Manufacturing, Retail and Security - Information Management Today

Volvo retailer leaks sensitive files

Security Affairs

APRIL 15, 2023

The Brazilian retail arm of car manufacturing giant Volvo leaked sensitive files, putting its clientele in the vast South American country in peril. Volvo’s retailer in Brazil, Dimas Volvo, leaked sensitive files through its website. website, belonging to an independent Volvo retailer in the Santa Catarina region of Brazil.

Retail

Retail Manufacturing Communications Passwords

Software firm Blue Yonder providing services to US and UK stores, including Starbucks, hit by ransomware attack

Security Affairs

NOVEMBER 26, 2024

Since learning of the security breach, the company immediately started incident response procedure with the help of external cybersecurity firms, including CrowdStrike. ” The incident response team is working to recover impacted systems and investigate the security breach.

Ransomware

Ransomware Retail Manufacturing Cloud

NCSC: New UK law bans default passwords on smart devices

Security Affairs

APRIL 30, 2024

The UK National Cyber Security Centre (NCSC) orders smart device manufacturers to ban default passwords starting from April 29, 2024. National Cyber Security Centre (NCSC) is urging manufacturers of smart devices to comply with new legislation that bans default passwords. ” reads the announcement published by NCSC.

Passwords

Passwords Manufacturing IoT Retail

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

Cyber-Criminal espionage Operation insists on Italian Manufacturing

Security Affairs

MAY 22, 2020

ZLab researchers spotted a new malicious espionage activity targeting Italian companies operating worldwide in the manufacturing sector. This actor was first spotted by PaloAlto’s UNIT42 in 2018 during wide scale operations against technology, retail, manufacturing, and local government industries in the US, Europe and Asia.

Manufacturing

Manufacturing e-Delivery IT Security

Passwordless Authentication without Secrets!

Thales Cloud Protection & Licensing

OCTOBER 11, 2024

divya Fri, 10/11/2024 - 08:54 As user expectations for secure and seamless access continue to grow, the 2024 Thales Consumer Digital Trust Index (DTI) research revealed that 65% of users feel frustrated with frequent password resets. These fast-paced environments need a more flexible approach to balance security, speed, and user privacy.

Authentication

Authentication Retail Manufacturing Passwords

Australian Cyber Security Centre warns of a surge of LockBit 2.0 ransomware attacks

Security Affairs

AUGUST 9, 2021

The Australian Cyber Security Centre (ACSC) warns of a surge of LockBit 2.0 The Australian Cyber Security Centre (ACSC) warns of an escalation in LockBit 2.0 Experts warn of active exploitation of the CVE-2018-13379 , a security bug heavily exploited by LockBit to breach networks. ransomware. in Australia since 2020.

Ransomware

Ransomware Retail Security Manufacturing

Eken camera doorbells allow ill-intentioned individuals to spy on you

Security Affairs

MARCH 3, 2024

Camera doorbells manufactured by the Chinese company Eken Group Ltd under the brands EKEN and Tuck are affected by major vulnerabilities. Researchers from Consumer Reports (CR) discovered severe vulnerabilities in doorbell cameras manufactured by the Chinese company Eken Group Ltd. ” reads the report published by CR.

Manufacturing

Manufacturing Retail Sales Communications

Hackers hit Luxottica, production stopped at two Italian plants

Security Affairs

SEPTEMBER 22, 2020

As a vertically integrated company, Luxottica designs, manufactures, distributes and retails its eyewear brands, including LensCrafters, Sunglass Hut, Apex by Sunglass Hut, Pearle Vision, Target Optical, Eyemed vision care plan, and Glasses.com. Luxottica Group S.p.A. Its best known brands are Ray-Ban, Persol, and Oakley.

Retail

Retail Manufacturing Ransomware Security

Facebook links cyberespionage group APT32 to Vietnamese IT firm

Security Affairs

DECEMBER 11, 2020

Since at least 2014, experts at FireEye have observed the APT32 group targeting foreign corporations with an interest in Vietnam’s manufacturing, consumer products, and hospitality sectors. Now the Facebook security team has revealed the real identity of APT32 , linking the group to an IT company in Vietnam named CyberOne Group. .

Agriculture

Agriculture IT Retail Manufacturing

The Cost of Dealing With a Cybersecurity Attack in These 4 Industries

Security Affairs

AUGUST 21, 2019

In addition to the monetary costs associated with things like lost productivity and improving network security to reduce the likelihood of future incidents, affected companies have to deal with the costs tied to reduced customer trust and damaged reputations. People are becoming less tolerant of retailers that have widescale data breaches.

