Halliburton Hit by Cyberattack, Toyota, Microchip, CannonDesign, and Flint all faced significant cyberattacks in recent months, highlighting the growing threat of ransomware and data breaches.
Halliburton Hit by Cyberattack, Operations Disrupted
Halliburton, a major oilfield services company suffered a significant cyberattack that disrupted operations at its Houston campus. Employees were advised not to connect to internal networks as cybersecurity experts work to resolve the issue. The attack is affecting certain systems and the company’s response plan has been activated to reduce impact. Read more
Toyota Confirms That Third-Party Data Breach Impacted its Customers
A threat actor claiming to be ZeroSevenGroup hacked a US branch of Toyota and stole 240GB of files from a backup server containing customer, employee, and financial data on December 25. This included credentials used to further exploit Toyota’s network infrastructure using ADRecon. Toyota confirmed a third party entity processed by them was compromised, impacting an unknown number of customers. Read more
Microchip Technology Cyberattack: Manufacturing Incapacitated
US chipmaker Microchip Technology detected a cyberattack on August 17th comprising its IT systems, subsequently confirming unauthorized access on August 19th. Isolating impacted systems caused manufacturing facilities to operate at less than normal levels, disrupting order fulfillment. The tactics and techniques used in the attack are still unknown. Read more
CISA Warns of Critical Jenkins RCE Bug Exploited in Ransomware Attacks
CISA issued a warning regarding a critical RCE vulnerability (CVE-2024-23897) in widely used automation server Jenkins, allowing attackers to execute malicious code via CLI. Threat actors like IntelBroker have exploited this bug to breach organizations. Federal agencies must patch vulnerable Jenkins servers in 3 weeks as the bug is actively being used in ransomware attacks disrupting operations. Read more
CannonDesign Confirms Avos Locker Ransomware Data Breach
Hackers breached CannonDesign’s network between January 19-25 2023, deploying the Avos Locker ransomware and stealing over 5.7TB of sensitive data including client PI, projects details, IT infrastructure records. After failing to extort payment, the Avos Locker gang published the stolen data on hacking forums and leak sites in September 2023 and February 2024, impacting over 13,000 clients. Read more
Flint Reeling from Ransomware Attack, City Services Disrupted
The city of Flint, Michigan fell victim to a ransomware attack on August 14th, believed to be LockBit, which compromised its internal network and internet access, crippling online services. Residents could not pay bills or access information online, disrupting essential services at a sensitive time amid an ongoing water crisis. IT is working with the FBI and experts to investigate and recover data. Read more