IT Governance

APRIL 29, 2024

Source (New) Manufacturing Taiwan Yes 4,715,133 Mustafa Centre Source 1 ; source 2 (Update) Retail Singapore Yes >3,5000,000 TRAXERO Source (New) Software USA Yes 2,634,753 Piping Rock Health Products Source 1 ; source 2 ; source 3 (New) Manufacturing USA Yes 2,103,100 FBCS, Inc.

Data Privacy 94

Data Privacy Privacy Manufacturing Security 94

Security Affairs

MARCH 25, 2024

The malware StrelaStealer is an email credential stealer that DCSO_CyTec first documented in November 2022. The campaign targeted organizations in many sectors, including the high-tech, finance, legal services and manufacturing industries. “The JScript file then drops a Base64-encrypted file and a batch file. .

Encryption 99

Encryption Manufacturing Archiving Phishing 99

Security Affairs

MAY 16, 2023

French electronics manufacturer Lacroix Group shut down three plants after a cyber attack, experts believe it was the victim of a ransomware attack. The French electronics manufacturer Lacroix Group shut down three facilities in France, Germany, and Tunisia in response to a cyber attack. The company earned $770 million in 2022.

Manufacturing 83

Manufacturing Ransomware Sales Encryption 83

Security Affairs

JANUARY 6, 2024

It is one of the largest pharmaceutical companies globally, engaged in the research, development, manufacturing, and marketing of a wide range of healthcare products. In January 2022, Judge Thomas J. Merck & Co., Merck filed a $1.4 billion insurance claim for the losses caused by the NotPetya attack that took place in 2017.

Insurance 108

Insurance Healthcare Manufacturing Ransomware 108

Schneier on Security

MARCH 16, 2022

Some of the keys are from printers from two manufacturers, Canon and Fujifilm (originally branded as Fuji Xerox). The weak Canon keys are tracked as CVE-2022-26351. Böck also found four vulnerable PGP keys, typically used to encrypt email, on SKS PGP key servers. The creation date for the all the weak keys was 2020 or later.

Manufacturing 109

Manufacturing Libraries Encryption IT 109

IT Governance

DECEMBER 5, 2023

35 TB of data exfiltrated from Henry Schein, plus ALPHV/BlackCat re-encrypted the newly restored files As we first reported last month , the US healthcare solutions provider Henry Schein announced on 15 October that it had suffered a cyber attack that caused disruption to its manufacturing and distribution businesses.

Data Privacy 106

Data Privacy Privacy Manufacturing Retail 106

Security Affairs

NOVEMBER 24, 2022

RansomExx operation has been active since 2018, the list of its victims includes government agencies, the computer manufacturer and distributor GIGABYTE , and the Italian luxury brand Zegna. The ransomware iterates through the specified directories, enumerating and encrypting files. ” concludes the report.

Ransomware 98

Ransomware Encryption Manufacturing Government 98

Krebs on Security

FEBRUARY 20, 2024

The government says Russian national Artur Sungatov used LockBit ransomware against victims in manufacturing, logistics, insurance and other companies throughout the United States. In addition, the Japanese Police, supported by Europol, have released a recovery tool designed to recover files encrypted by the LockBit 3.0

Ransomware 264

Ransomware Encryption Insurance Manufacturing 264

Security Affairs

MARCH 3, 2023

The human-operated Royal ransomware first appeared on the threat landscape in September 2022, it has demanded ransoms up to millions of dollars. “FBI and CISA believe this variant, which uses its own custom-made file encryption program, evolved from earlier iterations that used “Zeon” as a loader.”

Ransomware 88

Ransomware Encryption Cybersecurity Communications 88

Security Affairs

MAY 15, 2023

Compromised organizations operate in different business verticals, including manufacturing, wealth management, insurance providers, and pharmaceuticals. The ransomware supports intermittent encryption to speed up the encryption process. This process encrypts only a certain part of the source file’s contents, not the entire file.”

Ransomware 82

Ransomware Encryption Healthcare Insurance 82

Security Affairs

JUNE 28, 2023

The group has been active since March 2022, it focused on small and medium-size businesses in multiple industries, including finance, manufacturing, business services, and IT. The new figures represent a 24% surge compared to April’s figure of 352 and a 56% increase compared to May 2022.” and Brazil.

Ransomware 85

Ransomware Encryption Manufacturing Business Services 85

Security Affairs

JUNE 3, 2023

Royal ransomware is one of the most notable ransomware families of 2022, it made the headlines in early May 2023 with the attack against the IT systems in Dallas, Texas. The human-operated Royal ransomware first appeared on the threat landscape in September 2022, it has demanded ransoms up to millions of dollars.

