Information Security, Manufacturing and Phishing

FIN7 targeted a large U.S. carmaker phishing attacks

Security Affairs

APRIL 18, 2024

carmaker with spear-phishing attacks. In late 2023, BlackBerry researchers spotted the threat actor FIN7 targeting a large US automotive manufacturer with a spear-phishing campaign. BlackBerry reported that the financially motivated group FIN7 targeted the IT department of a large U.S.

Phishing

Phishing Manufacturing Libraries IT

Phishing campaign targeted US executives exploiting a flaw in Indeed job search platform

Security Affairs

OCTOBER 4, 2023

Threat actors exploited an open redirection vulnerability in the job search platform Indeed to carry out phishing attacks. Researchers from the cybersecurity firm Menlo Security reported that threat actors exploited an open redirection vulnerability in the job search platform Indeed in phishing attacks.

Phishing

Phishing Insurance Manufacturing Authentication

A massive phishing campaign using QR codes targets the energy sector

Security Affairs

AUGUST 16, 2023

A phishing campaign employing QR codes targeted a leading energy company in the US, cybersecurity firm Cofense reported. “Beginning in May 2023, Cofense has observed a large phishing campaign utilizing QR codes targeting the Microsoft credentials of users from a wide array of industries.” com (Cloudflare’s Web3 services).

Phishing

Phishing Energy and Utilities Insurance Manufacturing

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

Passwords stolen via phishing campaign available through Google search

Security Affairs

JANUARY 21, 2021

Bad ops of operators of a phishing campaign exposed credentials stolen in attacks and made them publicly available through Google queries. . Check Point Research along with experts from cybersecurity firm Otorio shared details on their investigation into a large-scale phishing campaign that targeted thousands of global organizations.

Phishing

Phishing Passwords Manufacturing Cybersecurity

Don’t trust links with known domains: BMW affected by redirect vulnerability

Security Affairs

JANUARY 3, 2024

They were used to access the internal workplace systems for BMW dealers and could have been useful to attackers for spear-phishing campaigns or malware distribution. SAP redirect vulnerability is a security issue that affects web application servers for SAP products (SAP NetWeaver Application Server Java).

Phishing

Phishing Manufacturing Access Information Security

As of May 2024, Black Basta ransomware affiliates hacked over 500 organizations worldwide

Security Affairs

MAY 12, 2024

Most of the victims are in the manufacturing, engineering and construction, and retail sectors. Recommendations provided in the report include installing updates promptly, using phishing-resistant multi-factor authentication (MFA), securing remote access software, making backups, and applying mitigations from the #StopRansomware Guide.

Ransomware

Ransomware Blockchain Retail Insurance

Experts devised advanced SMS phishing attacks against modern Android-based phones

Security Affairs

SEPTEMBER 4, 2019

Experts warn of advanced phishing attacks in certain modern Android-based phones that can trick users into accepting new malicious phone settings. The issue affects several modern Android-based phones, including devices manufactured by Samsung, Huawei, LG and Sony. The attacker can send out targeted phishing CP messages (i.e.

Phishing

Phishing Authentication Manufacturing Compliance

Volvo retailer leaks sensitive files

Security Affairs

APRIL 15, 2023

The Brazilian retail arm of car manufacturing giant Volvo leaked sensitive files, putting its clientele in the vast South American country in peril. Risk of breached comms Another piece of sensitive information observed was email credentials for the “hola” email address, most likely used for welcome emails. How to protect your data?

Retail

Retail Manufacturing Communications Passwords

StrelaStealer targeted over 100 organizations across the EU and US

Security Affairs

MARCH 25, 2024

The campaign targeted organizations in many sectors, including the high-tech, finance, legal services and manufacturing industries. The infection chain was continuously updated, current StrelaStealer version is distributed via spear phishing emails containing a ZIP file attachment.

Encryption

Encryption Manufacturing Archiving Phishing

Toyota Italy accidentally leaked sensitive data

Security Affairs

MARCH 28, 2023

A Japanese multinational accidentally leaked access to its marketing tools, enabling attackers to launch phishing campaigns against its vast pool of customers in Italy. Threat actors could abuse this information to gain access to Toyota clients’ phone numbers and email addresses and abuse them to launch phishing attacks.

