Qualysec

Cybersecurity News | 2024 May 4th week

Fri May 31 2024
Cyber-News-Hero-Image
Greetings from Qualysec! We are excited to share with you our weekly roundup of the latest cyber security news.

1. Ransomhub Attacking Industrial Control Systems To Encrypt And Exfiltrate Data

Ransomhub, a new ransomware group, has targeted the SCADA system of a Spanish bioenergy plant, Matadero de Gijón, which highlights the critical security risks associated with Industrial Control Systems (ICS) across various industries.

Since 2022, numerous cyberattacks have exploited vulnerabilities in ICS, causing significant disruptions to operations and infrastructure. This highlights the need for robust security measures to safeguard ICS environments.

The Ransomhub ransomware group claimed unauthorized access to Gijón’s BioEnergy Plant’s Supervisory Control and Data Acquisition (SCADA) system, which is critical for industrial process control.

The group provided screenshots as evidence, showcasing their ability to manipulate the plant’s Digester and Heating system controls.

While the exact size of the data breach remains unclear (varying between 15 GB and 400 GB), the compromised SCADA system poses a significant risk to the plant’s operations.

Ransomhub, a RaaS operation first advertised in February 2024, utilizes Golang and C++ for its locker component and leverages asymmetric cryptography(x25519) and a combination of symmetric algorithms (aes256, chacha20, and xchacha20) to encrypt victim data while achieving faster encryption speeds.

Speak Directly With Qualysec’s Certified Security Experts

Discover vulnerabilities before attackers exploit them

Schedule Free Consultation

Security Expert

2. Chinese Hackers Using ORB Proxy Networks For Stealthy Cyber Attacks

Ransomhub, a new ransomware group, has targeted the SCADA system of a Spanish bioenergy plant, Matadero de Gijón, which highlights the critical security risks associated with Industrial Control Systems (ICS) across various industries.

Since 2022, numerous cyberattacks have exploited vulnerabilities in ICS, causing significant disruptions to operations and infrastructure. This highlights the need for robust security measures to safeguard ICS environments.

The Ransomhub ransomware group claimed unauthorized access to Gijón’s BioEnergy Plant’s Supervisory Control and Data Acquisition (SCADA) system, which is critical for industrial process control.

The group provided screenshots as evidence, showcasing their ability tomanipulate the plant’s Digester and Heating system controls. While the exact size of the data breach remains unclear (varying between 15 GB and 400 GB), the compromised SCADA system poses a significant risk to the plant’s operations.

Ransomhub, a RaaS operation first advertised in February 2024, utilizes Golang and C++ for its locker component and leverages asymmetric cryptography(x25519) and a combination of symmetric algorithms (aes256, chacha20, and xchacha20) to encrypt victim data while achieving faster encryption speeds.

3. Sharp Dragon Hackers Attacking Government Entities Using Cobalt Strike & Custom Backdoors

Ransomhub, a new ransomware group, has targeted the SCADA system of a Spanish bioenergy plant, Matadero de Gijón, which highlights the critical security risks associated with Industrial Control Systems (ICS) across various industries.

Since 2022, numerous cyberattacks have exploited vulnerabilities in ICS, causing significant disruptions to operations and infrastructure. This highlights the need for robust security measures to safeguard ICS environments.

The Ransomhub ransomware group claimed unauthorized access to Gijón’s BioEnergy Plant’s Supervisory Control and Data Acquisition (SCADA) system, which is critical for industrial process control.

The group provided screenshots as evidence, showcasing their ability to manipulate the plant’s Digester and Heating system controls.

While the exact size of the data breach remains unclear (varying between 15 GB and 400 GB), the compromised SCADA system poses a significant risk to the plant’s operations.

Ransomhub, a RaaS operation first advertised in February 2024, utilizes Golang and C++ for its locker component and leverages asymmetric cryptography(x25519) and a combination of symmetric algorithms (aes256, chacha20, and xchacha20) to encrypt victim data while achieving faster encryption speeds.

4. GenAI Bots Can Be Tricked by Anyone To Leak Company Secrets

Ransomhub, a new ransomware group, has targeted the SCADA system of a Spanish bioenergy plant, Matadero de Gijón, which highlights the critical security risks associated with Industrial Control Systems (ICS) across various industries.

Since 2022, numerous cyberattacks have exploited vulnerabilities in ICS, causing significant disruptions to operations and infrastructure. This highlights the need for robust security measures to safeguard ICS environments.

The Ransomhub ransomware group claimed unauthorized access to Gijón’s BioEnergy Plant’s Supervisory Control and Data Acquisition (SCADA) system, which is critical for industrial process control.

The group provided screenshots as evidence, showcasing their ability to manipulate the plant’s Digester and Heating system controls.

While the exact size of the data breach remains unclear (varying between 15 GB and 400 GB), the compromised SCADA system poses a significant risk to the plant’s operations.

Ransomhub, a RaaS operation first advertised in February 2024, utilizes Golang and C++ for its locker component and leverages asymmetric cryptography(x25519) and a combination of symmetric algorithms (aes256, chacha20, and xchacha20) to encrypt victim data while achieving faster encryption speeds.

Get a Quote

Let's work together to secure your business!

Please fill out the form to let us know about your cybersecurity needs and our professionals will reach out shortly to discuss your unique needs.

Total No. Of Vulnerabilities

0+

Total No. Of Vulnerabilities

Years in Business

0+

Years in Business

Assessment Completed

0+

Assessment Completed

Trusted Clients

0+

Trusted Clients

Countries Served

0+

Countries Served

Subscribe to Newsletter