Cybersecurity

Cybersecurity Retail Manufacturing Data breaches

OmniVision disclosed a data breach after the 2023 Cactus ransomware attack

Security Affairs

MAY 22, 2024

The digital imaging products manufacturer OmniVision disclosed a data breach after the 2023 ransomware attack. The company designs and develops digital imaging products for use in mobile phones, laptops, netbooks and webcams, security and surveillance cameras, entertainment, automotive and medical imaging systems.

Data breaches

Data breaches Ransomware Manufacturing Encryption

RansomEXX ransomware leaks files stolen from Italian luxury brand Zegna

Security Affairs

AUGUST 6, 2021

As of 2018, Ermenegildo Zegna operated 480 retail stores (267 of which company-owned) across the world. This week the ransomware gang RansomEXX ransomware gang hit the Taiwanese manufacturer and distributor of computer hardware GIGABYTE and claims to have stolen 112GB of data. The revenge of the company was €1.159 billion as 2018.

Ransomware

Ransomware Archiving Retail Manufacturing

Steelcase office furniture giant hit by Ryuk ransomware attack

Security Affairs

OCTOBER 28, 2020

Steelcase is a US-based furniture company that produces office furniture, architectural and technology products for office environments and the education, health care and retail industries. It is the largest office furniture manufacturer in the world. Steelcase has 13,000 employees and $3.7 billion in 2020. Pierluigi Paganini.

Ransomware

Ransomware Computer and Electronics Manufacturing Mining

Shoemaker Ecco leaks over 60GB of sensitive data for 500+ days

Security Affairs

DECEMBER 21, 2022

CyberNews researchers reported that Ecco, a global shoe manufacturer and retailer, exposed millions of documents. Ecco, a global shoe manufacturer and retailer, exposed millions of documents. Original post @ [link]. It’s no use carrying an umbrella if your shoes are leaking, an old Irish proverb says.

Retail

Retail Manufacturing Sales Phishing

440M records found online in unprotected database belonging to Estée Lauder

Security Affairs

FEBRUARY 11, 2020

A security expert discovered that the Cosmetic firm Estée L auder exposed 440 million records online in a database that was left unsecured. The security expert Jeremiah Fowler discovered an unsecured database belonging to the Cosmetic firm Estée L auder that contained 440,336,852 records. Pierluigi Paganini.

Archiving

Archiving Retail Manufacturing Passwords

QakBot Big Game Hunting continues: the operators drop ProLock ransomware for Egregor

Security Affairs

NOVEMBER 20, 2020

This ransomware strain emerged in September 2020, but the threat actors behind already managed to lock quite big companies, such as game developers Crytek, booksellers Barnes & Noble, and most recently a retail giant Cencosud from Chile. Egregor’s favorite sectors are Manufacturing (28.9% of victims) and Retail (14.5%).

Ransomware

Ransomware Retail Encryption Manufacturing

UNC2529, a new sophisticated cybercrime gang that targets U.S. orgs with 3 malware

Security Affairs

MAY 5, 2021

“For example, UNC2529 used a unique username, masquerading as an account executive for a small California-based electronics manufacturing company, which Mandiant identified through a simple Internet search.” orgs with 3 malware appeared first on Security Affairs. .” states the analysis published by FireEye.

Manufacturing

Manufacturing Phishing Military Retail

Nefilim ransomware gang published Luxottica data on its leak site

Security Affairs

OCTOBER 20, 2020

As a vertically integrated company, Luxottica designs, manufactures, distributes and retails its eyewear brands, including LensCrafters, Sunglass Hut, Apex by Sunglass Hut, Pearle Vision, Target Optical, Eyemed vision care plan, and Glasses.com. Luxottica Group S.p.A. Its best known brands are Ray-Ban, Persol, and Oakley.

Ransomware

Ransomware IT Retail Manufacturing

Boyne Resorts ski and golf resort operator hit with WastedLocker ransomware

Security Affairs

OCTOBER 24, 2020

The company owns and operates eleven properties and an outdoor lifestyle equipment/apparel retail division with stores in cities throughout Michigan. In June, security experts from Symantec reported that at least 31 organizations in the United States have been targeted with the recently discovered WastedLocker ransomware.

Ransomware

Ransomware Retail Manufacturing Encryption

Iran-linked APT group Pioneer Kitten sells access to hacked networks

Security Affairs

SEPTEMBER 1, 2020

The Iranian hacker group has been attacking corporate VPNs over the past months, they have been hacking VPN servers to plant backdoors in companies around the world targeting Pulse Secure , Fortinet , Palo Alto Networks , and Citrix VPNs. ” reads the report published by Crowdstrike. Pierluigi Paganini.