Manufacturing

Manufacturing Marketing Phishing Cloud

Microsoft seized 41 domains used by Iran-linked Bohrium APT

Security Affairs

JUNE 6, 2022

Microsoft’s Digital Crimes Unit (DCU) announced the seizure of domains used by Iran-linked APT Bohrium in spear-phishing campaigns. Microsoft’s Digital Crimes Unit (DCU) announced to have taken legal action to disrupt a spear-phishing operation linked to Iran-linked APT Bohrium. Middle East, and India.

Phishing

Phishing Manufacturing Education Cybersecurity

China-linked APT Curious Gorge targeted Russian govt agencies

Security Affairs

MAY 3, 2022

“ Curious Gorge, a group TAG attributes to China’s PLA SSF, has remained active against government, military, logistics and manufacturing organizations in Ukraine, Russia and Central Asia. ” wrote Google TAG Security Engineer Billy Leonard. ” wrote Google TAG Security Engineer Billy Leonard.

Manufacturing

Manufacturing Phishing Passwords Military

D-Link confirms data breach, but downplayed the impact

Security Affairs

OCTOBER 18, 2023

Taiwanese manufacturer D-Link confirmed a data breach after a threat actor offered for sale on BreachForums stolen data. The company became aware of the a claim of data breach on October 2, 2023 and immediately launched an investigation into the alleged incident with the help of the security firm Trend Micro. .

Data breaches

Data breaches Sales Phishing Manufacturing

Shoemaker Ecco leaks over 60GB of sensitive data for 500+ days

Security Affairs

DECEMBER 21, 2022

CyberNews researchers reported that Ecco, a global shoe manufacturer and retailer, exposed millions of documents. Ecco, a global shoe manufacturer and retailer, exposed millions of documents. Over 35GB of data was added to the exposed database after the server misconfiguration opened a security hole in Ecco’s infrastructure.

Retail

Retail Manufacturing Sales Phishing

GUEST ESSAY: In pursuit of smarter cybersecurity — to overcome complex risks and grow revenue

The Last Watchdog

JANUARY 8, 2023

Smarter security is the rising tide that lifts all ships. As all parts of an organization overlap with security, an increase in one allows benefits in others. Smart security also means doing more with less so the company as a whole can run lean. This leads to revenue gains and positive customer outcomes.

Risk

Risk Cybersecurity Manufacturing Security

Defense contractor Belcan leaks admin password with a list of flaws

Security Affairs

AUGUST 22, 2023

Belcan is a government, defense, and aerospace contractor offering global design, software, manufacturing, supply chain, information technology, and digital engineering solutions. Bcrypt is a safe hashing algorithm that adds a layer of security guarding against attackers.

Passwords

Passwords Military Manufacturing Analytics

COVID-19 Has United Cybersecurity Experts, But Will That Unity Survive the Pandemic?

Krebs on Security

APRIL 15, 2020

The Coronavirus has prompted thousands of information security professionals to volunteer their skills in upstart collaborative efforts aimed at frustrating cybercriminals who are seeking to exploit the crisis for financial gain. “I’ve never seen this volume of phishing,” Rogers told Reuters. “I

Cybersecurity

Cybersecurity Phishing Government Ransomware

Xenomorph malware is back after months of hiatus and expands the list of targets

Security Affairs

SEPTEMBER 26, 2023

In August 2023 ThreatFabric discovered new samples distributed via phishing webpages designed to trick recipients into installing malicious APKs. “ThreatFabric was able to identify active campaigns distributing the malware via phishing pages. The list of targets is larger than previous versions.

Phishing

Phishing File names Manufacturing IT

APT29 is targeting Ministries of Foreign Affairs of NATO-aligned countries

Security Affairs

AUGUST 17, 2023

Russia-linked APT29 used the Zulip Chat App in attacks aimed at ministries of foreign affairs of NATO-aligned countries EclecticIQ researchers uncovered an ongoing spear-phishing campaign conducted by Russia-linked threat actors targeting Ministries of Foreign Affairs of NATO-aligned countries. ” concludes the report.

Phishing

Phishing Manufacturing Government Authentication

FBI and CISA warn of attacks by Rhysida ransomware gang

Security Affairs

NOVEMBER 15, 2023

The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors. According to the advisory, the threat actors have been observed exploiting Zerologon ( CVE-2020-1472 ) in Microsoft’s Netlogon Remote Protocol in phishing attempts.

