo retailer leaks sensitive files

Belgium telecom operators Proximus and Orange drop Huawei

Your Garage Opener Is More Secure Than Industrial Remotes

14 New DrayTek routers’ flaws impacts over 700,000 devices in 168 countries

Cuba ransomware gang hacked 49 US critical infrastructure organizations

Avaddon Ransomware gang hacked France-based Acer Finance and AXA Asia

LockBit Ransomware gang claims to have stolen SpaceX confidential data from Maximum Industries

Paragon: Yet Another Cyberweapons Arms Manufacturer

Qualcomm and MediaTek Wi-Fi chips impacted by Kr00k-Like attacks

Japanese Kawasaki Heavy Industries discloses security breach

TinyNuke banking malware targets French organizations

China-linked APT Volt Typhoon linked to KV-Botnet

IoT Cybersecurity: 5 Major Vulnerabilities and How to Tackle Them

Kr00k Wi-Fi Encryption flaw affects more than a billion devices

Medtronic’s implantable heart defibrillators vulnerable to hack

Stay Connected