2022, Manufacturing and Security - Information Management Today

German arms manufacturer Rheinmetall suffered Black Basta ransomware attack

Security Affairs

MAY 23, 2023

The German automotive and arms manufacturer Rheinmetall announced it was victim of a Black Basta ransomware attack that took place last month. Rheinmetall is a German automotive and arms manufacturer that is listed on the Frankfurt stock exchange. The company is still working to completely recover from the security breach.

Manufacturing

Manufacturing Ransomware Cybersecurity Security

New Export Controls on Advanced Computing and Semiconductor Manufacturing: Five Key Takeaways

Data Matters

NOVEMBER 1, 2023

Department of Commerce Bureau of Industry and Security (BIS) published updated export controls on advanced computing items and semiconductor manufacturing equipment under the Export Administration Regulations (EAR).

Manufacturing

Manufacturing Privacy Security Cybersecurity

2022 Cyber Security Review of the Year

IT Governance

DECEMBER 20, 2022

2022 will go down as the year where some semblance of normality returned. Although there have still been a few surprises, with the death of Queen Elizabeth II and blazing heatwaves across the UK to name but two, it was a familiar year in the cyber security landscape. These were truly precedented times.

Security

Security Data breaches Ransomware Military

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

US agricultural machinery manufacturer AGCO suffered a ransomware attack

Security Affairs

MAY 8, 2022

The American agricultural machinery manufacturer AGCO announced that has suffered a ransomware attack that impacted its production facilities. AGCO, one of the most important agricultural machinery manufacturers, announced that a ransomware attack impacted some of its production facilities. To nominate, please visit:?

Agriculture

Agriculture Manufacturing Ransomware Cybersecurity

Webinar: The Supply Chain Security Gap: Impacts on Connected and Embedded Device Manufacturers via Embedded Computing Design on February 9th, 2022 at 2pm Eastern

IG Guru

FEBRUARY 2, 2022

The post Webinar: The Supply Chain Security Gap: Impacts on Connected and Embedded Device Manufacturers via Embedded Computing Design on February 9th, 2022 at 2pm Eastern appeared first on IG GURU. Ponemon was appointed to the Advisory Committee for Online…Full Profile Rich Nass Executive Vice-President, Brand […].

Manufacturing

Manufacturing Security Privacy Information governance

BlackByte ransomware group hit Asahi Group Holdings, a precision metal manufacturing and metal solution provider

Security Affairs

OCTOBER 30, 2022

The BlackByte ransomware group claims to have compromised Asahi Group Holdings, a precision metal manufacturing and metal solution provider. In August 2022, a new version of the BlackByte ransomware appeared in the threat landscape , the version 2.0 Asahi Group Holdings, Ltd. uses extortion techniques similar to LockBit ones.

Manufacturing

Manufacturing Ransomware Sales Security

MY TAKE: New tech standards, like ‘Matter’ and ‘BIMI,’ point the way to secure interoperability

The Last Watchdog

NOVEMBER 12, 2023

However, there’s still a long way to go to achieve deep interoperability of interconnected services in a way that preserves privacy and is very secure. This is precisely what the consortium of software companies and device manufacturers, led Google, Amazon and Apple, set out to achieve when Matter was conceived four years ago.

Security

Security Manufacturing Authentication Marketing

A cyber attack forced the wind turbine manufacturer Nordex Group to shut down some of IT systems

Security Affairs

APRIL 6, 2022

Nordex Group, one of the largest manufacturers of wind turbines, was hit by a cyberattack that forced the company to shut down part of its infrastructure. Nordex Group, one of the world’s largest manufacturers of wind turbines, was the victim of a cyberattack that forced the company to take down multiple systems. Pierluigi Paganini.

Manufacturing

Manufacturing IT Ransomware Cybersecurity

Manufacturing needs to adopt a Zero Trust approach to mitigate increased cyber threats

Thales Cloud Protection & Licensing

OCTOBER 19, 2022

Manufacturing needs to adopt a Zero Trust approach to mitigate increased cyber threats. Thu, 10/20/2022 - 06:20. Long gone is the time when manufacturing systems and operations were siloed from the Internet and, therefore, were not a cybersecurity target. Survey’s key findings.

Manufacturing

Manufacturing Encryption Cloud IoT

House Energy and Commerce Leaders Demand Information from Various Toy Manufacturers

Hunton Privacy

NOVEMBER 15, 2022

Given the shift of marketing efforts from traditional television outlets to social media platforms, Committee Leaders are concerned about failure to protect children’s privacy, security and mental health on social media platforms. The letters from the Committee Leaders asked that each toy manufacturer respond by November 9, 2022.

