2012, Information Security and Manufacturing - Information Management Today

Don’t trust links with known domains: BMW affected by redirect vulnerability

Security Affairs

JANUARY 3, 2024

When the victim clicks on a link that appears to be legitimate, they’re redirected to the attacker’s website, where malicious JavaScript is executed in the client’s browser or where they are prompted to enter sensitive information. BMW is a German manufacturer of luxury vehicles headquartered in Munich.

Phishing

Phishing Manufacturing Access Information Security

Estonian National charged with helping Russia acquire U.S. hacking tools and electronics

Security Affairs

APRIL 9, 2023

manufacturers on behalf of Russian end-users, including defense contractors and other Russian government agencies. In 2012, the US government added Shevlyakov to Entity List, a ban list for procuring and delivering export-restricted items to Russia. ” reads a press release published by DoJ.

Computer and Electronics

Computer and Electronics Military Manufacturing Government

US indicted 4 Russian government employees for attacks on critical infrastructure

Security Affairs

MARCH 25, 2022

has indicted four Russian government employees for their role in cyberattacks targeting hundreds of companies and organizations in the energy sector worldwide between 2012 and 2018. ” reads a press release published by DoJ. ’ (aka Dragonfly , Berzerk Bear, Energetic Bear, and Crouching Yeti ).

Energy and Utilities

Energy and Utilities Government Cybersecurity Military

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

Vietnam-linked Ocean Lotus hacked BMW and Hyundai networks

Security Affairs

DECEMBER 7, 2019

Alleged Vietnamese Ocean Lotus (APT32) hackers breached the networks of the car manufacturers BMW and Hyundai to steal automotive trade secrets. According to German media, hackers suspected to be members of the Vietnam-linked APT Ocean Lotus ( APT32 ) group breached the networks of the car manufacturers BMW and Hyundai.

Manufacturing

Manufacturing Government Security IT

Mitsubishi Electric Corp. was hit by a new cyberattack

Security Affairs

NOVEMBER 20, 2020

The hacker group has been targeting Japanese heavy industry, manufacturing and international relations at least since 2012, According to the experts, the group is linked to the People’s Republic of China and is focused on exfiltrating confidential data.

Manufacturing

Manufacturing Cloud Cybersecurity Security

Chinese Ministry Issues New Rule Restricting Pre-Installation of Software by Manufacturers of Mobile Devices

Hunton Privacy

MAY 7, 2013

This Notice, which will become effective on November 1, 2013, was issued in draft form in June 2012 along with a request for public comment. otherwise impact the security of users’ personal information, the legitimate interests of users or network security.

Manufacturing

Manufacturing Communications Sales Marketing

Kraken fileless attack technique abuses Microsoft Windows Error Reporting (WER)

Security Affairs

OCTOBER 7, 2020

The APT32 group has been active since at least 2012, it has targeted organizations across multiple industries and foreign governments, dissidents, and journalists. Since at least 2014, experts at FireEye have observed APT32 targeting foreign corporations with an interest in Vietnam’s manufacturing, consumer products, and hospitality sectors.

Phishing

Phishing Manufacturing Archiving Government

Devices from Dell, HP, and Lenovo used outdated OpenSSL versions

Security Affairs

NOVEMBER 25, 2022

OpenSSL contains an open-source implementation of the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols. The researchers discovered the issue by analyzing firmware images used devices from the above manufacturers. that dates back 2012. that dates back to 2009.

Libraries

Libraries Manufacturing Communications Security

Chinese hackers exploited a Trend Micro antivirus zero-day used in Mitsubishi Electric hack

Security Affairs

JANUARY 25, 2020

The hacker group has been targeting Japanese heavy industry, manufacturing and international relations at least since 2012, According to the experts, the group is linked to the People’s Republic of China and is focused on exfiltrating confidential data. According to people involved, Chinese hackers Tick may have been involved.

Manufacturing

Manufacturing Sales Data breaches Access

Facebook links cyberespionage group APT32 to Vietnamese IT firm

Security Affairs

DECEMBER 11, 2020

The APT32 group has been active since at least 2012, it has targeted organizations across multiple industries and foreign governments, dissidents, and journalists. The APT32 also targeted peripheral network security and technology infrastructure corporations, and security firms that may have connections with foreign investors.

Agriculture

Agriculture IT Retail Manufacturing

Mitsubishi Electric discloses data breach, media blame China-linked APT

Security Affairs

JANUARY 20, 2020

The hacker group has been targeting Japanese heavy industry, manufacturing and international relations at least since 2012, According to the experts, the group is linked to the People’s Republic of China and is focused on exfiltrating confidential data. “According to people involved, Chinese hackers Tick may have been involved.

Data breaches

Data breaches Computer and Electronics Government Manufacturing

APT32 state hackers target human rights defenders with spyware

Security Affairs

FEBRUARY 24, 2021

The APT32 group has been active since at least 2012, it has targeted organizations across multiple industries and foreign governments, dissidents, and journalists. Since at least 2014, experts at FireEye have observed APT32 targeting foreign corporations with an interest in Vietnam’s manufacturing, consumer products, and hospitality sectors.

Phishing

Phishing Manufacturing Government Privacy

China-linked APT41 group exploits Citrix, Cisco, Zoho flaws

Security Affairs

MARCH 25, 2020

The APT41 has been active since at least 2012, it was involved in both state-sponsored espionage campaigns and financially-motivated attacks since 2014. The campaign was uncovered by FireEye , threat actor targeted many organizations worldwide the world by exploiting vulnerabilities in Citrix, Cisco and Zoho ManageEngine products.

