Manufacturing Sees Rising Ransomware Threat

Dark Reading

Crypto-ransomware groups are increasingly adopting malware and tools that can probe and attack operational technology, such as industrial control systems, according to an assessment of current threats

ATM Manufacturer Diebold Nixdorf Hit With Ransomware

Data Breach Today

Company Says April Attack Caused 'Limited IT Systems Outage' Diebold Nixdorf, one of the largest makers of ATMs, says it sustained a ransomware attack on April 25, but it experienced only a "limited IT systems outage" and ATM machines were not affected

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Georgia Wire Manufacturer Struck by Ransomware

Data Breach Today

Southwire Says It's Bringing Systems Back Online A large Atlanta-area manufacturer of wire and cable says it has brought some systems back online after what appears to be a ransomware infection.

REvil Ransomware Hits Jack Daniel's Manufacturer

Dark Reading

Attackers who targeted US spirits manufacturer Brown-Forman reportedly stole a terabyte of confidential data

Compal, the Taiwanese giant laptop manufacturer hit by ransomware

Security Affairs

The Taiwanese electronics manufacture Compal suffered a ransomware attack over the weekend, media blames the DoppelPaymer ransomware gang. It is the second-largest contract laptop manufacturer in the world behind Quanta Computer.

Apple Manufacturer Foxconn Confirms Cyberattack

Threatpost

Manufacturing powerhouse confirmed North American operations impacted by November cyberattack. Breach Hacks Malware apple DopplePaymer Foxconn Foxconn Technology Group ransomware U.S. Cyber Emergency Response Team

Breakdown of a Break-in: A Manufacturer's Ransomware Response

Dark Reading

The analysis of an industrial ransomware attack reveals common tactics and proactive steps that businesses can take to avoid similar incidents

IoT Vendor Sierra Wireless Reports Ransomware Attack

Data Breach Today

Multiple Systems Impacted, Including Manufacturing and Internal IT Operations The Canadian Internet of Things manufacturer Sierra Wireless reported today it had suffered a ransomware attack over the weekend, forcing it to halt production at its manufacturing sites.

IoT 189

Ransomware Reportedly Hits Ventilator Maker

Data Breach Today

Incident Reflects Threats Facing Those Involved in COVID-19 Response A manufacturer of transit communication systems that pivoted to build ventilators during the COVID-19 pandemic is reportedly the latest victim of the DoppelPaymer ransomware gang

Airplane manufacturer Bombardier has disclosed a security breach, data leaked online

Security Affairs

Hackers posted data stolen from manufacturer of business jets Bombardier on Clop ransomware leak site following alleged FTA hack. The attackers exfiltrate sensitive data from the target systems and then published it on the CLOP ransomware gang’s leak site.

One in Five Manufacturing Firms Targeted by Cyberattacks

Dark Reading

Information-stealing malware makes up about a third of attacks, a study finds, but companies worry most about ransomware shutting down production

Tesla, SpaceX Parts Manufacturer Suffers Data Breach

Dark Reading

Visser Precision has confirmed a security incident likely caused by the data-stealing DoppelPaymer ransomware

Pitney Bowes Battles Second Ransomware Attack

Data Breach Today

Europe’s Largest Private Hospital Operator Fresenius Hit by Ransomware

Krebs on Security

Fresenius , Europe’s largest private hospital operator and a major provider of dialysis products and services that are in such high demand thanks to the COVID-19 pandemic, has been hit in a ransomware cyber attack on its technology systems.

How a Manufacturing Firm Recovered from a Devastating Ransomware Attack

Dark Reading

The infamous Ryuk ransomware slammed a small company that makes heavy-duty vehicle alternators for government and emergency fleet. Here's what happened

REvil Ransomware Gang Threatens Stolen Apple Blueprint Leak

Data Breach Today

$50 Million Extortion Demand Issued to Apple and Taiwanese Manufacturer Quanta The REvil - aka Sodinokibi - ransomware gang is threatening to release stolen Apple device blueprints unless it receives a massive payoff.

