2022, Information Security, IT and Manufacturing

Operation Cronos: law enforcement disrupted the LockBit operation

Security Affairs

FEBRUARY 19, 2024

A joint law enforcement action, code-named Operation Cronos, conducted by law enforcement agencies from 11 countries has disrupted the LockBit ransomware operation. In 2022, LockBit was one of the most active ransomware groups, and its prevalence continued into 2023. “The site is now under the control of law enforcement. .

Energy and Utilities

Energy and Utilities Ransomware Agriculture Financial Services

City of Dallas shut down IT services after ransomware attack

Security Affairs

MAY 4, 2023

The City confirmed the security incident and is working to recover from the ransomware attack that impacted its services, including the police department. The human-operated Royal ransomware first appeared on the threat landscape in September 2022, it has demanded ransoms up to millions of dollars.

Ransomware

Ransomware IT Encryption Education

LockBit ransomware attack impacted production in a Mexican Foxconn plant

Security Affairs

JUNE 2, 2022

LockBit ransomware gang claimed responsibility for an attack against the electronics manufacturing giant Foxconn that impacted production in Mexico. The electronics manufacturing giant Foxconn confirmed that its production plant in Tijuana (Mexico) has been impacted by a ransomware attack in late May.

Ransomware

Ransomware Manufacturing Cybersecurity Security

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

Two critical flaws affect CODESYS ICS Automation Software

Security Affairs

JUNE 27, 2022

CODESYS addressed 11 security flaws in the ICS Automation Software that could lead to information disclosure and trigger a denial-of-service (DoS) condition. CODESYS has released security patches to fix eleven 11 vulnerabilities in its ICS Automation Software. Follow me on Twitter: @securityaffairs and Facebook.

Manufacturing

Manufacturing Risk Security Authentication

THE 11TH EDITION OF THE ENISA THREAT LANDSCAPE REPORT IS OUT!

Security Affairs

OCTOBER 19, 2023

This is the 11th edition of the annual report and analyzes events that took place between July 2022 and July 2023. In the latter part of 2022 and the first half of 2023, the cybersecurity landscape witnessed a significant increase in both the variety and quantity of cyberattacks and their consequences.

Artificial Intelligence

Artificial Intelligence Ransomware Cybersecurity Manufacturing

Security Affairs newsletter Round 404 by Pierluigi Paganini

Security Affairs

JANUARY 29, 2023

Copycat Criminals mimicking Lockbit gang in northern Europe Sandworm APT targets Ukraine with new SwiftSlicer wiper ISC fixed high-severity flaws in DNS software suite BIND Patch management is crucial to protect Exchange servers, Microsoft warns Hacker accused of having stolen personal data of all Austrians and more CVE-2023-23560 flaw exposes 100 (..)

Security

Security Data breaches Military Ransomware

Wind Turbine giant Deutsche Windtechnik hit by a professional Cyberattack

Security Affairs

APRIL 27, 2022

The attack took place during the night between April 11 and 12, the company switched off remote data monitoring connections to the wind turbines for security reasons. . We were able to assess all IT systems in a secure environment and to identify and isolate the problems.”

Manufacturing

Manufacturing Ransomware Cybersecurity Security

More details about Operation Cronos that disrupted Lockbit operation

Security Affairs

FEBRUARY 20, 2024

Yesterday, a joint law enforcement action, code-named Operation Cronos , conducted by law enforcement agencies from 11 countries disrupted the LockBit ransomware operation. The NCA and its global partners have secured over 1,000 decryption keys that will allow victims of the gang to recover their files for free.

Energy and Utilities

Energy and Utilities Ransomware Manufacturing Agriculture

Witchetty APT used steganography in attacks against Middle East entities

Security Affairs

OCTOBER 1, 2022

The cyber espionage group Witchetty (aka LookingFrog) was first spotted by cybersecurity firm ESET in April 2022, the experts argue it is a sub-group of the China-linked TA410 group (aka APT10, Cicada, Stone Panda, and TA429)). ” reads the analysis published by Broadcom’s Symantec Threat Hunter researchers.

