Manufacturing and Tools - Information Management Today

Chinese Android phones shipped with malware-laced WhatsApp, Telegram apps

Security Affairs

APRIL 16, 2025

Doctor Web warns that the attackers gained access to the supply chain of a number of Chinese manufacturers of Android-based smartphones. A third of the models listed below are manufactured under the SHOWJI brand.“ The kits analyzed by the company are commercialized by many manufacturers including Huawei, Lenovo and Xiaomi.

Manufacturing

Manufacturing Passwords Security IT

TIDRONE APT targets drone manufacturers in Taiwan

Security Affairs

SEPTEMBER 9, 2024

Trend Micro spotted an allegedly China-linked threat actor, tracked TIDRONE, targeting drone manufacturers in Taiwan. Since April, the group used CLNTEND , a previously undetected remote access tool (RAT), which supports a wider range of network protocols for communication, further enhancing their capabilities.

Manufacturing

Manufacturing Military Communications Access

Sierra Wireless halted production at its manufacturing sites due to ransomware attack

Security Affairs

MARCH 23, 2021

Sierra Wireless is a Canadian multinational wireless communications equipment designer and manufacturer headquartered in Richmond, British Columbia, Canada. Sierra Wireless sells 2G, 3G and 4G mobile broadband wireless modems, routers and gateways as well as software, tools, and services. ” . Pierluigi Paganini.

Manufacturing

Manufacturing Ransomware IT IoT

Webinars

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

Cyber-Criminal espionage Operation insists on Italian Manufacturing

Security Affairs

MAY 22, 2020

ZLab researchers spotted a new malicious espionage activity targeting Italian companies operating worldwide in the manufacturing sector. This actor was first spotted by PaloAlto’s UNIT42 in 2018 during wide scale operations against technology, retail, manufacturing, and local government industries in the US, Europe and Asia.

Manufacturing

Manufacturing e-Delivery IT Security

2021 State of Analytics: Why Users Demand Better

The sample included 1,931 knowledge workers, or end users, from financial services, healthcare, and manufacturing who are familiar with the analytics tools within their applications.

Analytics

Microsoft releases On-premises Mitigation Tool (EOMT) tool to fix ProxyLogon issues

Security Affairs

MARCH 16, 2021

Microsoft released an Exchange On-premises Mitigation Tool (EOMT) tool to small businesses for the fix of ProxyLogon vulnerabilities. Most targeted sectors have been Government/Military (17% of all exploit attempts), followed by Manufacturing (14%), and then Banking (11%). ” reads the post published by Microsoft.

Military

Military Manufacturing Access Security

CVE-2018-4251 – Apple did not disable Intel Manufacturing Mode in its laptops

Security Affairs

OCTOBER 4, 2018

Positive Technologies while analyzing Intel Management Engine (ME) discovered that Apple did not disable Intel Manufacturing Mode in its laptops. This week, researchers Maxim Goryachy and Mark Ermolov published a blog post that revealed Chipzilla’s ME contains an undocumented Manufacturing Mode. ” concludes the experts.

Manufacturing

Manufacturing IT Access Risk

CISA recommends vendors to fix BrakTooth issues after the release of PoC tool

Security Affairs

NOVEMBER 4, 2021

CISA urges vendors to address BrakTooth flaws after researchers have released public exploit code and a proof of concept tool for them. US CISA is urging vendors to address BrakTooth flaws after security researchers have released public exploit code and a proof of concept tool to test Bluetooth devices against potential Bluetooth exploits.

Manufacturing

Manufacturing Security IT Information Security

Researchers released a free decryption tool for the Rhysida Ransomware

Security Affairs

FEBRUARY 12, 2024

Researchers discovered a vulnerability in the code of the Rhysida ransomware that allowed them to develop a decryption tool. The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors.

Ransomware

Ransomware Encryption Paper Manufacturing

Deliver Mission Critical Insights in Real Time with Data & Analytics

In the fast-moving manufacturing sector, delivering mission-critical data insights to empower your end users or customers can be a challenge. Traditional BI tools can be cumbersome and difficult to integrate - but it doesn't have to be this way.