Ransomware 93

Ransomware Encryption File names Cybersecurity 93

Krebs on Security

APRIL 4, 2024

Launched in 2008, privnote.com employs technology that encrypts each message so that even Privnote itself cannot read its contents. com is currently selling security cameras made by the Chinese manufacturer Hikvision , via an Internet address based in Hong Kong. The real Privnote, at privnote.com. com include privnode[.]com

Phishing 209

Phishing Blockchain Manufacturing Encryption 209

Security Affairs

JULY 15, 2022

The list of victims includes manufacturing organizations, banks, schools, and event and meeting planning companies. The Holy Ghost ransomware appends the file extension.h0lyenc to filenames of encrypted files. The HolyRS.exe was first detected in October 2021, HolyLocker.exe in March 2022 and BTLC.exe in April 2022.

Ransomware 129

Ransomware Encryption Government Manufacturing 129

Security Affairs

FEBRUARY 28, 2024

“As early as 2022, APT28 actors had utilized compromised EdgeRouters to facilitate covert cyber operations against governments, militaries, and organizations around the world.” Since September 2022, Moobot botnet was spotted targeting vulnerable D-Link routers. ” reads the joint report. ” reads the joint report.

Energy and Utilities 95

Energy and Utilities Military Government Phishing 95

Security Affairs

JANUARY 29, 2023

Copycat Criminals mimicking Lockbit gang in northern Europe Sandworm APT targets Ukraine with new SwiftSlicer wiper ISC fixed high-severity flaws in DNS software suite BIND Patch management is crucial to protect Exchange servers, Microsoft warns Hacker accused of having stolen personal data of all Austrians and more CVE-2023-23560 flaw exposes 100 (..)

Security 84

Security Data breaches Military Ransomware 84

Security Affairs

JANUARY 28, 2022

Taiwanese electronics manufacturing company Delta Electronics was hit by the Conti ransomware that took place this week. According to CTWANT , which cited an undisclosed information security company, Delta Electronics was hit by Conti ransomware that asked Delta to pay a $15 million ransom to restore encrypted files and avoid their leak.

Ransomware 87

Ransomware Computer and Electronics Manufacturing Encryption 87

Security Affairs

OCTOBER 27, 2022

DEV-0950 group used Clop ransomware to encrypt the network of organizations previously infected with the Raspberry Robin worm. The experts noticed that threat actors tracked as DEV-0950 used Clop ransomware to encrypt the network of organizations previously infected with the worm. The final-stage malware was the Clop ransomware.

Ransomware 94

Ransomware Access Encryption Manufacturing 94

Security Affairs

MAY 4, 2023

The human-operated Royal ransomware first appeared on the threat landscape in September 2022, it has demanded ransoms up to millions of dollars. FBI and CISA believe this variant, which uses its own custom-made file encryption program, evolved from earlier iterations that used “Zeon” as a loader.” reads the alert.

Ransomware 91

Ransomware IT Encryption Education 91

Security Affairs

FEBRUARY 21, 2024

The NCA will reach out to victims based in the UK in the coming days and weeks, providing support to help them recover encrypted data. In 2022, LockBit was one of the most active ransomware groups, and its prevalence continued into 2023. reads the press release published by DoJ.

Energy and Utilities 89

Energy and Utilities Ransomware Agriculture Manufacturing 89

Security Affairs

JANUARY 16, 2022

BleepingComputer also reported that dozens of ransom notes and encrypted files have been submitted to the ID-Ransomware service by affected QNAP users. “It seems like a new version of the QLocker ransomware appeared on 06/1/2022. The malicious code appends.encrypt extension to filenames of encrypted files.

Ransomware 111

Ransomware Encryption Passwords Manufacturing 111

IT Governance

MARCH 11, 2024

Glosbe dictionary exposes almost 7 million records The multilingual online dictionary Glosbe left a MongoDB instance unsecured last year, exposing nearly 7 million users’ information, including personal data, encrypted passwords and social media identifiers. Glosbe did not reply, but the open instance was soon closed. TB Paysign, Inc.

Data Privacy 87

Data Privacy Privacy Security Data breaches 87

IT Governance

SEPTEMBER 30, 2022

According to its analysis , 260 organisations in the UK fell victim to ransomware between January 2020 and June 2022, a figure that’s only exceeded by Canada (276) and – in a distant lead – the US (2,379). The other most vulnerable sectors were business services (23), construction (22), manufacturing (19) and transport (18).

Ransomware 136

Ransomware Manufacturing Data breaches Risk 136

Security Affairs

SEPTEMBER 23, 2023

The command-and-control beacons allowed Royal to prepare the City’s network resources for the May 03, 2023, ransomware encryption attack.” The human-operated Royal ransomware first appeared on the threat landscape in September 2022, it has demanded ransoms up to millions of dollars. ” continues the report.

Ransomware 102

Ransomware Encryption Systems administration Cybersecurity 102

IT Governance

MARCH 5, 2024

Affected information includes users’ names, email addresses, IP addresses and encrypted passwords. Nearly 20 million Cutout.Pro users’ data breached Cutout.Pro, an AI photo and video editing platform, has suffered a data breach. The threat actor, KryptonZambie, listed a 5.93

Data Privacy 52

Data Privacy Privacy Manufacturing Retail 52

Security Affairs

FEBRUARY 20, 2024

The NCA will reach out to victims based in the UK in the coming days and weeks, providing support to help them recover encrypted data. In 2022, LockBit was one of the most active ransomware groups, and its prevalence continued into 2023. ” said National Crime Agency Director General, Graeme Biggar.