Access

Access Financial Services Retail Insurance

Android devices shipped with backdoored firmware as part of the BADBOX network

Security Affairs

OCTOBER 8, 2023

Cybersecurity researchers at Human Security discovered a global network of consumer products, dubbed BADBOX, with firmware backdoors installed and sold through a compromised hardware supply chain. ” reads the report published by Human Security. “This module is one component of PEACHPIT, the ad fraud portion of BADBOX.

e-Discovery

e-Discovery Retail Manufacturing Security

New financially motivated attacks in Western Europe traced to Russian-speaking threat actors

Security Affairs

MARCH 27, 2020

At least two companies operating in pharmaceutical and manufacturing sectors have been affected. According to industry researchers, TA505 is known to have carried out attacks on banks, medical institutions retailers and other businesses in the past. Group-IB has immediately contacted the victims upon discovery. ProxyBot and Silence.

Healthcare

Healthcare Manufacturing Cybersecurity Retail

California IT service provider Synoptek pays ransom after Sodinokibi attack

Security Affairs

JANUARY 5, 2020

Synoptek has more than 1,100 customers across multiple industries, including local governments, financial services, healthcare, manufacturing, media, retail and software. . The post California IT service provider Synoptek pays ransom after Sodinokibi attack appeared first on Security Affairs. Pierluigi Paganini.

IT

IT Ransomware Financial Services Retail

Augmented Security: The Impact of AR on Cybersecurity

KnowBe4

FEBRUARY 16, 2024

From healthcare innovations to retail experiences and manufacturing enhancements, AR has the potential to reshape operational frameworks and redefine user interactions. Recently, Apple launched its Apple Vision Pro to much fanfare and has pushed the discussion of Augmented Reality (AR) beyond the realms of gaming and entertainment.

Retail

Retail Cybersecurity Manufacturing Security

Security AI and automation are key in protecting against costly data breaches for retailers and consumer goods businesses

IBM Big Data Hub

OCTOBER 3, 2023

The rise of online commerce over the last two decades has completely transformed the retail and consumer goods industries—and with smartphone adoption accelerating globally, the share of shopping done via the internet will only continue to expand. For retail, the average data breach studied cost $2.96

Retail

Retail Data breaches Security Manufacturing

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Security Affairs

FEBRUARY 28, 2024

The Federal Bureau of Investigation (FBI), National Security Agency (NSA), US Cyber Command, and international partners released a joint Cybersecurity Advisory (CSA) to warn that Russia-linked threat actors are using compromised Ubiquiti EdgeRouters (EdgeRouters) to evade detection in cyber operations worldwide. .”

Energy and Utilities

Energy and Utilities Military Government Phishing

Prometei botnet is targeting ProxyLogon Microsoft Exchange flaws

Security Affairs

APRIL 26, 2021

Prometei has been observed to be active in systems across a variety of industries, including: Finance, Insurance, Retail, Manufacturing, Utilities, Travel, and Construction.” The post Prometei botnet is targeting ProxyLogon Microsoft Exchange flaws appeared first on Security Affairs. Pierluigi Paganini.

Mining

Mining Retail Insurance Manufacturing

Luxottica data breach exposes info of LensCrafters and EyeMed patients

Security Affairs

NOVEMBER 8, 2020

As a vertically integrated company, Luxottica designs, manufactures, distributes and retails its eyewear brands, including LensCrafters, Sunglass Hut, Apex by Sunglass Hut, Pearle Vision, Target Optical, Eyemed vision care plan, and Glasses.com. Luxottica Group S.p.A. Its best known brands are Ray-Ban, Persol, and Oakley.

Data breaches

Data breaches Insurance Retail Ransomware

Market volume of illegal online sales of alcohol exceeded 30 million USD in 2018 in Russia

Security Affairs

DECEMBER 27, 2018

Security firm Group-IB has estimated that the market volume of illegal online sales of alcohol in Russia exceeded 30 million USD in 2018, i.e. almost 5.8 Such schemes are used by both resellers who sell alcohol online bought from major retailers as well as fraudsters who sell counterfeit products. Pierluigi Paganini.

Sales

Sales Marketing Search queries Manufacturing

Campaign leverages Bit.ly, BlogSpot, and Pastebin to distribute RevengeRAT

Security Affairs

APRIL 22, 2019

Attackers hit organizations in several industries including Technology, Retail, Manufacturing, State/Local Government, Hospitality, Medical, and other Professional business. The post Campaign leverages Bit.ly, BlogSpot, and Pastebin to distribute RevengeRAT appeared first on Security Affairs. Pierluigi Paganini.

