File names and Manufacturing - Information Management Today

New RedLine malware version distributed as fake Omicron stat counter

Security Affairs

JANUARY 12, 2022

The new variant discovered by Fortinet has the file name “Omicron Stats.exe,” threat actors are attempting to exploit the enormous interest on a global scale on the COVID-19 Omicron variant. The malicious code can also act as a first-stage malware.

Manufacturing

Manufacturing File names Archiving Encryption

FBI published a flash alert on Mamba Ransomware attacks

Security Affairs

MARCH 26, 2021

According to the flash alert published by the FBI, the Mamba ransomware was employed in attacks against local governments, public transportation agencies, legal services, technology services, industrial, commercial, manufacturing, and construction businesses. DiskCryptor is not inherently malicious but has been weaponized.”

Ransomware

Ransomware Encryption File names Passwords

A new piece of Snake Ransomware targets ICS processes

Security Affairs

JANUARY 28, 2020

Then the malware encrypts the files on the system, skipping Windows system files and folders. The SNAKE ransomware appends a ransom 5 character string to the files extension (i.e. a file named invoice.doc is encrypted and renamed like invoice.docIksrt.

Ransomware

Ransomware Energy and Utilities Manufacturing Encryption

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

Hades ransomware gang targets big organizations in the US

Security Affairs

MARCH 26, 2021

Experts discovered that threat actors targeted a large US transportation & logistics organization, a large US consumer products organization, and a global manufacturing organization. At the time of this writing, it is unclear if the Hades gang operates a ransom-as-a-service model.

Ransomware

Ransomware Encryption File names Manufacturing

China-linked Budworm APT returns to target a US entity

Security Affairs

OCTOBER 13, 2022

The Budworm cyber espionage group (aka APT27 , Bronze Union , Emissary Panda , Lucky Mouse , TG-3390 , and Red Phoenix) is behind a series attacks conducted over the past six months against a number of high-profile targets, including the government of a Middle Eastern country, a multinational electronics manufacturer, and a U.S.

File names

File names Financial Services Manufacturing Libraries

China-linked APT41 group targets Hong Kong with Spyder Loader

Security Affairs

OCTOBER 18, 2022

The attacks detailed by Cybereason targeted technology and manufacturing companies primarily located in East Asia, Western Europe, and North America. The Operation CuckooBees had been operating under the radar since at least 2019, threat actors conducted multiple attacks to steal intellectual property and other sensitive data from victims.

File names

File names Encryption Manufacturing Libraries

Hacker breached Perceptics, a US maker of license plate readers

Security Affairs

MAY 26, 2019

LPRs manufactured by Perceptics are installed at all land border crossing lanes for privately owned vehicle traffic (POV) in the United States, Canada, and for the most critical lanes in Mexico. “The file names and accompanying directories – numbering almost 65,000 – fit with the focus of the surveillance technology biz.”

File names

File names Data breaches Manufacturing Cybersecurity

New Cyber Operation Targets Italy: Digging Into the Netwire Attack Chain

Security Affairs

JUNE 5, 2020

The particular chain of attack we discovered showed interesting technical patterns resembling other previous activities targeting the Italian manufacturing landscape, for this reason, we decided to dig deeper. The decoding function of the payloads is the same, despite the variable names. Technical Analysis. Figure 3: Extracted Macro.

Manufacturing

Manufacturing File names IT Libraries

3CX voice and video conferencing software victim of a supply chain attack

Security Affairs

MARCH 30, 2023

The software is used by organizations in olmost every industry, including automotive, food & beverage, hospitality, Managed Information Technology Service Provider (MSP), and manufacturing. 3CX confirmed that the problem only affects the Windows Electron client for customers running update 7, it is working on an update to the DesktopApp.

File names

File names Manufacturing Libraries Cybersecurity

Xenomorph malware is back after months of hiatus and expands the list of targets

Security Affairs

SEPTEMBER 26, 2023

. “ While investigating the campaign the researchers noticed that threat actors made an important mistake exposing without restrictions the server folder containing the files necessary to distribute the malware. This allowed the researchers to monitor the server, identifying multiple interesting files.

Phishing

Phishing File names Manufacturing IT

New Linux Ransomware BlackSuit is similar to Royal ransomware

Security Affairs

JUNE 3, 2023

According to government experts, the Royal ransomware attacks targeted numerous critical infrastructure sectors including, manufacturing, communications, healthcare and public healthcare (HPH), and education. ReadMe file name: README.BlackSuit.txt. New #ransomware #BlackSuit targets Windows, #Linux. Extension: blacksuit.

Ransomware

Ransomware Encryption File names Cybersecurity

Outlaw is Back, a New Crypto-Botnet Targets European Organizations

Security Affairs

APRIL 28, 2020

The script looks like the following: Figure 5: Content of the “a” file. The executed crypto miner is the file named “” kswapd0 ” based on the famous XMRIG monero crypto miner. It is composed only by three files: “ a”, “run”, “stop ”. The initial script is the file named “ a ”. This is the “ Stage 1 ”.

