Education, Information Security and Manufacturing

FritzFrog P2P Botnet is back and targets Healthcare, Education and Government Sectors

Security Affairs

FEBRUARY 11, 2022

FritzFrog P2P botnet is back and is targeting servers belonging to entities in the healthcare, education, and government sectors. The bot is written in Golang and implements wormable capabilities, experts reported attacks against entities in the government, education, and finance sectors. ” reads the report published by Akamai.

Education

Education Government Libraries Mining

Port of Seattle ‘s August data breach impacted 90,000 people

Security Affairs

APRIL 5, 2025

The ransomware gang hit organizations in multiple industries, including education, healthcare, manufacturing, information technology, and government sectors. In September 2024, Port of Seattle confirmed that the Rhysida ransomware group was behind the cyberattack. The Rhysida ransomware group has been active since May 2023.

Data breaches

Data breaches Ransomware Manufacturing Education

China’s Volt Typhoon botnet has re-emerged

Security Affairs

NOVEMBER 13, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors.

e-Discovery

e-Discovery Communications Ransomware Government

Webinars

How to Achieve High-Accuracy Results When Using LLMs

Maximizing Profit and Productivity: The New Era of AI-Powered Accounting

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

Rhysida ransomware gang claimed China Energy hack

Security Affairs

NOVEMBER 25, 2023

The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors. The victims of the group are “targets of opportunity.”

Ransomware

Ransomware Manufacturing Education Libraries

Rhysida ransomware group hacked King Edward VII’s Hospital in London

Security Affairs

NOVEMBER 29, 2023

The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors. According to the gang’s Tor leak site, at least 62 companies are victims of the operation. The victims of the group are “targets of opportunity.”

Ransomware

Ransomware Manufacturing Education Libraries

Rhysida ransomware group hacked Abdali Hospital in Jordan

Security Affairs

DECEMBER 26, 2023

The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors. According to the gang’s Tor leak site, at least 62 companies are victims of the operation. The victims of the group are “targets of opportunity.”

Ransomware

Ransomware Manufacturing Education Libraries

FBI and CISA warn of attacks by Rhysida ransomware gang

Security Affairs

NOVEMBER 15, 2023

The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors. The victims of the group are “targets of opportunity.”

Ransomware

Ransomware Manufacturing Education Passwords

Steelcase office furniture giant hit by Ryuk ransomware attack

Security Affairs

OCTOBER 28, 2020

Steelcase is a US-based furniture company that produces office furniture, architectural and technology products for office environments and the education, health care and retail industries. It is the largest office furniture manufacturer in the world. Steelcase has 13,000 employees and $3.7 billion in 2020.

Ransomware

Ransomware Computer and Electronics Manufacturing Mining

China-linked APT41 group exploits Citrix, Cisco, Zoho flaws

Security Affairs

MARCH 25, 2020

The group hit entities in several industries, including the gaming, healthcare, high-tech, higher education, telecommunications, and travel services industries. The APT41 has been active since at least 2012, it was involved in both state-sponsored espionage campaigns and financially-motivated attacks since 2014.

Healthcare

Healthcare Education Manufacturing Government

Security Affairs newsletter Round 282

Security Affairs

SEPTEMBER 20, 2020

Every week the best security articles from Security Affairs free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Security

Security Ransomware Data breaches Manufacturing

Rhysida ransomware gang is auctioning data stolen from the British Library

Security Affairs

NOVEMBER 20, 2023

The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors. The victims of the group are “targets of opportunity.”

Libraries

Libraries Ransomware Manufacturing Education

Experts spotted a variant of the Agenda Ransomware written in Rust

Security Affairs

DECEMBER 19, 2022

The Qilin ransomware-as-a-service (RaaS) group uses a double-extortion model, with most of the victims in the manufacturing and IT industries. The ransomware was originally written in Go language and was employed in attacks aimed at healthcare and education sectors in countries like Thailand and Indonesia. AGENDA.THIAFBB.”

Ransomware

Ransomware Encryption Passwords Education

Lazarus APT uses DTrack backdoor in attacks against LATAM and European orgs

Security Affairs

NOVEMBER 16, 2022

Kaspersky reported attacks against entities in multiple industries, including education, chemical manufacturing, governmental research centers and policy institutes, IT service providers, utility providers and telecommunications. “The DTrack backdoor continues to be used actively by the Lazarus group.

Manufacturing

Manufacturing Education Encryption IT

MITRE and CISA publish the 2021 list of most common hardware weaknesses

Security Affairs

OCTOBER 30, 2021

MITRE and the DHS’s Cybersecurity and Infrastructure Security Agency (CISA) have announced the release of the “2021 Common Weakness Enumeration (CWE) Most Important Hardware Weaknesses” list. “Security analysts and test engineers can use the list in preparing plans for security testing and evaluation.