Analytics

Feds Seize LockBit Ransomware Websites, Offer Decryption Tools, Troll Affiliates

Krebs on Security

FEBRUARY 20, 2024

Instead of listing data stolen from ransomware victims who didn’t pay, LockBit’s victim shaming website now offers free recovery tools, as well as news about arrests and criminal charges involving LockBit affiliates. The DOJ today unsealed indictments against two Russian men alleged to be active members of LockBit.

Ransomware

Ransomware Encryption Insurance Manufacturing

How 'Mespinoza' Ransomware Group Hits Targets

Data Breach Today

JULY 16, 2021

Palo Alto Networks Report Describes Tactics of Group Leveraging Open-Source Tools The gang behind the ransomware strain known as Mespinoza, aka PYSA, is targeting manufacturers, schools and others, mainly in the U.S. million, according to Palo Alto Networks' Unit 42, which says the group leverages open-source tools.

Ransomware

Ransomware Manufacturing

Aztarna – the open-source scanning tool for vulnerable robots

Security Affairs

JANUARY 28, 2019

Experts from Alias Robotics released a free, open-source tool dubbed Aztarna that could be used to find vulnerable robots. ” reads a blog post published by the experts, Aztarna works as a classic port scanning tool and compares results with a built-in database of fingerprints for industrial devices from major vendors.

Cybersecurity

Cybersecurity Manufacturing Paper Security

Estonian National charged with helping Russia acquire U.S. hacking tools and electronics

Security Affairs

APRIL 9, 2023

The Estonian man is accused of having helped the Russian government and military to purchase US-made electronics and hacking tools. manufacturers on behalf of Russian end-users, including defense contractors and other Russian government agencies. “Shevlyakov also attempted to acquire computer hacking tools.”

Computer and Electronics

Computer and Electronics Military Manufacturing Government

Police in Europe Arrest 31 for Hacking and Stealing Autos

Data Breach Today

OCTOBER 18, 2022

Keyless Auto Theft Mounting Threat for Car Owners A European ring of auto thieves used software branded as a diagnostic tool to make fobless thefts of cars made by two French manufacturers. It looks like the thieves found a vulnerability in the electronic control unit governing the authorization of new key fobs.

Manufacturing

Manufacturing Government IT

Ransomware attacks break records in 2023: the number of victims rose by 128%

Security Affairs

JANUARY 19, 2024

According to the Ransomlooker tool, the number of ransomware attack victims increased by 128.17% compared to the previous year (2022), with 1837 additional incidents. This group primarily focused its attacks on the construction, manufacturing/industrial, and retail industries. Winter was the least active time (14.6%

Ransomware

Ransomware Manufacturing Retail Insurance

Hundreds of vulnerabilities in common Wi-Fi routers affect millions of users

Security Affairs

DECEMBER 5, 2021

Researchers discovered a total of 226 potential security vulnerabilities in nine Wi-Fi popular routers from known manufacturers. Since the integration of a new kernel into the firmware is costly, no manufacturer was up to date here. The experts shared their findings with the manufacturers, most of the flaws have been already fixed. .

IoT

IoT Manufacturing Passwords Communications

Less popular, but very effective, Red-Teaming Tool BRc4 used in attacks in the wild

Security Affairs

JULY 6, 2022

Researchers from Palo Alto Networks Unit 42 discovered that a sample uploaded to the VirusTotal database on May 19, 2022 and considered benign by almost all the antivirus, was containing a payload associated with Brute Ratel C4 (BRc4), a new red-teaming and adversarial attack simulation tool. “Over the past 2.5 “Over the past 2.5

Phishing

Phishing Manufacturing Analytics Marketing

China’s Volt Typhoon botnet has re-emerged

Security Affairs

NOVEMBER 13, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. The group also relies on customized versions of open-source tools for C2 communications and stay under the radar.

e-Discovery

e-Discovery Communications Ransomware Government

NIST Tests Forensic Methods for Getting Data From Damaged Mobile Phones

Security Affairs

JANUARY 31, 2020

A damaged phone might not power on, and the data port might not work, so experts use hardware and software tools to directly access the phone’s memory chips. These include hacking tools, albeit ones that may be lawfully used as part of a criminal investigation. Do they reliably produce accurate results?”.