Maze Ransomware Gang Continues Data-Leaking Spree

Data Breach Today

Latest Named Victims Include Engineering Firm, Furniture Manufacturer, Pet Spa The Maze ransomware gang is continuing to exfiltrate data from victims before crypto-locking their systems, then leaking the data to try to force non-payers to accede to its ransom demands.

Maze Ransomware Gang Strikes Chipmaker MaxLinear

Data Breach Today

Company Reports Some Data Exfiltrated, Refuses to Pay Ransom Semiconductor manufacturer MaxLinear confirmed this week that it was hit by the Maze ransomware gang in April and some "proprietary information" was exfiltrated and personally identifiable information exposed

Ransomware Attack Foils IoT Giant Sierra Wireless

Threatpost

The ransomware attack has impacted the IoT manufacturer's production lines across multiple sites, and other internal operations. Hacks IoT Malware

IoT 107

Ransomware at IT Services Provider Synoptek

Krebs on Security

Synoptek , a California business that provides cloud hosting and IT management services to more than a thousand customer nationwide, suffered a ransomware attack this week that has disrupted operations for many of its clients, according to sources. Ransomware rEvil Sodinokibi Synoptek

Swiss rail vehicle manufacturer Stadler hit by a malware-based attack

Security Affairs

Stadler, a Swiss manufacturer of railway rolling stock disclosed a data breach, hackers attempted to blackmail the company. International rail vehicle manufacturer, Stadler , disclosed a security breach that might have also allowed the attackers to steal company data.

Ransomware Attack Costs Norsk Hydro $40 Million - So Far

Data Breach Today

Norwegian Aluminum Maker Still Fighting LockerGoga Ransomware Attack Norsk Hydro reports that a March 18 ransomware attack has already cost the aluminum manufacturer more than $40 million, and the company continues to bring its systems back online

DoppelPaymer Ransomware Slams Supplier to Boeing and Tesla

Data Breach Today

manufacturer that supplies Boeing, Lockheed Martin, Tesla and SpaceX, appears to have been hit by the DoppelPaymer ransomware gang, which has begun leaking internal data, and threatening to leak more unless the victim pays a ransom

Nefilim ransomware operators leak data stolen from Whirlpool

Security Affairs

The American multinational manufacturer and marketer of home appliances Whirlpool was hit by the Nefilim ransomware gang. The company has over 77,000 employees at 59 manufacturing & technology research centers worldwide and generated $20 billion in revenue for 2019.

FBI and Australia ACSC agencies warn of ongoing Avaddon ransomware attacks

Security Affairs

The FBI and Australian Australian Cyber Security Centre (ACSC) warn of an ongoing Avaddon ransomware campaign targeting organizations worldwide. “The Australian Cyber Security Centre (ACSC) is aware an ongoing ransomware campaign utilising the Avaddon Ransomware malware.

US CISA and FBI publish joint alert on DarkSide ransomware

Security Affairs

FBI and DHS’s CISA have published a joint alert on DarkSide ransomware activity after the disruptive attack on Colonial Pipeline. FBI and DHS’s CISA have published a joint alert to warn of ransomware attacks conducted by the DarkSide group.

Who’s Behind the GandCrab Ransomware?

Krebs on Security

The crooks behind an affiliate program that paid cybercriminals to install the destructive and wildly successful GandCrab ransomware strain announced on May 31, 2019 they were terminating the program after allegedly having earned more than $2 billion in extortion payouts from victims. Like most ransomware strains, the GandCrab ransomware-as-a-service offering held files on infected systems hostage unless and until victims agreed to pay the demanded sum.

Avaddon Ransomware gang hacked France-based Acer Finance and AXA Asia

Security Affairs

Avaddon ransomware gang has breached the France-based financial consultancy firm Acer Finance. Avaddon ransomware gang made the headlines again, the cybercrime gang has breached the France-based financial consultancy firm Acer Finance.

