Security Affairs

SEPTEMBER 9, 2024

Trend Micro spotted an allegedly China-linked threat actor, tracked TIDRONE, targeting drone manufacturers in Taiwan. The attacks were detected in Taiwan and mostly targeted military-related industries, specifically the manufacturer of drones. “we investigated TIDRONE , a threat actor linked to Chinese-speaking groups.

Manufacturing 141

Manufacturing Military Communications Access 141

Data Breach Today

MARCH 23, 2021

Multiple Systems Impacted, Including Manufacturing and Internal IT Operations The Canadian Internet of Things manufacturer Sierra Wireless reported today it had suffered a ransomware attack over the weekend, forcing it to halt production at its manufacturing sites.

Ransomware 299

Ransomware IoT Manufacturing IT 299

Data Breach Today

AUGUST 10, 2020

Incident Reflects Threats Facing Those Involved in COVID-19 Response A manufacturer of transit communication systems that pivoted to build ventilators during the COVID-19 pandemic is reportedly the latest victim of the DoppelPaymer ransomware gang.

Ransomware 363

Ransomware Manufacturing Communications 363

Data Breach Today

JANUARY 25, 2021

Unknown Attack Has Disrupted the Company's Global IT Infrastructure The Austrian construction equipment manufacturing firm Palfinger AG reports being hit with a cyberattack that has knocked the majority of its worldwide IT infrastructure offline, eliminating its ability to use email and conduct business.

Manufacturing 361

Manufacturing IT 361

Data Breach Today

MARCH 11, 2021

Multiple Systems Impacted, Including Production and Shipping Capabilities The Molson Coors Beverage Company reported Thursday it is in the process of countering a cybersecurity incident that has caused system outages throughout the brewer's manufacturing process. The specific type of attack taking place was not released.

Manufacturing 359

Manufacturing Cybersecurity IT 359

Data Breach Today

JULY 16, 2021

Palo Alto Networks Report Describes Tactics of Group Leveraging Open-Source Tools The gang behind the ransomware strain known as Mespinoza, aka PYSA, is targeting manufacturers, schools and others, mainly in the U.S. demanding ransom payments as high as $1.6

Ransomware 363

Ransomware Manufacturing 363

Data Breach Today

MAY 11, 2020

Mailing Equipment Manufacturer Suffered Another Attack Last October After suffering a ransomware attack last October that left several systems inaccessible, mailing equipment manufacturer Pitney Bowes reports that it recently blocked another ransomware attack before any data was encrypted and says there's "no evidence of further unauthorized access (..)

Ransomware 302

Ransomware Manufacturing Encryption Access 302

Data Breach Today

JULY 26, 2024

UEFI Developer Leaked a Secure Boot Asymmetric Key Hundreds of laptop and server models from mainstream manufacturers are at risk of hacking that bypasses protections meant to ensure only trusted software can load during computer bootup, warn researchers from California supply chain startup Binarly.

Manufacturing 320

Manufacturing Risk Security 320

Data Breach Today

SEPTEMBER 14, 2023

China Cites Apple Security Flaws in Warning to Foreign Mobile Device Manufacturers China hasn't ordered any restrictions on the use of Apple iPhones by government agencies, according to a Chinese government spokesperson, but the official cited recent security flaws in the iPhone and warned that foreign mobile device manufacturers must abide by domestic (..)

Government 299

Government Manufacturing Information Security Security 299

Data Breach Today

AUGUST 9, 2021

John Deere, Researchers Spar Over Impact of Vulnerabilities Flaws uncovered in tractor manufacturer John Deere's systems underscore the cyber risks that come in tandem with the productivity gains from high-tech farming.

Agriculture 354

Agriculture Risk Manufacturing Security 354

Data Breach Today

MARCH 6, 2024

Investigators Say North Korean Groups Are Seeking Advanced Chips for Military Use South Korean intelligence service officials have blamed North Korean hackers for targeting the country's semiconductor manufacturing companies.

Military 312

Military Manufacturing Access 312

Data Breach Today

OCTOBER 10, 2023

Threat Actor Likely Operates From A Region With A Strategic Interest In Taiwan A previously undetected cyberespionage group spied against Taiwanese government agencies and the island-country's manufacturing sector, say cybersecurity researchers.