Manufacturing

Manufacturing Privacy Marketing Security

Black Basta Ransomware gang accumulated at least $107 million in Bitcoin ransom payments since early 2022

Security Affairs

DECEMBER 1, 2023

The Black Basta ransomware gang infected over 300 victims accumulating ransom payments exceeding $100 million since early 2022. The Black Basta ransomware group has been active since April 2022, like other ransomware operations, it implements a double-extortion attack model. ” reads the Elliptic’s report.

Ransomware

Ransomware Blockchain Retail Insurance

Cuba Ransomware received over $60M in Ransom payments as of August 2022

Security Affairs

DECEMBER 2, 2022

Cuba ransomware gang received more than $60 million in ransom payments related to attacks against 100 entities worldwide as of August 2022. Dollars (USD) and received more than $60 million in ransom payments from over 100 victims worldwide as of August 2022, the US government states. ” reads the report. ” reads the report.

Ransomware

Ransomware Financial Services Manufacturing Phishing

Lenovo warns of flaws that can be used to bypass security features

Security Affairs

NOVEMBER 9, 2022

Lenovo fixed two high-severity flaws impacting various laptop models that could allow an attacker to deactivate UEFI Secure Boot. Lenovo has released security updates to address a couple of high-severity vulnerabilities impacting various ThinkBook, IdeaPad, and Yoga laptop models. dbx): all simply from an OS.

Manufacturing

Manufacturing Security IT Information Security

Q&A: Here’s how the ‘Matter’ protocol will soon reduce vulnerabilities in smart home devices

The Last Watchdog

AUGUST 1, 2022

Related: The crucial role of ‘Digital Trust’ After numerous delays and course changes, the Matter protocol, is set to roll out this fall, in time for the 2022 holiday shopping season. I had the chance to discuss the wider significance of Matter with Mike Nelson, DigiCert’s vice president of IoT security.

IoT

IoT Manufacturing Privacy Authentication

Lockbit ransomware gang claims to have stolen data from Boeing

Security Affairs

OCTOBER 27, 2023

The Lockbit ransomware gang claims to have hacked the aerospace manufacturer and defense contractor Boeing and threatened to leak the stolen data. The Boeing Company, commonly known as Boeing, is one of the world’s largest aerospace manufacturers and defense contractors. In 2022, Boeing recorded $66.61 ” ?????????:

Ransomware

Ransomware Manufacturing Military Sales

Critical Infrastructure Security and a Case for Optimism in 2022

Dark Reading

JANUARY 12, 2022

The new US infrastructure law will fund new action to improve cybersecurity across rail, public transportation, the electric grid, and manufacturing.

Manufacturing

Manufacturing Cybersecurity Security

STEPS FORWARD: Regulators are on the move to set much needed IoT security rules of the road

The Last Watchdog

SEPTEMBER 5, 2023

Related: The need for supply chain security This is to be expected. I had an eye-opening conversation about all of this with Steve Hanna , distinguished engineer at Infineon Technologies , a global semiconductor manufacturer based in Neubiberg, Germany. other European nations and Singapore soon began moving in this direction, as well.

IoT

IoT Security Manufacturing Cybersecurity

Basic Security Requirements for Smartphone Pre-installed Apps in China

Hunton Privacy

OCTOBER 26, 2022

On October 9, 2022, TC260 of China issued the Information Security Technology – Basic Security Requirements for Pre-installed App of Smartphones for public comment ending December 6, 2022 (the “Guidelines”). In general, uninstallation of pre-installed applications must be made available to customers.

Manufacturing

Manufacturing Security Information Security

Security AI and automation are key in protecting against costly data breaches for retailers and consumer goods businesses

IBM Big Data Hub

OCTOBER 3, 2023

According to a recent study by IBM Security, the 2023 X-Force Threat Intelligence Index established the retail and wholesale industry as the fifth-most targeted industry in 2022, with cybercriminals increasingly looking to exploit the trove of data gathered from the billions of transactions sellers process online.

Retail

Retail Data breaches Security Manufacturing

Security Affairs newsletter Round 404 by Pierluigi Paganini

Security Affairs

JANUARY 29, 2023

Every week the best security articles from Security Affairs free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! If you want to also receive for free the newsletter with the international press subscribe here.