Manufacturing

Manufacturing Access Encryption IT

The Vanilla Tempest cybercrime gang used INC ransomware for the first time in attacks on the healthcare sector

Security Affairs

SEPTEMBER 20, 2024

The threat actor has been active since July 2022, it was observed targeting organizations in the education, healthcare, IT, and manufacturing sectors. Microsoft observed the financially motivated threat actor tracked as Vanilla Tempest using INC ransomware for the first time to target the healthcare sector in the United States.

Ransomware

Ransomware Manufacturing Education IT

FBI and CISA warn of attacks by Rhysida ransomware gang

Security Affairs

NOVEMBER 15, 2023

The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors. The group relies on living off-the-land techniques such as native (built into the operating system) network administration tools to perform malicious operations.

Ransomware

Ransomware Manufacturing Education Passwords

OmniVision disclosed a data breach after the 2023 Cactus ransomware attack

Security Affairs

MAY 22, 2024

The digital imaging products manufacturer OmniVision disclosed a data breach after the 2023 ransomware attack. In 2023, the imaging sensors manufacturer was the victim of a Cactus ransomware attack. The Cactus ransomware relies on multiple legitimate tools (e.g. OmniVision Technologies Inc.

Data breaches

Data breaches Ransomware Manufacturing Encryption

New ATM Malware family emerged in the threat landscape

Security Affairs

MAY 27, 2024

According to the announcement, the ATM malware can target machines manufactured by multiple leading vendors, including Diebold Nixdorf, Hyosung, Oki, Bank of America, NCR, GRG, and Hitachi. “The developers of this malware claim that it can generate up to $30,000 per ATM , making it a lucrative tool for cybercriminals.”

Manufacturing

Manufacturing IT Information Security Security

New LookingGlass CEO Bryan Ware to Diversify Customer Base

Data Breach Today

MAY 11, 2022

New Attack Surface Management Tool Should Help Reach New Clients New CEO Bryan Ware plans to leverage LookingGlass' nascent attack surface management capabilities to capture clients in verticals such as pharmaceuticals, manufacturing and utilities.

Healthcare

Healthcare Manufacturing IT

Security Affairs newsletter Round 377

Security Affairs

AUGUST 7, 2022

Greek intelligence service used surveillance malware to spy on a journalist, Reuters reports Slack resets passwords for about 0.5% of its users due to the exposure of salted password hashes Twitter confirms zero-day used to access data of 5.4

Security

Security Manufacturing Passwords Ransomware

NEW TECH: Semperis introduces tools to improve security resiliency of Windows Active Directory

The Last Watchdog

APRIL 16, 2020

In many cases, the lateral movement phase is being facilitated by the hijacking of an ubiquitous network administrator’s tool: Windows Active Directory, or AD. Once inside a network, they move laterally to locate and encrypt mission-critical systems; a ransom demand for a decryption key follows. but all across the world,” Bresman told me.

Security

Security Ransomware Authentication Access

Law enforcement arrested 31 suspects for stealing cars by hacking key fobs

Security Affairs

OCTOBER 18, 2022

The gang was composed of software developers, resellers, and car thieves who used the tool created by the gang to steal the vehicles. The crooks targeted keyless vehicles manufactured by two French car manufacturers. ” reads the announcement published by EuroJust.

Manufacturing

Manufacturing Marketing Security Information Security

Rhysida ransomware gang claimed China Energy hack

Security Affairs

NOVEMBER 25, 2023

The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors. The group relies on living off-the-land techniques such as native (built into the operating system) network administration tools to perform malicious operations.

Ransomware

Ransomware Manufacturing Education Libraries

China-linked Budworm APT returns to target a US entity

Security Affairs

OCTOBER 13, 2022

The Budworm cyber espionage group (aka APT27 , Bronze Union , Emissary Panda , Lucky Mouse , TG-3390 , and Red Phoenix) is behind a series attacks conducted over the past six months against a number of high-profile targets, including the government of a Middle Eastern country, a multinational electronics manufacturer, and a U.S.