Retail

Retail Manufacturing Passwords Government

Trickbot gang and Lazarus APT, the hidden link behind an epochal phenomena

Security Affairs

DECEMBER 12, 2019

Security experts Sentinelone have published a report that for the first time sheds the light on the link between the TrickBot crimeware and the North Korea-linked APT group Lazarus. Cybereason only monitored a new wave of targeted attacks against financial, manufacturing and retail businesses that involved the use of the Anchor framework.

Sales

Sales Ransomware Retail Access

Ransomware at IT Services Provider Synoptek

Krebs on Security

DECEMBER 27, 2019

-based Synoptek is a managed service provider that maintains a variety of cloud-based services for more than 1,100 customers across a broad spectrum of industries , including state and local governments, financial services, healthcare, manufacturing, media, retail and software. A now-deleted Tweet from Synoptek on Dec.

Ransomware

Ransomware IT Phishing Financial Services

NEW TECH: Cequence Security deploys defense against botnets’ assault on business logic

The Last Watchdog

MARCH 26, 2019

Pick any company in any vertical – financial services, government, defense, manufacturing, insurance, healthcare, retailing, travel and hospitality – and you’ll find employees, partners, third-party suppliers and customers all demanding remote access to an expanding menu of apps — using their smartphones and laptops.

Security

Security Digital transformation Financial Services Risk

Suing Infrastructure Companies for Copyright Violations

Schneier on Security

OCTOBER 13, 2021

The plaintiffs claim that Cloudflare contributes to the underlying copyright infringement by providing infringers with caching, content delivery, and security services. ” Chhabria continued, “In an effort to more effectively stamp out infringement, the plaintiffs now go after a service common to many of the infringers: Cloudflare.

Retail

Retail Manufacturing IT Security

GUEST ESSAY: Lessons learned in 2021 as cloud services, mobility and cybersecurity collided

The Last Watchdog

DECEMBER 9, 2021

The acceleration of cloud, mobility, and security initiatives proved to be critical for organizations looking to weather the new threats and disruptions. Related: How ‘SASE’ blends connectivity, security. Cybercriminals have taken advantage of security challenges that arise from the new model of remote work and collaboration.

Cloud

Cloud IoT Cybersecurity Digital transformation

Key Developments in IoT Security

Thales Cloud Protection & Licensing

JULY 15, 2021

Key Developments in IoT Security. The rush to market for consumers to enjoy the modern conveniences offered by these devices shocked the security community. Security experts were concerned that these devices were built with no security in mind. Has the security of these devices gotten better, or remained the same?

IoT

IoT Security Data Privacy Encryption

How to Keep Up with the EDI Renaissance

Rocket Software

DECEMBER 22, 2021

With EDI, businesses were able to exchange documents and intellectual property (IP) across disparate systems quickly, securely and transparently. Automotive companies, general manufacturers, retailers and wholesalers, among others, are now looking to improve their EDI processes. Manage all EDI in a single place.

B2B

B2B Manufacturing e-Delivery Cloud

Guest Blog: TalkingTrust. What’s driving the security of IoT?

Thales Cloud Protection & Licensing

MARCH 10, 2021

What’s driving the security of IoT? The Urgency for Security in a Connected World. There are so many reasons why manufacturers connect their products to the Internet, whether it’s industrial machines, medical devices, consumer goods or even cars. Device Security is Hard. Guest Blog: TalkingTrust. Thu, 03/11/2021 - 07:39.

IoT

IoT Security Manufacturing Encryption

How to Secure Access for your Seasonal Workers

Thales Cloud Protection & Licensing

NOVEMBER 20, 2022

How to Secure Access for your Seasonal Workers. As the holiday season approaches, many retail, hospitality, logistics, and food manufacturing organizations hire seasonal workers to meet increasing demand. The Bureau of Labor Statistics reports a 7% job rise in the retail industry. Mon, 11/21/2022 - 05:36.

Access

Access Security Retail Authentication

List of data breaches and cyber attacks in June 2021 – 9.8 million records breached

IT Governance

JULY 1, 2021

We found a comparatively low 9,780,931 breached records from publicly disclosed security incidents in June 2021. June’s figures bring the annual running total of security incidents to 729 and the total number of breached records to 3,947,030,094.

Data breaches

Data breaches Ransomware Computer and Electronics Retail

News alert: Voxel AI increases funding to $30M, aims to transform industrial workplace safety

The Last Watchdog

AUGUST 31, 2023

The strategic funding round was led by global manufacturing industry leader Rite-Hite with participation from existing investors Eclipse Ventures and World Innovation Lab. Voxel software is transforming operations in warehousing, manufacturing, retail, transportation, construction, and oil & gas.