Security

Security Data breaches Military Ransomware

List of data breaches and cyber attacks in February 2022 – 5.1 million records breached

IT Governance

MARCH 1, 2022

The cyber security industry, much like the rest of the world, is on edge. In the final days of February, there were a flurry of security incidents related, either directly or indirectly, to the Ukraine conflict. Meanwhile, you can find the full list of cyber attacks and data breaches for February 2022 below. Cyber attacks.

Data breaches

Data breaches Ransomware Government Blockchain

Lacroix Group shut down three facilities after a ‘targeted cyberattack’

Security Affairs

MAY 16, 2023

French electronics manufacturer Lacroix Group shut down three plants after a cyber attack, experts believe it was the victim of a ransomware attack. The French electronics manufacturer Lacroix Group shut down three facilities in France, Germany, and Tunisia in response to a cyber attack. The company earned $770 million in 2022.

Manufacturing

Manufacturing Ransomware Sales Encryption

News Alert: Utimaco finds regional disparities in consumers’ level of trust in digital security

The Last Watchdog

JULY 10, 2023

In light of this Utimaco released its first edition in the Circles of Trust survey series in 2022 focused on a sample of the United Kingdom (UK), Spain and Germany, covering key sectors of automotive cybersecurity to the public and the health sector to uncover consumer perceptions about the digital services that they use every day.

IoT

IoT Security Cybersecurity Compliance

Security Affairs newsletter Round 365 by Pierluigi Paganini

Security Affairs

MAY 15, 2022

A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs for free in your email box. The post Security Affairs newsletter Round 365 by Pierluigi Paganini appeared first on Security Affairs. To nominate, please visit:? Pierluigi Paganini.

Security

Security Agriculture Ransomware Manufacturing

Security Affairs newsletter Round 392

Security Affairs

NOVEMBER 6, 2022

Every week the best security articles from Security Affairs free for you in your email box. The post Security Affairs newsletter Round 392 appeared first on Security Affairs. A new round of the weekly SecurityAffairs newsletter arrived! Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Security

Security Ransomware Military Manufacturing

MSI confirms security breach after Money Message ransomware attack

Security Affairs

APRIL 7, 2023

Multinational IT corporation MSI (Micro-Star International) confirms security breach after Money Message ransomware gang claimed the hack. Micro-Star International AKA MSI designs, manufactures, and sells motherboards and graphics cards for customers in the United States, Canada, and internationally.

Ransomware

Ransomware Security Manufacturing Cybersecurity

Security Affairs newsletter Round 357 by Pierluigi Paganini

Security Affairs

MARCH 13, 2022

A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. CVE-2022-0492 flaw in Linux Kernel cgroups feature allows container escape Charities and NGOs providing support in Ukraine hit by malware. Is it fake news?

Security

Security Data breaches Ransomware Manufacturing

Chipmaker Qualcomm warns of three actively exploited zero-days

Security Affairs

OCTOBER 4, 2023

Chipmaker Qualcomm released security updates to address 17 vulnerabilities in several components. Google Threat Analysis Group and Google Project Zero first reported that the CVE-2023-33106, CVE-2023-33107, CVE-2022-22071 and CVE-2023-33063 are actively exploited in targeted attacks. ” reads the advisory.

Authentication

Authentication Manufacturing Security Information Security

Qualcomm Snapdragon flaws impact Lenovo, Microsoft, Lenovo, and Samsung devices

Security Affairs

JANUARY 9, 2023

Qualcomm January 2023 security bulletin addressed 22 software vulnerabilities in its Snapdragon suite. The most severe flaw is an integer overflow to buffer overflow in Automotive tracked as CVE-2022-33219 (CVSS Score 9.3). CVE-2022-33265 (CVSS Score 7.3) – the flaw is an Information exposure in Powerline Communication Firmware.

Communications

Communications Manufacturing Security IT

BianLian group exploits JetBrains TeamCity bugs in ransomware attacks

Security Affairs

MARCH 11, 2024

Researchers from GuidePoint Security noticed, while investigating a recent attack linked to the BianLian ransomware group, that the threat actors gained initial access to the target by exploiting flaws in a TeamCity server. ” reads the report published by GuidePoint Security.

Ransomware

Ransomware Manufacturing Access Security

Boeing confirmed its services division suffered a cyberattack

Security Affairs

NOVEMBER 2, 2023

The Boeing Company, commonly known as Boeing, is one of the world’s largest aerospace manufacturers and defense contractors. In 2022, Boeing recorded $66.61 billion in sales, the aerospace giant has 156,000 (2022). Last week, the Lockbit ransomware group added Boeing to the list of victims on its Tor leak site.