Ransomware

Ransomware Manufacturing Education Passwords

Nice Suzuki, sport: shame dealer left your data up for grabs

Security Affairs

JULY 21, 2023

Rarely do car manufacturers sell their cars directly. Databases and credentials exposed Suzuki Motor Corporation is the tenth largest car manufacturer worldwide, with a net worth of $17.6 That makes customer information gathered from automakers and dealers very valuable on hacker forums. So, what does it all mean?

Manufacturing

Manufacturing Phishing Access Insurance

BMW exposes data of clients in Italy, experts warn

Security Affairs

MARCH 9, 2023

Original post at: [link] Hackers have been enjoying their fair share of the spotlight by breaching car manufacturers’ defenses. Cybernews researchers discovered that BMW exposed sensitive files that were generated by a framework that BMW Italy relies on. million vehicles a year, potentially exposed its business secrets and client data.

Manufacturing

Manufacturing Access Phishing Passwords

Hackers target German Task Force for COVID-19 PPE procurement

Security Affairs

JUNE 9, 2020

Researchers from the IBM X-Force Incident Response and Intelligence Services (IRIS) reported that attackers launched a COVID-19-themed spear-phishing campaign to steal the user credentials of over 100 senior executives. The phishing messages originating from a Russia-based IP address 178[.]159[.]36[.]183, Pierluigi Paganini.

Phishing

Phishing Healthcare Manufacturing Government

LokiBot info stealer involved in a targeted attack on a US Company

Security Affairs

SEPTEMBER 11, 2019

Security researchers at Fortinet uncovered a malspam campaign aimed distributing the LokiBot malware at a US manufacturing company. FortiGuard SE Team experts uncovered a malspam campaign aimed distributing the LokiBot malware at a US manufacturing company. manufacturing company. ” read the analysis of the experts.

Manufacturing

Manufacturing Phishing Passwords Sales

Californian IT company DNA Micro leaks private mobile phone data

Security Affairs

OCTOBER 18, 2023

Other companies affected by the leak included screen protectors and phone case manufacturers, such as Liquipel and Otterbox, which used the warranty service. ” This is particularly concerning since sensitive information such as home addresses was also exposed.

IT

IT Phishing Manufacturing Access

FBI and Australia ACSC agencies warn of ongoing Avaddon ransomware attacks

Security Affairs

MAY 11, 2021

The Federal Bureau of Investigation (FBI) and the Australian Cyber Security Centre (ACSC) are warning of an ongoing Avaddon ransomware campaign targeting organizations worldwide in multiple industries, including government, finance, energy, manufacturing, and healthcare.

Ransomware

Ransomware Manufacturing Phishing Encryption

Researchers found alleged sensitive documents of NATO and Turkey

Security Affairs

OCTOBER 12, 2020

Researchers from the US-based firm Cyble recently came across a post shared by an unknown threat actor that goes online with the moniker Spectre123, where he has allegedly leaked the sensitive documents of NATO and Havelsan (Turkish Military/defence manufacturer). Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Military

Military Manufacturing Phishing Government

Grandoreiro banking malware targets Mexico and Spain

Security Affairs

AUGUST 21, 2022

The campaign began in June 2022 and is still ongoing, the attacks hit organizations in multiple industries, such as Automotive, Chemicals Manufacturing, and others. ” reads the post published by Zscaler. ” reads the post published by Zscaler.

Archiving

Archiving Phishing Communications Manufacturing

THE 11TH EDITION OF THE ENISA THREAT LANDSCAPE REPORT IS OUT!

Security Affairs

OCTOBER 19, 2023

ETL 2023 identified public administration as the most targeted sector (~19%), followed by targeted individuals (~11%), health (~8%), digital infrastructure (~7%) and manufacturing, finance and transport. Information manipulation has been as a key element of Russia’s war of aggression against Ukraine has become prominent.

Artificial Intelligence

Artificial Intelligence Ransomware Cybersecurity Manufacturing

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Security Affairs

FEBRUARY 28, 2024

“These operations have targeted various industries, including Aerospace & Defense, Education, Energy & Utilities, Governments, Hospitality, Manufacturing, Oil & Gas, Retail, Technology, and Transportation. .” ” reads the joint report. ” reads the joint report.

Energy and Utilities

Energy and Utilities Military Government Phishing

Balikbayan Foxes group spoofs Philippine gov to spread RATs

Security Affairs

NOVEMBER 1, 2021

Both Remcos and NanoCore are used for information gathering, data exfiltration, surveillance, and control of the victims’ computers. . The group focuses on Shipping/Logistics, Manufacturing, Business Services, Pharmaceutical, and Energy entities, among others. ” reads the analysis published by the experts.