Manufacturing

Manufacturing Access Education Security

Microsoft seized 41 domains used by Iran-linked Bohrium APT

Security Affairs

JUNE 6, 2022

The IT giant has seized the domains used by the threat actors employed in its attacks aimed at organizations in tech, transportation, government, and education sectors located in the U.S., Since February, the attacks targeted organizations in critical manufacturing, IT, and Israel’s defense industry. Middle East, and India.

Phishing

Phishing Manufacturing Education Cybersecurity

Operation Cronos: law enforcement disrupted the LockBit operation

Security Affairs

FEBRUARY 19, 2024

Since January 2020, affiliates utilizing LockBit have targeted organizations of diverse sizes spanning critical infrastructure sectors such as financial services, food and agriculture, education, energy, government and emergency services, healthcare, manufacturing, and transportation.

Energy and Utilities

Energy and Utilities Ransomware Agriculture Financial Services

Ransomware infected systems at Xchanging, a DXC subsidiary

Security Affairs

JULY 6, 2020

The company has customers in many industries, including financial services, automotive, education, healthcare, manufacturing and aerospace and defense, DXC Technology files an 8-K form with the U.S. Securities and Exchange Commission (SEC).

Ransomware

Ransomware Insurance Financial Services Manufacturing

Cybersecurity agencies published a joint LockBit ransomware advisory

Security Affairs

JUNE 15, 2023

Help us #StopRansomware by visiting [link] pic.twitter.com/G5jpxtB0Fw — Cybersecurity and Infrastructure Security Agency (@CISAgov) June 14, 2023 The LockBit ransomware operation was the most active in 2022 and according to the researchers it is one of the most prolific RaaS in 2023. law enforcement). was the prevalent variant in 2023.

Ransomware

Ransomware Cybersecurity Agriculture Education

MSI confirms security breach after Money Message ransomware attack

Security Affairs

APRIL 7, 2023

Micro-Star International AKA MSI designs, manufactures, and sells motherboards and graphics cards for customers in the United States, Canada, and internationally. In response to the incident, the company announced it is enhancing the information security control measures of its network and infrastructure.

Ransomware

Ransomware Security Manufacturing Cybersecurity

Connecting the Bots – Hancitor fuels Cuba Ransomware Operations

Security Affairs

MAY 7, 2021

As of April 28, the site mentioned nine companies primarily from aviation, financial, education and manufacturing industries. As of April 28, the website offers to download data for free from 9 mainly US companies from the aviation, financial, education, manufacturing, and logistics companies which refused to pay the ransom.

Ransomware

Ransomware Education Manufacturing Healthcare

China-linked APT Volt Typhoon remained undetected for years in US infrastructure

Security Affairs

FEBRUARY 8, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors.

Energy and Utilities

Energy and Utilities Communications Military Manufacturing

Is Gelsemium APT behind a targeted attack in Southeast Asian Government?

Security Affairs

SEPTEMBER 25, 2023

The previous campaigns associated with this group targeted government, education, and electronic manufacturers in East Asia and the Middle East. Gelsemium is a group focused on cyberespionage that has been active since at least 2014.

Government

Government Manufacturing Education Access

CISA warns of vulnerabilities and misconfigurations exploited in ransomware attacks

Security Affairs

OCTOBER 14, 2023

Vulnerable systems were hosted in the networks of organizations in the energy, education facilities, healthcare and public health, and water systems industries. CISA states that the RVWP program allowed the identification of more than 800 vulnerable systems to date. ” concludes the announcement. . ” concludes the announcement.

Ransomware

Ransomware Manufacturing Education Risk

Money Message ransomware group claims to have hacked IT giant MSI

Security Affairs

APRIL 6, 2023

Micro-Star International AKA MSI designs, manufactures, and sells motherboards and graphics cards for customers in the United States, Canada, and internationally. Ransomware gang Money Message announced to have hacked the Taiwanese multinational IT corporation MSI (Micro-Star International). MSI is headquartered in Taipei, Taiwan.

Ransomware

Ransomware IT Manufacturing Education

IoT Cybersecurity: 5 Major Vulnerabilities and How to Tackle Them

Security Affairs

OCTOBER 13, 2020

The only way to tackle this challenge is to educate the users about these threats and their potential implications. Furthermore, consumers believe that companies and services have the responsibility of keeping their data secure. The Flaws in Manufacturing Process.

IoT

IoT Cybersecurity Passwords Manufacturing

Nexx bugs allow to open garage doors, and take control of alarms and plugs

Security Affairs

APRIL 5, 2023

A series of vulnerabilities in multiple smart devices manufactured by Nexx can be exploited to remotely open garage doors, and take control of alarms and plugs.