File names

File names Financial Services Manufacturing Libraries

3.5m IP cameras exposed, with US in the lead

Security Affairs

DECEMBER 14, 2022

After looking at 28 of the most popular manufacturers, our research team found 3.5 What is more, the overwhelming majority of internet-facing cameras are manufactured by Chinese companies. Most of the public-facing cameras we discovered are manufactured by the Chinese company Hikvision: the Cybernews research team found over 3.37

Passwords

Passwords Manufacturing Authentication Government

FBI and CISA update a joint advisory on the BlackSuit Ransomware group

Security Affairs

AUGUST 8, 2024

The BlackSuit ransomware has targeted various critical infrastructure sectors, including commercial facilities, healthcare, government, and manufacturing. They threat actors also use Mimikatz and Nirsoft tools to steal credentials and harvest passwords. The group uses SharpShares and SoftPerfect NetWorx to map out victim networks.

Ransomware

Ransomware Communications Manufacturing Phishing

Rhysida ransomware group hacked King Edward VII’s Hospital in London

Security Affairs

NOVEMBER 29, 2023

The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors. The group relies on living off-the-land techniques such as native (built into the operating system) network administration tools to perform malicious operations.

Ransomware

Ransomware Manufacturing Education Libraries

Rhysida ransomware group hacked Abdali Hospital in Jordan

Security Affairs

DECEMBER 26, 2023

The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors. The group relies on living off-the-land techniques such as native (built into the operating system) network administration tools to perform malicious operations.

Ransomware

Ransomware Manufacturing Education Libraries

Is Gelsemium APT behind a targeted attack in Southeast Asian Government?

Security Affairs

SEPTEMBER 25, 2023

The activity was characterized by the use of a combination of rare tools and techniques to gain access to the target network and collect intelligence from sensitive IIS server. The previous campaigns associated with this group targeted government, education, and electronic manufacturers in East Asia and the Middle East.

Government

Government Manufacturing Education Access

What Graykey Can and Can’t Unlock

Schneier on Security

NOVEMBER 26, 2024

This is from 404 Media : The Graykey, a phone unlocking and forensics tool that is used by law enforcement around the world, is only able to retrieve partial data from all modern iPhones that run iOS 18 or iOS 18.0.1, The documents do not appear to contain information about what Graykey can access from the public release of iOS 18.1,

Manufacturing

Manufacturing Access

Token Snags Ex-OneSpan Revenue Leader John Gunn as New CEO

Data Breach Today

JUNE 30, 2022

Gunn is tasked with sourcing the critical components needed to manufacture the ring and building a base of paying clients for the biometric tool.

Manufacturing

Manufacturing Authentication IT

National Safety Council data leak: Credentials of NASA, Tesla, DoJ, Verizon, and 2K others leaked by workplace safety organization

Security Affairs

AUGUST 31, 2023

Leaked credentials could have been used for credential stuffing attacks, which try to log into companies’ internet-connected tools such as VPN portals, HR management platforms, or corporate emails. The vulnerability posed a risk not only to NSC systems but also to the companies using NSC services.

Passwords

Passwords Healthcare Manufacturing Access

FBI and Australia ACSC agencies warn of ongoing Avaddon ransomware attacks

Security Affairs

MAY 11, 2021

The Federal Bureau of Investigation (FBI) and the Australian Cyber Security Centre (ACSC) are warning of an ongoing Avaddon ransomware campaign targeting organizations worldwide in multiple industries, including government, finance, energy, manufacturing, and healthcare.

Ransomware

Ransomware Manufacturing Phishing Encryption

A new piece of Snake Ransomware targets ICS processes

Security Affairs

JANUARY 28, 2020

Like other ransomware, upon execution Snake will remove the computer’s Shadow Volume Copies, it also kills numerous processes related to SCADA systems, virtual machines, industrial control systems, remote management tools, network management software, and more. a file named invoice.doc is encrypted and renamed like invoice.docIksrt.

Ransomware

Ransomware Energy and Utilities Manufacturing Encryption

Huawei Accuses US Government of Hack Attacks

Data Breach Today

SEPTEMBER 4, 2019

White House 'Using Every Tool At Its Disposal' to Disrupt Business, Firm Claims The battle between Huawei Technologies and the White House continues to intensify, with the Chinese manufacturing giant accusing the U.S. of "using every tool at its disposal" to disrupt its business, including cyberattacks and employee intimidation.

Government

Government Manufacturing IT

China-linked APT10 leverages ZeroLogon exploits in recent attacks

Security Affairs

NOVEMBER 18, 2020

Targeted sectors include: Automotive Clothing Conglomerates Electronics Engineering General Trading Company Government Industrial Products Managed Service Providers Manufacturing Pharmaceutical Professional Services. The APT10 is well-resourced cyberespionage group that employed multiple tools and sophisticated techniques in its attacks.