Energy and Utilities 98

Energy and Utilities Ransomware Manufacturing Agriculture 98

Thales Cloud Protection & Licensing

APRIL 27, 2022

Thu, 04/28/2022 - 06:15. A conventional computer would need 300 trillion years to break RSA encryption – considered the gold standard for Public Key Encryption (PKE). In the hands of the enemy, a quantum computer capable of destroying RSA- encrypted data would have devastating effects on our critical infrastructure and economy.

Encryption 71

Encryption Cybersecurity Government Communications 71

Data Matters

MAY 17, 2022

*Reprinted with permission from the May 6, 2022 edition of the New York Law Journal © 202X ALM Global Properties, LLC. In March 2022, the White House issued a dramatic warning based on “evolving intelligence” about potential Russian cyberattacks on the United States in response to U.S.-imposed All rights reserved. Agency (Feb.

Cybersecurity 97

Cybersecurity Government Authentication Ransomware 97

eSecurity Planet

AUGUST 14, 2023

Cybersecurity and Infrastructure Security Agency (CISA) recently published an analysis of the top 12 vulnerabilities exploited in 2022. In June, Mandiant disclosed active exploitation of the zero-day vulnerability ( CVE-2023-2868 ) linked to highly-skilled Chinese attackers that occurred as early as October 10, 2022.

Cybersecurity 96

Cybersecurity Access IoT Manufacturing 96

Security Affairs

MARCH 15, 2023

According to its own estimates, Safran Group ’s revenue for 2022 was above €19 billion. It collaborates with Airbus, the second-largest aerospace company globally after Boeing, to manufacture aerospace equipment. Also, the company manufactures surface-to-air defense systems and missiles.

Manufacturing 85

Manufacturing Access Risk IT 85

eSecurity Planet

NOVEMBER 6, 2023

CVE-2022-4886 (Path Sanitization Bypass): This 8.8-level Exploiting these issues might result in unauthorized command execution, exposing NAS systems to data theft, encryption, or ransomware attacks. The Problem: Three flaws discovered by the Kubernetes security community carry CVSS severity scores of 7.6

Ransomware 104

Ransomware Authentication Cybersecurity Education 104

DLA Piper Privacy Matters

JULY 13, 2022

No data strategy in 2022 would be complete without consideration of Artificial Intelligence (AI). There are strong parallels here with the EU’s proposals for a European Health Data Space , which will promote access to electronic health data for secondary purposes. Encouraging AI Innovation.

Artificial Intelligence 97

Artificial Intelligence Privacy Government Access 97

Thales Cloud Protection & Licensing

MARCH 17, 2022

Thu, 03/17/2022 - 09:46. This new risk detection capability is provided on top of the existing best-in-class security framework that SafeNet MobilePASS+ offers to protect against attacks, including DSKPP encrypted token enrollment. Enhance your security posture by detecting risks on authenticator devices. Anonymous (not verified).

Authentication 77

Authentication Risk Security Computer and Electronics 77

Thales Cloud Protection & Licensing

JULY 24, 2023

Network Encryption Keeps Our Data in Motion Secure for Business Services madhav Tue, 07/25/2023 - 04:59 The demand for high-speed networks and fast data transfers is increasing due to cloud adoption, digital transformation, and hybrid work. These solutions encrypt data as it moves across networks for maximum security and performance.

Business Services 62

Business Services Encryption Manufacturing Security 62

Thales Cloud Protection & Licensing

MARCH 17, 2022

Thu, 03/17/2022 - 09:46. This new risk detection capability is provided on top of the existing best-in-class security framework that SafeNet MobilePASS+ offers to protect against attacks, including DSKPP encrypted token enrollment. Enhance your security posture by detecting risks on authenticator devices. Anonymous (not verified).

Authentication 62

Authentication Risk Security Computer and Electronics 62

eSecurity Planet

MARCH 25, 2024

The problem: All Saflok system electronic locks are affected by a vulnerability that impacts “both the key derivation algorithm used to generate MIFARE Classic® keys and the secondary encryption algorithm used to secure the underlying card data,” according to manufacturer Dormakaba.

Computer and Electronics 62

Computer and Electronics Cloud Authentication Cybersecurity 62

eSecurity Planet

SEPTEMBER 14, 2022

of the wealth in the United States as of Q1 2022, compared to 6.5% According to the 2021 IBM Threat Force Intelligence Index , Manufacturing was the industry most likely to be attacked last year, comprising 23.2% Read More At: Top Secure Email Gateway Solutions for 2022. for individuals under 40. since Q3 of 2007.

Energy and Utilities 120

Energy and Utilities Phishing Blockchain Cybersecurity 120