Manufacturing 344

Manufacturing Cybersecurity Government IT 344

Data Breach Today

SEPTEMBER 8, 2020

Faces Five Years in Prison If Convicted in Connection With Thwarted Scam A federal grand jury has formally indicted a Russian national in connection with a thwarted attempt at stealing corporate data from electric vehicle manufacturer Tesla so it could be used to extort a $4 million ransom.

Manufacturing 340

Manufacturing IT 340

Data Breach Today

SEPTEMBER 4, 2021

Flaws Fixed, Mitigations Issued for Discontinued Devices SEC Consult reportedly found multiple vulnerabilities in Moxa devices used in critical infrastructures including railways, manufacturing, cellular and heavy industries.

Manufacturing 337

Manufacturing IT 337

KnowBe4

SEPTEMBER 5, 2024

A new attack runs slow and steady, focused on compromising large manufacturing companies using contextual social engineering to trick victims into giving up credentials.

Manufacturing 118

Manufacturing Security 118

Data Breach Today

JULY 7, 2021

LafargeHolcim's Manish Dave on Building a Framework Manish Dave, head of IT security and compliance at LafargeHolcim, a multinational company that manufactures building materials, describes two ways to implement the "zero trust" model: User-to-application and workload-to-workload segmentation.

Manufacturing 331

Manufacturing Compliance Security IT 331

Data Breach Today

SEPTEMBER 23, 2024

Commerce Department Moves to Regulate Foreign Vehicle Tech Amid Security Fears The White House is proposing new regulations on connected vehicles that would prohibit manufacturers from importing software or hardware from the People's Republic of China and Russia, citing an ever-increasing threat landscape and heightened national security risks.

Manufacturing 306

Manufacturing Risk Security 306

Data Breach Today

JANUARY 24, 2024

federal networks after a government watchdog caught the government's main acquisition arm purchasing unauthorized, Chinese-manufactured video conference cameras. Experts Warn Against Increasing Federal Reliance on Chinese Technology Experts are raising fresh concerns about the "significant risk" for Chinese espionage against U.S.

Manufacturing 301

Manufacturing Security Government Risk 301

Data Breach Today

APRIL 29, 2024

Law Bans Universal Default Passwords; Requires Bug-Reporting Channels, Update Plan Say goodbye to buying internet of things devices in Britain with a default or hardcoded password set to "12345," as the country has banned manufacturers from shipping internet-connected and network-connected devices that don't comply with minimum cybersecurity standards. (..)

Cybersecurity 306

Cybersecurity IoT Manufacturing Passwords 306

Data Breach Today

JANUARY 30, 2024

Manufacturer Confirms Systems Down, Data on Energy Consumption, Emission Accessed Schneider Electric confirmed a ransomware attack has locked up corporate systems of its Schneider Electric Sustainability Business division and accessed data. The company said it plans to resume operations in two business days after remediation is complete.

Ransomware 301

Ransomware Manufacturing Access IT 301

Data Breach Today

OCTOBER 18, 2022

Keyless Auto Theft Mounting Threat for Car Owners A European ring of auto thieves used software branded as a diagnostic tool to make fobless thefts of cars made by two French manufacturers. It looks like the thieves found a vulnerability in the electronic control unit governing the authorization of new key fobs.

Manufacturing 334

Manufacturing Government IT 334

Data Breach Today

OCTOBER 24, 2024

Many Charging Cable Interfaces Have Exposed SSH and HTTP Ports, Researchers Warn Researchers demonstrated that multiple brands of EV charging stations have vulnerabilities due to manufacturers often leaving open and unsecured SSH and HTTP ports.

Risk 305

Risk Manufacturing 305

Data Breach Today

OCTOBER 24, 2024

Mandiant Says High-Severity Flaw Could Give Attackers Remote Unauthenticated Access Researchers at Mandiant say a new threat cluster first observed June 27 has been exploiting a Fortinet zero day the network edge device manufacturer publicly disclosed Wednesday. Researchers said they can't assess the threat actor's motivation or location.

Manufacturing 299

Manufacturing Access 299

Data Breach Today

JUNE 30, 2021

Company Advises Users to Maintain Proper Security Policies as It Prepares Hotfix Taiwanese networking device manufacturer Zyxel is notifying customers about an ongoing series of attacks on some of its enterprise firewall and VPN products and is advising users to maintain proper remote access security policies as it prepares a hotfix.