Healthcare

Healthcare Archiving Cloud Manufacturing

Mysterious threat actor TAC-040 used previously undetected Ljl Backdoor

Security Affairs

AUGUST 5, 2022

Get victim system information, such as CPU name, GPU name, hardware id, bios manufacturer, Mainboard name, total physical memory, LAN IP address, and mac address. Load arbitrary and remotely downloaded.NET assemblies as “plugins.” Get user accounts. Get the foreground window and window text.

Manufacturing

Manufacturing Cybersecurity IT Access

Experts spotted two Android spyware used by Indian APT Confucius

Security Affairs

FEBRUARY 11, 2021

. “While SunBird features remote access trojan (RAT) functionality – a malware that can execute commands on an infected device as directed by an attacker – Hornbill is a discreet surveillance tool used to extract a selected set of data of interest to its operator.” ” concludes the report.

Metadata

Metadata Military Manufacturing Access

Chinese Android phones shipped with malware-laced WhatsApp, Telegram apps

TIDRONE APT targets drone manufacturers in Taiwan

Webinars

Trending Sources

Sierra Wireless halted production at its manufacturing sites due to ransomware attack

Webinars

Cyber-Criminal espionage Operation insists on Italian Manufacturing

2021 State of Analytics: Why Users Demand Better

Microsoft releases On-premises Mitigation Tool (EOMT) tool to fix ProxyLogon issues

CVE-2018-4251 – Apple did not disable Intel Manufacturing Mode in its laptops

CISA recommends vendors to fix BrakTooth issues after the release of PoC tool

Researchers released a free decryption tool for the Rhysida Ransomware

Deliver Mission Critical Insights in Real Time with Data & Analytics

Feds Seize LockBit Ransomware Websites, Offer Decryption Tools, Troll Affiliates

How 'Mespinoza' Ransomware Group Hits Targets

Aztarna – the open-source scanning tool for vulnerable robots

Estonian National charged with helping Russia acquire U.S. hacking tools and electronics

Police in Europe Arrest 31 for Hacking and Stealing Autos

Ransomware attacks break records in 2023: the number of victims rose by 128%

Hundreds of vulnerabilities in common Wi-Fi routers affect millions of users

Less popular, but very effective, Red-Teaming Tool BRc4 used in attacks in the wild

China’s Volt Typhoon botnet has re-emerged

NIST Tests Forensic Methods for Getting Data From Damaged Mobile Phones

The Vanilla Tempest cybercrime gang used INC ransomware for the first time in attacks on the healthcare sector

FBI and CISA warn of attacks by Rhysida ransomware gang

OmniVision disclosed a data breach after the 2023 Cactus ransomware attack

New ATM Malware family emerged in the threat landscape

New LookingGlass CEO Bryan Ware to Diversify Customer Base

Security Affairs newsletter Round 377

NEW TECH: Semperis introduces tools to improve security resiliency of Windows Active Directory

Law enforcement arrested 31 suspects for stealing cars by hacking key fobs

Rhysida ransomware gang claimed China Energy hack

China-linked Budworm APT returns to target a US entity

3.5m IP cameras exposed, with US in the lead

FBI and CISA update a joint advisory on the BlackSuit Ransomware group

Rhysida ransomware group hacked King Edward VII’s Hospital in London

Rhysida ransomware group hacked Abdali Hospital in Jordan

Is Gelsemium APT behind a targeted attack in Southeast Asian Government?

What Graykey Can and Can’t Unlock

Token Snags Ex-OneSpan Revenue Leader John Gunn as New CEO

National Safety Council data leak: Credentials of NASA, Tesla, DoJ, Verizon, and 2K others leaked by workplace safety organization

FBI and Australia ACSC agencies warn of ongoing Avaddon ransomware attacks

A new piece of Snake Ransomware targets ICS processes

Huawei Accuses US Government of Hack Attacks

China-linked APT10 leverages ZeroLogon exploits in recent attacks

Mysterious threat actor TAC-040 used previously undetected Ljl Backdoor

Experts spotted two Android spyware used by Indian APT Confucius

Stay Connected