IT

IT Ransomware Manufacturing Military

US offers $10 million reward for info on Hive ransomware group leaders

Security Affairs

FEBRUARY 8, 2024

Starting from the end of July 2022, the FBI infiltrated Hive’s computer networks. The threat actors behind the Hive RaaS have extorted $100 million in ransom payments from over 1,300 companies worldwide as of November 2022, reported the U.S. cybersecurity and intelligence authorities in January.

Ransomware

Ransomware Blockchain Manufacturing Analytics

Three Ways to Protect Unfixable Security Risks

eSecurity Planet

FEBRUARY 23, 2022

How can an industrial recycler safely secure its $400,000 hard drive recertification rack with control software that only runs on Windows XP? The devices themselves can’t be secured, but that doesn’t mean we can’t use basic IT techniques to reduce our security risks. Also read: Top IoT Security Solutions for 2022.

Risk

Risk Security IoT Communications

Merck settles with insurers regarding a $1.4 billion claim over NotPetya damages

Security Affairs

JANUARY 6, 2024

It is one of the largest pharmaceutical companies globally, engaged in the research, development, manufacturing, and marketing of a wide range of healthcare products. In January 2022, Judge Thomas J. Merck & Co., Merck filed a $1.4 billion insurance claim for the losses caused by the NotPetya attack that took place in 2017.

Insurance

Insurance Healthcare Manufacturing Ransomware

Ransomware attacks break records in 2023: the number of victims rose by 128%

Security Affairs

JANUARY 19, 2024

According to the Ransomlooker tool, the number of ransomware attack victims increased by 128.17% compared to the previous year (2022), with 1837 additional incidents. This group primarily focused its attacks on the construction, manufacturing/industrial, and retail industries.

Ransomware

Ransomware Manufacturing Retail Insurance

Two critical flaws affect CODESYS ICS Automation Software

Security Affairs

JUNE 27, 2022

CODESYS addressed 11 security flaws in the ICS Automation Software that could lead to information disclosure and trigger a denial-of-service (DoS) condition. CODESYS has released security patches to fix eleven 11 vulnerabilities in its ICS Automation Software.

Manufacturing

Manufacturing Risk Security Authentication

Law enforcement operation seized Ragnar Locker group’s infrastructure

Security Affairs

OCTOBER 19, 2023

In March 2022, the US Federal Bureau of Investigation (FBI) and CISA published a flash alert to warn that the Ragnar Locker ransomware gang breached the networks of at least 52 organizations across 10 critical infrastructure sectors. “As

Ransomware

Ransomware Financial Services Manufacturing Government

Million of vehicles can be attacked via MiCODUS MV720 GPS Trackers

Security Affairs

JULY 20, 2022

Cybersecurity and Infrastructure Security Agency (CISA) published an advisory to warn of multiple security vulnerabilities in MiCODUS MV720 Global Positioning System (GPS) trackers which are used by over 1.5 Multiple flaws in MiCODUS MV720 Global Positioning System (GPS) trackers shipped with over 1.5 million vehicles.

Passwords

Passwords Manufacturing Military Authentication

FBI chief says China is preparing to attack US critical infrastructure

Security Affairs

APRIL 19, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. The botnet is comprised of two complementary activity clusters, the experts believe it has been active since at least February 2022.

Energy and Utilities

Energy and Utilities Communications Military Manufacturing

Anonymous and the IT ARMY of Ukraine continue to target Russian entities

Security Affairs

APRIL 8, 2022

The list of recently compromised businesses includes: Forest – The hacktivists leaked 37,500 emails stolen from the company which is a Russian logging and wood manufacturing firm. OpRussia pic.twitter.com/u3mjcAWaLE — Anonymous TV (@YourAnonTV) April 7, 2022. You won't be able to stop us. "Now Pierluigi Paganini.

IT

IT Manufacturing Access Cybersecurity

SYS01 stealer targets critical government infrastructure

Security Affairs

MARCH 7, 2023

Researchers discovered a new info stealer dubbed SYS01 stealer targeting critical government infrastructure and manufacturing firms. ” The experts reported that the campaign was first uncovered in May 2022 that Zscaler researchers linked to the Ducktail operation by Zscaler. ” reads the analysis published by Morphisec.

Government

Government Manufacturing Authentication Cybersecurity

NHTSA Publishes Final Cybersecurity Best Practices

Hunton Privacy

SEPTEMBER 26, 2022

On September 9, 2022, the National Highway Traffic Safety Administration (NHTSA) announced its publication of final Cybersecurity Best Practices for the Safety of Modern Vehicles (the “2022 Best Practices”). The 2022 Best Practices also is an update to NHTSA’s first cybersecurity best practices document, which was issued in 2016. .