Healthcare

Healthcare Phishing Manufacturing Government

Multinational ICICI Bank leaks passports and credit card numbers

Security Affairs

APRIL 20, 2023

Last year, with a total share of 18% of all cyberattacks, it was the second most targeted industry, following manufacturing. Employees, businesses, and individuals whose data were exposed could be at risk of spear phishing campaigns,” added researchers.

Personal data

Personal data Phishing Risk Financial Services

Security Affairs newsletter Round 433 by Pierluigi Paganini – International edition

Security Affairs

AUGUST 20, 2023

Over 3,000 Android Malware spotted using unsupported/unknown compression methods to avoid detection WinRAR flaw enables remote code execution of arbitrary code #OpFukushima: Anonymous group protests against the plan to dump Fukushima RADIOACTIVE wastewater into Pacific Massive phishing campaign targets users of the Zimbra Collaboration email server (..)

Security

Security Phishing Ransomware Manufacturing

Hackers are targeting COVID-19 vaccine cold chain

Security Affairs

DECEMBER 3, 2020

The experts uncovered a large scale spear-phishing campaign that has been ongoing since September 2020. Threat actors are impersonating a biomedical company, Haier Biomedical, and are sending out spear-phishing messages to executives and global organizations involved in vaccine storage and transport.

Phishing

Phishing Manufacturing Sales Marketing

Security Affairs newsletter Round 404 by Pierluigi Paganini

Security Affairs

JANUARY 29, 2023

Copycat Criminals mimicking Lockbit gang in northern Europe Sandworm APT targets Ukraine with new SwiftSlicer wiper ISC fixed high-severity flaws in DNS software suite BIND Patch management is crucial to protect Exchange servers, Microsoft warns Hacker accused of having stolen personal data of all Austrians and more CVE-2023-23560 flaw exposes 100 (..)

Security

Security Data breaches Military Ransomware

Avoslocker ransomware gang targets US critical infrastructure

Security Affairs

MARCH 19, 2022

. “AvosLocker is a Ransomware as a Service (RaaS) affiliate-based group that has targeted victims across multiple critical infrastructure sectors in the United States including, but not limited to, the Financial Services, Critical Manufacturing, and Government Facilities sectors. Focus on cyber security awareness and training.

Ransomware

Ransomware Passwords Encryption Financial Services

FBI warns of ransomware attacks targeting the food and agriculture sector

Security Affairs

SEPTEMBER 3, 2021

Small farms, large producers, processors and manufacturers, and markets and restaurants are particularly exposed to ransomware attacks. Focus on cyber security awareness and training. ransomware and phishing scams). Disable hyperlinks in received emails. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Agriculture

Agriculture Ransomware Passwords Security awareness

A million at risk from user data leak at Korean beauty platform PowderRoom

Security Affairs

MARCH 23, 2023

Backed by beauty-product manufacturers, PowderRoom has hundreds of thousands of followers on social media, and its Android app has been downloaded more than 100,000 times on Google Play. Established in 2003, PowderRoom is a South Korean beauty content platform connecting 3.5

Risk

Risk Metadata Manufacturing Personal data

Microsoft seized 42 domains used by the China-linked APT15 cyberespionage group

Security Affairs

DECEMBER 7, 2021

APT15 has been active since at least 2010, it conducted cyber espionage campaigns against targets worldwide in several industries, including defense, high tech, energy, government, aerospace, and manufacturing. “The Microsoft Digital Crimes Unit (DCU) has disrupted the activities of a China-based hacking group that we call Nickel.

Manufacturing

Manufacturing Phishing Government Security

Cuba Ransomware received over $60M in Ransom payments as of August 2022

Security Affairs

DECEMBER 2, 2022

entities Financial Services, Government Facilities, Healthcare and Public Health, Critical Manufacturing, and Information Technology. .” Since December 2021 Cuba operators are continuing to target U.S.

Ransomware

Ransomware Financial Services Manufacturing Phishing

Ranzy Locker ransomware hit tens of US companies in 2021

Security Affairs

OCTOBER 26, 2021

The victims include the construction subsector of the critical manufacturing sector, the academia subsector of the government facilities sector, the information technology sector, and the transportation sector.” ” reads the flash alert.