Mining

Mining File names Honeypots IT

CISA warns of critical flaws in Prima FlexAir access control system

Security Affairs

JULY 31, 2019

Cybersecurity and Infrastructure Security Agency (CISA) published an advisory to warn of critical flaws affecting access control systems manufactured by Prima Systems. The expert also discovered that the application generates database backup files with a predictable name.

Access

Access Authentication File names Manufacturing

Spotting RATs: Delphi wrapper makes the analysis harder

Security Affairs

JULY 8, 2019

Recently, our monitoring operations discovered an interesting attack wave leveraging this technique, especially due to the particular impersonification the attacker was trying: he/they was mimicking an important Italian Manufacturing company. Extracting the content of the ISO image, we encounter an EXE file named “po-ima0948436.exe”.

File names

File names Encryption Archiving Phishing

Hacking The Hacker. Stopping a big botnet targeting USA, Canada and Italy

Security Affairs

AUGUST 31, 2018

My entire “Cyber adventure” began with a simple email within a.ZIP file named “Nuovo Documento1.zip” Stage1 was dropping and executing a brand new PE file named: rEOuvWkRP.exe (sha256: 92f59c431fbf79bf23cff65d0c4787d0b9e223493edc51a4bbd3c88a5b30b05c) using the bitsadmin.exe native Microsoft program.

Computer and Electronics

Computer and Electronics File names Security Access

France: the CNIL has released its annual dawn raid Program for 2023: four national priorities and one priority coming from the EDPB!

DLA Piper Privacy Matters

MARCH 20, 2023

This decision comes from several claims filed with CNIL for unauthorized access by third parties to patient records held by health care institutions. Tracking of users by mobile applications Phone manufacturers enable applications publishers to track users for advertising, statistical or technical purposes (e.g.,

Computer and Electronics

Computer and Electronics IT File names Access

Mekel 2.0 Adds Features for Maximum Production Efficiencies

Info Source

JUNE 24, 2019

. · OCR title naming (all models) : The optical character recognition (OCR) function recognizes title bar (microfiche) or title image (microfilm) text. In 1987, Mekel Technology was the first company in the world to design, manufacture and market a production-level microfilm scanner. MEKEL TECHNOLOGY FIRST ON MARKET.

Archiving

Archiving File names Marketing Manufacturing

What is Ransomware? Everything You Should Know

eSecurity Planet

APRIL 6, 2023

Education, government, energy and manufacturing are others. The ransomware assessed the times the PC was booted, and when it hit 90, it encrypted the device and its files, demanding the user to renew their license with PC Cyborg Corporation by sending a sum of $189 or $378 to a P.O. Box in Panama.

Ransomware

Ransomware Encryption Cybersecurity Risk

6 Best Threat Intelligence Feeds to Use in 2023

eSecurity Planet

AUGUST 10, 2023

Examples of IoCs include malicious IP and email addresses, suspicious domain names and URLs, unusual file paths or file names, unexpected network traffic patterns, and behavioral oddities like frequent unauthorized access attempts. Although it is free to join, membership is required to access InfraGard resources.

Cybersecurity

Cybersecurity Access Metadata Energy and Utilities

China-linked APT group Winnti targets Japanese organizations since March 2024

Security Affairs

FEBRUARY 18, 2025

China-linked threat actor Winnti targeted Japanese companies in the manufacturing, materials, and energy sectors in March 2024 as part of a campaign dubbedRevivalStone. Threat actors targeted Japanese companies in the manufacturing, materials, and energy sectors and used an enhanced version of “Winnti malware.”

Manufacturing

Manufacturing File names Libraries Encryption

Information Management Today

New RedLine malware version distributed as fake Omicron stat counter

FBI published a flash alert on Mamba Ransomware attacks

Webinars

Trending Sources

A new piece of Snake Ransomware targets ICS processes

Webinars

Hades ransomware gang targets big organizations in the US

China-linked Budworm APT returns to target a US entity

China-linked APT41 group targets Hong Kong with Spyder Loader

Hacker breached Perceptics, a US maker of license plate readers

New Cyber Operation Targets Italy: Digging Into the Netwire Attack Chain

3CX voice and video conferencing software victim of a supply chain attack

Xenomorph malware is back after months of hiatus and expands the list of targets

New Linux Ransomware BlackSuit is similar to Royal ransomware

Outlaw is Back, a New Crypto-Botnet Targets European Organizations

CISA warns of critical flaws in Prima FlexAir access control system

Spotting RATs: Delphi wrapper makes the analysis harder

Hacking The Hacker. Stopping a big botnet targeting USA, Canada and Italy

France: the CNIL has released its annual dawn raid Program for 2023: four national priorities and one priority coming from the EDPB!

Mekel 2.0 Adds Features for Maximum Production Efficiencies

What is Ransomware? Everything You Should Know

6 Best Threat Intelligence Feeds to Use in 2023

China-linked APT group Winnti targets Japanese organizations since March 2024

Stay Connected