Healthcare

Healthcare Education Manufacturing Government

Japan suspects HGV missile data leak in Mitsubishi security breach

Security Affairs

MAY 21, 2020

The hacker group has been targeting Japanese heavy industry, manufacturing and international relations at least since 2012, According to the experts, the group is linked to the People’s Republic of China and is focused on exfiltrating confidential data.

Security

Security Military Manufacturing Personal data

China-linked cyberspies Turbine PANDA targeted aerospace firms for years

Security Affairs

OCTOBER 18, 2019

The researchers attributed the attacks to a China-linked threat actor tracked as TURBINE PANDA who targeted multiple companies that manufactured the C919’s components between 2010 and 2015. “However, the C919 can hardly be seen as a complete domestic triumph, because it is reliant on a plethora of foreign-manufactured components.

Manufacturing

Manufacturing Security Government IT

North Korea-linked ScarCruft APT adds Bluetooth Harvester to its arsenal

Security Affairs

MAY 14, 2019

ScarCruft has been active since at least 2012, it made the headlines in early February 2018 when researchers revealed that the APT group leveraged a zero-day vulnerability in Adobe Flash Player to deliver malware to South Korean users.

IT

IT Military Manufacturing Government

FTC Releases Report on the Increased Use of Mobile Payments

Hunton Privacy

MARCH 12, 2013

The Report is based on a workshop held by the FTC in April 2012 and highlights key consumer and privacy issues resulting from the increasingly widespread use of mobile payments. In December 2012, the FTC expressed concern with mobile applications’ privacy disclosures in Mobile Apps for Kids: Disclosures Still Not Making the Grade.

Privacy

Privacy Data collection Manufacturing Paper

SBOMs: Securing the Software Supply Chain

eSecurity Planet

OCTOBER 26, 2021

ISO/IEC 19770-2 was confirmed in 2012 and updated in 2015. Medical device manufacturers (MDM) producing SBOMs for use by healthcare delivery organizations (HDO) led the charge, and the result has been a foundation for continued development. OWASP’s CycloneDX. Proof of Concept: Healthcare SBOM. What SBOMs Mean for Cybersecurity.

Security

Security Risk Compliance Cybersecurity

The Hacker Mind Podcast: DEF CON Villages

ForAllSecure

AUGUST 2, 2022

Anyone who has anyone in the information security community is usually melting under the hot Nevada sun. You know, you know, manufacturers aren't just one person, like, like big companies aren't one person. In my you know 1011 Oh man even more than that 2012 1415 years now. You turn it off and back on again.

Computer and Electronics

Computer and Electronics IT Security Mining

How to Track Your Kids (and Other People's Kids) With the TicTocTrack Watch

Troy Hunt

APRIL 15, 2019

Referencing that report, US Consumer groups drew a similar conclusion : US consumer groups are now warning parents not to buy the devices The manufacturers fixed the identified flaws. Certainly not the current gen XS, does that resolution put it back in about the iPhone 5 era from 2012? Wearco produces "mining consumables".

Passwords

Passwords Privacy Manufacturing Access

The Hacker Mind Podcast: The Right To Repair

ForAllSecure

FEBRUARY 10, 2021

What if the right to repair something that you own was denied simply because a manufacturer decided it could do that? And if you didn't put on the, you know, manufacturer approved tire. Given the control that medical device manufacturers have, and the FDA as well, when COVID hit something had to give.

Manufacturing

Manufacturing Agriculture IT Access

The Hacker Mind Podcast: The Right To Repair

ForAllSecure

FEBRUARY 10, 2021

What if the right to repair something that you own was denied simply because a manufacturer decided it could do that? And if you didn't put on the, you know, manufacturer approved tire. Given the control that medical device manufacturers have, and the FDA as well, when COVID hit something had to give.

Manufacturing

Manufacturing Agriculture IT Access

Molerats cyberespionage group uses public cloud services as attack infrastructure

Security Affairs

JANUARY 23, 2022

MoleRATs is an Arabic-speaking, politically motivated group of hackers that has been active since 2012, . Collects the machine manufacture and machine model information using WMI which is used for execution environment checks and is later exfiltrated to C2 server. ” reads the analysis published by Zscaler. .’

Cloud

Cloud Manufacturing Phishing IT

Information Management Today

Don’t trust links with known domains: BMW affected by redirect vulnerability

Estonian National charged with helping Russia acquire U.S. hacking tools and electronics

Webinars

Trending Sources

US indicted 4 Russian government employees for attacks on critical infrastructure

Webinars

Vietnam-linked Ocean Lotus hacked BMW and Hyundai networks

Mitsubishi Electric Corp. was hit by a new cyberattack

Chinese Ministry Issues New Rule Restricting Pre-Installation of Software by Manufacturers of Mobile Devices

Kraken fileless attack technique abuses Microsoft Windows Error Reporting (WER)

Devices from Dell, HP, and Lenovo used outdated OpenSSL versions

Chinese hackers exploited a Trend Micro antivirus zero-day used in Mitsubishi Electric hack

Facebook links cyberespionage group APT32 to Vietnamese IT firm

Mitsubishi Electric discloses data breach, media blame China-linked APT

APT32 state hackers target human rights defenders with spyware

China-linked APT41 group exploits Citrix, Cisco, Zoho flaws

Japan suspects HGV missile data leak in Mitsubishi security breach

China-linked cyberspies Turbine PANDA targeted aerospace firms for years

North Korea-linked ScarCruft APT adds Bluetooth Harvester to its arsenal

FTC Releases Report on the Increased Use of Mobile Payments

SBOMs: Securing the Software Supply Chain

The Hacker Mind Podcast: DEF CON Villages

How to Track Your Kids (and Other People's Kids) With the TicTocTrack Watch

The Hacker Mind Podcast: The Right To Repair

The Hacker Mind Podcast: The Right To Repair

Molerats cyberespionage group uses public cloud services as attack infrastructure

Stay Connected