Manufacturing

Manufacturing Cybersecurity Education Authentication

Volvo retailer leaks sensitive files

Security Affairs

APRIL 15, 2023

The Brazilian retail arm of car manufacturing giant Volvo leaked sensitive files, putting its clientele in the vast South American country in peril. Other research by Cybernews has revealed that BMW , a German luxury vehicle manufacturer producing around 2.5 The issue causing the leak has been fixed.

Retail

Retail Manufacturing Communications Passwords

The source code of Zeppelin Ransomware sold on a hacking forum

Security Affairs

JANUARY 5, 2024

The ransomware was involved in attacks aimed at technology and healthcare, defense contractors, educational institutions, manufacturers, companies across Europe, the United States, and Canada.

Ransomware

Ransomware Sales Encryption Cybersecurity

US GOV OFFERS A REWARD OF UP TO $15M FOR INFO ON LOCKBIT GANG MEMBERS AND AFFILIATES

Security Affairs

FEBRUARY 21, 2024

Since January 2020, affiliates utilizing LockBit have targeted organizations of diverse sizes spanning critical infrastructure sectors such as financial services, food and agriculture, education, energy, government and emergency services, healthcare, manufacturing, and transportation. reads the press release published by DoJ.

Energy and Utilities

Energy and Utilities Ransomware Agriculture Manufacturing

China-linked APT Volt Typhoon linked to KV-Botnet

Security Affairs

DECEMBER 13, 2023

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors.

Communications

Communications Manufacturing Education Government

Port of Seattle confirmed that Rhysida ransomware gang was behind the August attack

Security Affairs

SEPTEMBER 15, 2024

The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors. Port of Seattle confirmed on Friday that the Rhysida ransomware group was behind the cyberattack. The Rhysida ransomware group has been active since May 2023.

Ransomware

Ransomware Manufacturing Education Encryption

China-linked Flax Typhoon APT targets Taiwan

Security Affairs

AUGUST 25, 2023

Microsoft has not observed The group has been active since mid-2021, it focuses on government agencies and education, critical manufacturing, and information technology organizations in Taiwan. The group relies on tools built into the operating system, along with some legitimate software.

Manufacturing

Manufacturing Education Access Government

NCR was the victim of BlackCat/ALPHV ransomware gang

Security Affairs

APRIL 16, 2023

It manufactures self-service kiosks, point-of-sale terminals, automated teller machines, check processing systems, and barcode scanners. NCR Corporation , previously known as National Cash Register, is an American software, consulting and technology company providing several professional services and electronic products.

Ransomware

Ransomware Sales Manufacturing Cybersecurity

More details about Operation Cronos that disrupted Lockbit operation

Security Affairs

FEBRUARY 20, 2024

Since January 2020, affiliates utilizing LockBit have targeted organizations of diverse sizes spanning critical infrastructure sectors such as financial services, food and agriculture, education, energy, government and emergency services, healthcare, manufacturing, and transportation.

Energy and Utilities

Energy and Utilities Ransomware Manufacturing Agriculture

Estonian National charged with helping Russia acquire U.S. hacking tools and electronics

Security Affairs

APRIL 9, 2023

manufacturers on behalf of Russian end-users, including defense contractors and other Russian government agencies. electronics manufacturers and distributors between approximately October 2012 and January 2022. Most of these items would have been unavailable to Russian end-users if ordered directly for shipment to Russia.”

Computer and Electronics

Computer and Electronics Military Manufacturing Government

FBI chief says China is preparing to attack US critical infrastructure

Security Affairs

APRIL 19, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors.

Energy and Utilities

Energy and Utilities Communications Military Access

Researchers released a free decryption tool for the Rhysida Ransomware

Security Affairs

FEBRUARY 12, 2024

The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors. According to the gang’s Tor leak site, at least 62 companies are victims of the operation. The victims of the group are “targets of opportunity.”

Ransomware

Ransomware Encryption Paper Manufacturing

FBI obtained 7,000 LockBit decryption keys, victims should contact the feds to get support

Security Affairs

JUNE 6, 2024

Since January 2020, affiliates utilizing LockBit have targeted organizations of diverse sizes spanning critical infrastructure sectors such as financial services, food and agriculture, education, energy, government and emergency services, healthcare, manufacturing, and transportation.

Energy and Utilities

Energy and Utilities Ransomware Agriculture Encryption

City of Dallas has set a budget of $8.5 million to mitigate the May Royal ransomware attack

Security Affairs

SEPTEMBER 23, 2023

According to government experts, the Royal ransomware attacks targeted numerous critical infrastructure sectors including, manufacturing, communications, healthcare and public healthcare (HPH), and education. million to mitigate the May Royal ransomware attack appeared first on Security Affairs.