Ransomware

Ransomware Manufacturing Access Phishing

North Korea compromised Russian missile engineering firm NPO Mashinostroyeniya

Security Affairs

AUGUST 7, 2023

NPO Mashinostroyeniya (JSC MIC Mashinostroyenia, NPO Mash) is a leading Russian manufacturer of missiles and military spacecraft. The initial attack vector is still unknown, but researchers speculate the victim was targeted with spear-phishing messages aimed at delivering the RokRAT backdoor. The Russian firm was sanctioned by the U.S.

Military

Military Communications Manufacturing Phishing

Kraken fileless attack technique abuses Microsoft Windows Error Reporting (WER)

Security Affairs

OCTOBER 7, 2020

The threat actor that employed the Kraken technique, likely an APT group, launched a phishing attack that used messages with a.ZIP file attachment. The.ZIP archive, titled, “Compensation manual.doc,” claims to contain information relating to worker compensation rights.

Phishing

Phishing Manufacturing Archiving Government

IoT Cybersecurity: 5 Major Vulnerabilities and How to Tackle Them

Security Affairs

OCTOBER 13, 2020

Malware, phishing, and web. Phishing is also one of the prominent threats relating to scams and fraudulent offers that arrive in users’ inboxes. The Flaws in Manufacturing Process. Manufacturers saw this as an opportunity and rushed in to grab their own piece of the IoT market.

IoT

IoT Cybersecurity Manufacturing Passwords

FIN7 targeted a large U.S. carmaker phishing attacks

Phishing campaign targeted US executives exploiting a flaw in Indeed job search platform

Webinars

Trending Sources

A massive phishing campaign using QR codes targets the energy sector

Webinars

Passwords stolen via phishing campaign available through Google search

Don’t trust links with known domains: BMW affected by redirect vulnerability

As of May 2024, Black Basta ransomware affiliates hacked over 500 organizations worldwide

Experts devised advanced SMS phishing attacks against modern Android-based phones

Volvo retailer leaks sensitive files

StrelaStealer targeted over 100 organizations across the EU and US

Toyota Italy accidentally leaked sensitive data

Microsoft seized 41 domains used by Iran-linked Bohrium APT

China-linked APT Curious Gorge targeted Russian govt agencies

D-Link confirms data breach, but downplayed the impact

Shoemaker Ecco leaks over 60GB of sensitive data for 500+ days

GUEST ESSAY: In pursuit of smarter cybersecurity — to overcome complex risks and grow revenue

Defense contractor Belcan leaks admin password with a list of flaws

COVID-19 Has United Cybersecurity Experts, But Will That Unity Survive the Pandemic?

Xenomorph malware is back after months of hiatus and expands the list of targets

APT29 is targeting Ministries of Foreign Affairs of NATO-aligned countries

FBI and CISA warn of attacks by Rhysida ransomware gang

Nice Suzuki, sport: shame dealer left your data up for grabs

BMW exposes data of clients in Italy, experts warn

Hackers target German Task Force for COVID-19 PPE procurement

LokiBot info stealer involved in a targeted attack on a US Company

Californian IT company DNA Micro leaks private mobile phone data

FBI and Australia ACSC agencies warn of ongoing Avaddon ransomware attacks

Researchers found alleged sensitive documents of NATO and Turkey

Grandoreiro banking malware targets Mexico and Spain

THE 11TH EDITION OF THE ENISA THREAT LANDSCAPE REPORT IS OUT!

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Balikbayan Foxes group spoofs Philippine gov to spread RATs

Multinational ICICI Bank leaks passports and credit card numbers

Security Affairs newsletter Round 433 by Pierluigi Paganini – International edition

Hackers are targeting COVID-19 vaccine cold chain

Security Affairs newsletter Round 404 by Pierluigi Paganini

Avoslocker ransomware gang targets US critical infrastructure

FBI warns of ransomware attacks targeting the food and agriculture sector

A million at risk from user data leak at Korean beauty platform PowderRoom

Microsoft seized 42 domains used by the China-linked APT15 cyberespionage group

Cuba Ransomware received over $60M in Ransom payments as of August 2022

Ranzy Locker ransomware hit tens of US companies in 2021

North Korea compromised Russian missile engineering firm NPO Mashinostroyeniya

Kraken fileless attack technique abuses Microsoft Windows Error Reporting (WER)

IoT Cybersecurity: 5 Major Vulnerabilities and How to Tackle Them

Stay Connected