Cybersecurity

Cybersecurity Manufacturing Risk Information Security

Nexx bugs allow to open garage doors, and take control of alarms and plugs

Security Affairs

APRIL 5, 2023

A series of vulnerabilities in multiple smart devices manufactured by Nexx can be exploited to remotely open garage doors, and take control of alarms and plugs. “I have independently verified Nexx has purposefully ignored all our attempts to assist with remediation and has let these critical flaws continue to affect their customers.”

Manufacturing

Manufacturing Cybersecurity Education Authentication

A bug in ABB Totalflow flow computers exposed oil and gas companies to attack

Security Affairs

NOVEMBER 10, 2022

Researchers from industrial security firm Claroty disclosed details of a vulnerability affecting ABB Totalflow flow computers and remote controllers. Flow computers are used to calculate volume and flow rates for oil and gas that are critical to electric power manufacturing and distribution. Pierluigi Paganini.

Authentication

Authentication Passwords Manufacturing Ransomware

German arms manufacturer Rheinmetall suffered Black Basta ransomware attack

New Export Controls on Advanced Computing and Semiconductor Manufacturing: Five Key Takeaways

Webinars

Trending Sources

2022 Cyber Security Review of the Year

Webinars

US agricultural machinery manufacturer AGCO suffered a ransomware attack

Webinar: The Supply Chain Security Gap: Impacts on Connected and Embedded Device Manufacturers via Embedded Computing Design on February 9th, 2022 at 2pm Eastern

BlackByte ransomware group hit Asahi Group Holdings, a precision metal manufacturing and metal solution provider

MY TAKE: New tech standards, like ‘Matter’ and ‘BIMI,’ point the way to secure interoperability

A cyber attack forced the wind turbine manufacturer Nordex Group to shut down some of IT systems

Manufacturing needs to adopt a Zero Trust approach to mitigate increased cyber threats

House Energy and Commerce Leaders Demand Information from Various Toy Manufacturers

Black Basta Ransomware gang accumulated at least $107 million in Bitcoin ransom payments since early 2022

Cuba Ransomware received over $60M in Ransom payments as of August 2022

Lenovo warns of flaws that can be used to bypass security features

Q&A: Here’s how the ‘Matter’ protocol will soon reduce vulnerabilities in smart home devices

Lockbit ransomware gang claims to have stolen data from Boeing

Critical Infrastructure Security and a Case for Optimism in 2022

STEPS FORWARD: Regulators are on the move to set much needed IoT security rules of the road

Basic Security Requirements for Smartphone Pre-installed Apps in China

Security AI and automation are key in protecting against costly data breaches for retailers and consumer goods businesses

Security Affairs newsletter Round 404 by Pierluigi Paganini

List of data breaches and cyber attacks in February 2022 – 5.1 million records breached

Lacroix Group shut down three facilities after a ‘targeted cyberattack’

News Alert: Utimaco finds regional disparities in consumers’ level of trust in digital security

Security Affairs newsletter Round 365 by Pierluigi Paganini

Security Affairs newsletter Round 392

MSI confirms security breach after Money Message ransomware attack

Security Affairs newsletter Round 357 by Pierluigi Paganini

Chipmaker Qualcomm warns of three actively exploited zero-days

Qualcomm Snapdragon flaws impact Lenovo, Microsoft, Lenovo, and Samsung devices

BianLian group exploits JetBrains TeamCity bugs in ransomware attacks

Boeing confirmed its services division suffered a cyberattack

US offers $10 million reward for info on Hive ransomware group leaders

Three Ways to Protect Unfixable Security Risks

Merck settles with insurers regarding a $1.4 billion claim over NotPetya damages

Ransomware attacks break records in 2023: the number of victims rose by 128%

Two critical flaws affect CODESYS ICS Automation Software

Law enforcement operation seized Ragnar Locker group’s infrastructure

Million of vehicles can be attacked via MiCODUS MV720 GPS Trackers

FBI chief says China is preparing to attack US critical infrastructure

Anonymous and the IT ARMY of Ukraine continue to target Russian entities

SYS01 stealer targets critical government infrastructure

NHTSA Publishes Final Cybersecurity Best Practices

Nexx bugs allow to open garage doors, and take control of alarms and plugs

A bug in ABB Totalflow flow computers exposed oil and gas companies to attack

Stay Connected