Honda Hit By Possible Ransomware Attack

Adam Levin

Japanese automotive manufacturer Honda is investigating a possible ransomware attack that has caused company-wide network outages. The post Honda Hit By Possible Ransomware Attack appeared first on Adam Levin. Data Security Data breach featured ransomware honda EKANS ics

EVRAZ operations in North America disrupted by Ryuk ransomware

Security Affairs

Computer systems at EVRAZ, a multinational vertically integrated steel making and mining company, have been hit by Ryuk ransomware. According to ZDnet, the systems at the company have been infected with a strain of the Ryuk ransomware.

DoppelPaymer ransomware gang hit Foxconn electronics giant

Security Affairs

Electronics contract manufacturer Foxconn is the last victim of the DoppelPaymer ransomware operators that hit a Mexican facility. DoppelPaymer ransomware operators infected the systems at a Mexican facility of Foxconn electronics giant over the Thanksgiving weekend.

Nefilim ransomware gang published Luxottica data on its leak site

Security Affairs

The Nefilim ransomware operators have posted a long list of files that appear to belong to Italian eyewear and eyecare giant Luxottica. Security experts believe that threat actor exploited the above flaw to infect the systems at the company with ransomware.

Sopra Steria hit by the Ryuk ransomware gang

Security Affairs

French IT outsourcer Sopra Steria hit by ‘cyberattack’, Ryuk ransomware suspected. “Two sources tell us that the ransomware involved is none other than Ryuk. In March, the City of Durham shut down its network after Ryuk Ransomware attack.

FBI published a flash alert on Mamba Ransomware attacks

Security Affairs

The Federal Bureau of Investigation (FBI) issued an alert to warn that the Mamba ransomware is abusing the DiskCryptor open source tool to encrypt entire drives. Mamba ransomware is one of the first malware that encrypted hard drives rather than files that was detected in public attacks.

REvil ransomware gang recommends that Apple buy back its data stolen in Quanta hack

Security Affairs

The REvil ransomware operators are attempting to blackmail Apple after they has allegedly stolen product blueprints of the IT giant from its business partner. Quanta Computer is a Taiwan-based manufacturer of notebook computers and other electronic hardware.

Audio equipment maker Bose Corporation discloses a ransomware attack

Security Affairs

The audio equipment manufacturer Bose Corporation said it was the victim of a ransomware attack that took place earlier this year, on March 7. Bose Corporation has announced it was the victim of a ransomware attack that took place earlier this year, on March 7.

Orange Business Services hit by Nefilim ransomware operators

Security Affairs

Security researchers at Cyble reported that Nefilim ransomware operators allegedly targeted the mobile network operator Orange. Researchers from Cyble came across a post of Nefilim ransomware operators which were claiming to have stolen sensitive data of Orange S.A.,

RansomExx Ransomware Gang Dumps Stolen Embraer Data: Report

Threatpost

The group published files stolen from the Brazilian aircraft manufacturer in a ransomware attack last month. Breach Hacks barnes & noble Brazil Clop conti Dark Web data leak data theft Defray 777 egregor Embraer Kmart leak site malware RansomExx ransomware Translink ZDNET

Connecting the Bots – Hancitor fuels Cuba Ransomware Operations

Security Affairs

The Cuba Ransomware gang has partnered with the crooks behind the Hancitor malware in attacks aimed at corporate networks. Group-IB Threat Intelligence & Attribution team found that Hancitor is being actively used by the threat actors to deploy Cuba ransomware.

Ransomware: A Persistent Scourge Requiring Corporate Action Now

Threatpost

ASCO is the latest headline-making organization to be hit by ransomware, prompting many companies to consider what to do to minimize their risk. Featured Malware asco backups corporate risk decryptors incident cost malware manufacturing Paying ransom prevention ransomware remediation researcher advice