Artificial Intelligence

Artificial Intelligence Manufacturing B2B Retail

How to activate multifactor authentication everywhere

Thales Cloud Protection & Licensing

JANUARY 20, 2022

Workstations are often shared between several workers (in call centers, shop floor, retail stores.). Make sure the solution you choose is built for security. Offering a convenient authentication experience doesn’t have to come at the expense of security. Data security. Not all authenticator apps are equal.

Authentication

Authentication Data breaches Access Retail

MY TAKE: How digital technology and the rising gig economy are exacerbating third-party risks

The Last Watchdog

APRIL 24, 2019

In an environment where a heating and ventilation subcontractor can pose an existential risk to a billion dollar retail chain – as infamously happened to Target – just knowing where to start assessing third party risk can be a challenge for any organization, Jordan told me. “We do white papers and thought leadership at conferences.

Risk

Risk IoT Digital transformation Retail

News alert: Harter Secrest & Emery announces designation as NetDiligence-authorized Breach Coac

The Last Watchdog

FEBRUARY 15, 2024

Paul Greene , CIPP/US, CIPP/E, CIPM, FIP, Harter Secrest & Emery’s Privacy and Data Security practice group helps clients respond to data security incidents of all kinds. NetDiligence-authorized Breach Coach ® firms are selected based on their experience, competency, thought leadership, and industry engagement.

Data breaches

Data breaches Financial Services Big data Retail

Volvo retailer leaks sensitive files

Software firm Blue Yonder providing services to US and UK stores, including Starbucks, hit by ransomware attack

Webinars

Trending Sources

NCSC: New UK law bans default passwords on smart devices

Webinars

Cyber-Criminal espionage Operation insists on Italian Manufacturing

Passwordless Authentication without Secrets!

Australian Cyber Security Centre warns of a surge of LockBit 2.0 ransomware attacks

Eken camera doorbells allow ill-intentioned individuals to spy on you

Hackers hit Luxottica, production stopped at two Italian plants

Facebook links cyberespionage group APT32 to Vietnamese IT firm

The Cost of Dealing With a Cybersecurity Attack in These 4 Industries

OmniVision disclosed a data breach after the 2023 Cactus ransomware attack

RansomEXX ransomware leaks files stolen from Italian luxury brand Zegna

Steelcase office furniture giant hit by Ryuk ransomware attack

Shoemaker Ecco leaks over 60GB of sensitive data for 500+ days

440M records found online in unprotected database belonging to Estée Lauder

QakBot Big Game Hunting continues: the operators drop ProLock ransomware for Egregor

UNC2529, a new sophisticated cybercrime gang that targets U.S. orgs with 3 malware

Nefilim ransomware gang published Luxottica data on its leak site

Boyne Resorts ski and golf resort operator hit with WastedLocker ransomware

Iran-linked APT group Pioneer Kitten sells access to hacked networks

Android devices shipped with backdoored firmware as part of the BADBOX network

New financially motivated attacks in Western Europe traced to Russian-speaking threat actors

California IT service provider Synoptek pays ransom after Sodinokibi attack

Augmented Security: The Impact of AR on Cybersecurity

Security AI and automation are key in protecting against costly data breaches for retailers and consumer goods businesses

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Prometei botnet is targeting ProxyLogon Microsoft Exchange flaws

Luxottica data breach exposes info of LensCrafters and EyeMed patients

Market volume of illegal online sales of alcohol exceeded 30 million USD in 2018 in Russia

Campaign leverages Bit.ly, BlogSpot, and Pastebin to distribute RevengeRAT

Trickbot gang and Lazarus APT, the hidden link behind an epochal phenomena

Ransomware at IT Services Provider Synoptek

NEW TECH: Cequence Security deploys defense against botnets’ assault on business logic

Suing Infrastructure Companies for Copyright Violations

GUEST ESSAY: Lessons learned in 2021 as cloud services, mobility and cybersecurity collided

Key Developments in IoT Security

How to Keep Up with the EDI Renaissance

Guest Blog: TalkingTrust. What’s driving the security of IoT?

How to Secure Access for your Seasonal Workers

List of data breaches and cyber attacks in June 2021 – 9.8 million records breached

News alert: Voxel AI increases funding to $30M, aims to transform industrial workplace safety

How to activate multifactor authentication everywhere

MY TAKE: How digital technology and the rising gig economy are exacerbating third-party risks

News alert: Harter Secrest & Emery announces designation as NetDiligence-authorized Breach Coac

Stay Connected