Ransomware

Ransomware Encryption Systems administration Cybersecurity

Siemens Metaverse exposes sensitive corporate data

Security Affairs

APRIL 15, 2023

Having access, they could exfiltrate a treasure trove of sensitive data, given that Siemens manufactures and maintains a lot of technologies and machines used by critical infrastructure.” “We sincerely hope that threat actors didn’t discover the leak before Siemens managed to fix it,” said Cybernews researchers.

IoT

IoT Manufacturing Authentication Ransomware

Hyundai suffered a data breach that impacted customers in France and Italy

Security Affairs

APRIL 12, 2023

In December 2019, German media reported that hackers suspected to be members of the Vietnam-linked APT Ocean Lotus ( APT32 ) group breached the networks of the car manufacturers BMW and Hyundai. The intrusion aimed at stealing automotive trade secrets.

Data breaches

Data breaches Manufacturing Cybersecurity Education

Updated Kmsdx botnet targets IoT devices

Security Affairs

AUGUST 28, 2023

The malicious code was used in attacks targeting multiple sectors including the gaming industry, technology industry, and luxury car manufacturers. The bot targets private gaming servers, cloud hosting providers, and certain government and educational sites. ” reads the report published by Akamai.

IoT

IoT Mining Manufacturing Education

China-linked APT Volt Typhoon targets critical infrastructure organizations

Security Affairs

MAY 25, 2023

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors.

Communications

Communications Manufacturing Access Archiving

TrickGate, a packer used by malware to evade detection since 2016

Security Affairs

JANUARY 31, 2023

The TrickGate packer was primarily used in attacks aimed at the manufacturing sector, and other attacks aimed at the education, healthcare, government, and finance industries. The shellcode is the core of the packer, because it decrypts the payload and stealthily injects it into a new process.

Manufacturing

Manufacturing Archiving Education Phishing

FritzFrog P2P Botnet is back and targets Healthcare, Education and Government Sectors

Port of Seattle ‘s August data breach impacted 90,000 people

Webinars

Trending Sources

China’s Volt Typhoon botnet has re-emerged

Webinars

Rhysida ransomware gang claimed China Energy hack

Rhysida ransomware group hacked King Edward VII’s Hospital in London

Rhysida ransomware group hacked Abdali Hospital in Jordan

FBI and CISA warn of attacks by Rhysida ransomware gang

Steelcase office furniture giant hit by Ryuk ransomware attack

China-linked APT41 group exploits Citrix, Cisco, Zoho flaws

Security Affairs newsletter Round 282

Rhysida ransomware gang is auctioning data stolen from the British Library

Experts spotted a variant of the Agenda Ransomware written in Rust

Lazarus APT uses DTrack backdoor in attacks against LATAM and European orgs

MITRE and CISA publish the 2021 list of most common hardware weaknesses

Microsoft seized 41 domains used by Iran-linked Bohrium APT

Operation Cronos: law enforcement disrupted the LockBit operation

Ransomware infected systems at Xchanging, a DXC subsidiary

Cybersecurity agencies published a joint LockBit ransomware advisory

MSI confirms security breach after Money Message ransomware attack

Connecting the Bots – Hancitor fuels Cuba Ransomware Operations

China-linked APT Volt Typhoon remained undetected for years in US infrastructure

Is Gelsemium APT behind a targeted attack in Southeast Asian Government?

CISA warns of vulnerabilities and misconfigurations exploited in ransomware attacks

Money Message ransomware group claims to have hacked IT giant MSI

IoT Cybersecurity: 5 Major Vulnerabilities and How to Tackle Them

Nexx bugs allow to open garage doors, and take control of alarms and plugs

Volvo retailer leaks sensitive files

The source code of Zeppelin Ransomware sold on a hacking forum

US GOV OFFERS A REWARD OF UP TO $15M FOR INFO ON LOCKBIT GANG MEMBERS AND AFFILIATES

China-linked APT Volt Typhoon linked to KV-Botnet

Port of Seattle confirmed that Rhysida ransomware gang was behind the August attack

China-linked Flax Typhoon APT targets Taiwan

NCR was the victim of BlackCat/ALPHV ransomware gang

More details about Operation Cronos that disrupted Lockbit operation

Estonian National charged with helping Russia acquire U.S. hacking tools and electronics

FBI chief says China is preparing to attack US critical infrastructure

Researchers released a free decryption tool for the Rhysida Ransomware

FBI obtained 7,000 LockBit decryption keys, victims should contact the feds to get support

City of Dallas has set a budget of $8.5 million to mitigate the May Royal ransomware attack

Siemens Metaverse exposes sensitive corporate data

Hyundai suffered a data breach that impacted customers in France and Italy

Updated Kmsdx botnet targets IoT devices

China-linked APT Volt Typhoon targets critical infrastructure organizations

TrickGate, a packer used by malware to evade detection since 2016

Stay Connected