IT 330

IT Manufacturing Access Security 330

Data Breach Today

MAY 14, 2020

Connected Devices Could Allow Attackers to Target Industrial Systems, Trend Micro Reports The increasing use of internet-connected devices in manufacturing facilities is opening up new ways for hackers to target so-called "smart" factories with unconventional attack methods, according to an analysis by security firm Trend Micro and the Polytechnic (..)

Manufacturing 333

Manufacturing Security 333

Data Breach Today

DECEMBER 24, 2020

Kaspersky: North Korean APT Group Used Malware in Attempt to Steal Information The Lazarus Group, a North Korean advanced persistent threat gang, apparently recently targeted a national ministry of health and a drug manufacturer involved in developing a COVID-19 vaccine in an attempt to steal information, according to the security firm Kaspersky.

Manufacturing 331

Manufacturing Security 331

Data Breach Today

FEBRUARY 11, 2023

Group Says It Has Confidential Data, Tech Docs; A10 Says Operations Not Impacted The Play ransomware group listed networking hardware manufacturer A10 Networks in its leak site, after briefly gaining access to its IT infrastructure, according to data breach notifications firm BetterCyber.

Ransomware 330

Ransomware IT Manufacturing Data breaches 330

Data Breach Today

MARCH 14, 2024

Taiwanese Hardware Manufacturer Fixes Improper Authentication Flaw QNAP Systems on Saturday released a patch for a critical bug that allows unauthorized access to devices without authentication. The issue affects its QTS, QuTS hero, and QuTScloud products and potentially exposes network-attached storage devices to unauthorized access.

Manufacturing 294

Manufacturing Authentication Access IT 294

Data Breach Today

JULY 31, 2020

More Devices Affected by 'Ripple20' Vulnerabilities Federal regulators have issued another round of security alerts about vulnerabilities in medical device products from several manufacturers, including an update on those affected by so-called "Ripple-20" flaws earlier identified in the Treck TCP/IP stack.

Security 321

Security Manufacturing 321

Data Breach Today

MARCH 14, 2024

Senator Urges Government to Tell Public About Little-Known Manufacturer Reset Codes Experts told ISMG that Chinese-made locks and commercial safes could pose national security risks when used by major U.S.

Risk 299

Risk Manufacturing Security Government 299

Data Breach Today

FEBRUARY 8, 2024

At the same time, according to a new report, sectors such as manufacturing have experienced a 230% increase in vulnerabilities.

IoT 301

IoT Manufacturing Access 301

Data Breach Today

APRIL 15, 2024

Company Released a Hotfix to the Command Injection Vulnerability Firewall appliance manufacturer Palo Alto Networks rushed out a hotfix Friday to a command injection vulnerability present in its custom operating system after security researchers spotted a campaign to exploit the zero-day starting in March, likely from a state-backed threat actor.

Manufacturing 295

Manufacturing Security IT 295

Data Breach Today

OCTOBER 23, 2024

Federal Government Gives Agencies Three Weeks to Patch or Mitigate Fortinet disclosed an actively exploited vulnerability in its centralized management platform following more than a week of online chatter that edge device manufacturer products have been under renewed attack.

Manufacturing 292

Manufacturing Cybersecurity Government IT 292

Data Breach Today

MARCH 7, 2024

FBI Says It Received Most Attack Reports From Healthcare, Critical Manufacturing Cybercrime reports submitted by victims to the FBI's Internet Crime Complaint Center surged last year, and the total reported losses exceeded $12.5

Ransomware 290

Ransomware Manufacturing IT 290

Data Breach Today

FEBRUARY 20, 2021

Automakers Should Employ Security-By-Design to Thwart Cyber Risks Autonomous vehicle manufacturers are advised to adopt security-by-design models to mitigate cybersecurity risks, as artificial intelligence is susceptible to evasion and poisoning attacks, says a new ENISA report.

Risk 312

Risk Artificial Intelligence Security Manufacturing 312

Data Breach Today

APRIL 21, 2021

$50 Million Extortion Demand Issued to Apple and Taiwanese Manufacturer Quanta The REvil - aka Sodinokibi - ransomware gang is threatening to release stolen Apple device blueprints unless it receives a massive payoff.

Ransomware 321

Ransomware Manufacturing IT 321