Industrial Security Bulletin (Aug '19)

Industrial Security Bulletin (Aug '19)

09 Sep 2019

A state-sponsored spear-phishing campaign against U.S utilities companies

At the end of July, researchers detected malicious emails being sent to three U.S utilities companies disguised as emails from the National Council of Examiners for Engineering and Surveying. The spear-phishing emails contained a remote access trojan (RAT) dubbed LookBack. The researchers who analyzed the attack believe the campaign is state-sponsored, based on historical campaigns, the unique delivery system, and the malware.
Continue Reading on Threat Post


Employees at a Ukrainian power plant used internal networks to mine cryptocurrency 

Ukrainian Secret Service is investigating the incident and examining if attackers might have used the mining rigs as a pivot point to enter the nuclear power plant's network and retrieve information from its systems. This incident isn't the first time that state employees have abused their access to large sources of electricity or computing power to mine cryptocurrency.
Continue Reading on ZDNet

04 May 2020 Industrial Cyber-Security During COVID-19: From a Hackers’ Paradise to Resilient Remote Operations more...
26 Mar 2020 Coronavirus: Time for Remote Connection Solutions for ICS more...
18 Mar 2020 COVID-19 is a Wake-up Call for Manufacturing SMBs more...

OTORIO website uses cookies. By continuing to browse the site you are agreeing to our use of cookies. For more details about cookies and how to manage them, see our cookie policy.