Manufacturing

Manufacturing Government Cybersecurity IT

The U.S. CISA and FBI warn of Royal ransomware operation

Security Affairs

MARCH 3, 2023

Cybersecurity and Infrastructure Security Agency (CISA) is warning of the capabilities of the recently emerged Royal ransomware. The human-operated Royal ransomware first appeared on the threat landscape in September 2022, it has demanded ransoms up to millions of dollars. ” reads the alert. ” continues the alert.

Ransomware

Ransomware Encryption Cybersecurity Communications

US GOV OFFERS A REWARD OF UP TO $15M FOR INFO ON LOCKBIT GANG MEMBERS AND AFFILIATES

Security Affairs

FEBRUARY 21, 2024

The Department of State has set up a Tor website that can be used to anonymously provide information on LockBit’s operation. Yesterday, a joint law enforcement action, code-named Operation Cronos , conducted by law enforcement agencies from 11 countries disrupted the LockBit ransomware operation.

Energy and Utilities

Energy and Utilities Ransomware Agriculture Manufacturing

Hyundai suffered a data breach that impacted customers in France and Italy

Security Affairs

APRIL 12, 2023

Data breach at @Hyundai_Italia : pic.twitter.com/oMMcFiG2Ud — Troy Hunt (@troyhunt) April 11, 2023 In response to the incident, the company has taken the impacted systems offline. In April 2017, security vulnerabilities in the Hyundai Blue Link mobile apps could have allowed hackers to locate, unlock and start vehicles of the carmaker.

Data breaches

Data breaches Manufacturing Cybersecurity Education

Hackers can hack organizations using data found on their discarded enterprise network equipment

Security Affairs

APRIL 24, 2023

This allowed ESET researchers to identify devices previously used in a data center/ cloud computing business (specifically, a router provisioning a university’s virtualized assets), a nationwide US law firm, manufacturing and tech companies, a creative firm, and a major Silicon Valleybased software developer, among others.”

Authentication

Authentication Marketing Cloud Manufacturing

China-linked APT40 used ScanBox Framework in a long-running espionage campaign

Security Affairs

AUGUST 31, 2022

The campaign has been active from April 2022 through June, the threat actor was observed delivering the ScanBox exploitation framework to target visitors of a rogue Australian news website. It appears that p=23 specifies the page value for landing page the user is redirected to, while the number string that follows it, e.g. the “11” in “?p=23-11”,

Energy and Utilities

Energy and Utilities Manufacturing Phishing Government

DJI drone tracking data exposed in the US

Security Affairs

OCTOBER 14, 2022

Over 80,000 drone IDs were exposed in the leak of a database containing information from airspace monitoring devices manufactured by DJI. Enhanced security institutions use devices to monitor drone movement, posing a privacy risk to its owner. pic.twitter.com/4HJcTXFxoY — Mykhailo Fedorov (@FedorovMykhailo) March 16, 2022.

Military

Military Manufacturing Marketing Risk

Information Management Today

Operation Cronos: law enforcement disrupted the LockBit operation

City of Dallas shut down IT services after ransomware attack

Webinars

Trending Sources

LockBit ransomware attack impacted production in a Mexican Foxconn plant

Webinars

Two critical flaws affect CODESYS ICS Automation Software

THE 11TH EDITION OF THE ENISA THREAT LANDSCAPE REPORT IS OUT!

Security Affairs newsletter Round 404 by Pierluigi Paganini

Wind Turbine giant Deutsche Windtechnik hit by a professional Cyberattack

More details about Operation Cronos that disrupted Lockbit operation

Witchetty APT used steganography in attacks against Middle East entities

The U.S. CISA and FBI warn of Royal ransomware operation

US GOV OFFERS A REWARD OF UP TO $15M FOR INFO ON LOCKBIT GANG MEMBERS AND AFFILIATES

Hyundai suffered a data breach that impacted customers in France and Italy

Hackers can hack organizations using data found on their discarded enterprise network equipment

China-linked APT40 used ScanBox Framework in a long-running espionage campaign

DJI drone tracking data exposed in the US

Stay Connected