Publications

26 June 2025

The attack on Kuala Lumpur airport, which knocked out many of its information systems for 10 hours, plus over 100 more incidents.

• automotive,
• construction,
• data leakage,
• denial of IT services,
• denial of operations,
• denial of service,
• electronics industry,
• energy sector,
• food & beverage,
• logistics,
• manufacturing,
• metallurgy,
• mining,
• personal data leakage,
• ransomware,
• textile,
• transportation,
• utilities

19 June 2025

Using polyglot files, involving the 7-Zip vulnerability and the 0-click vulnerability in MS Windows – there are some interesting details of attacks on industrial enterprises disclosed at this quarter.

• APT,
• cyberespionage,
• mining,
• phishing,
• ransomware,
• spyware,
• statistics

08 April 2025

More than 100 companies publicly reported cyberattacks. Two of them announced their insolvency after the incident. In two other cases, two ransomware gangs simultaneously claimed responsibility for the same hack.

• automotive,
• data leakage,
• denial of IT services,
• denial of operations,
• denial of production,
• denial of service,
• electronics industry,
• energy sector,
• food & beverage,
• logistics,
• manufacturing,
• metallurgy,
• mining,
• personal data leakage,
• ransomware,
• retail,
• textile,
• transportation,
• utilities

25 March 2025

Abusing of Telegram to spy and put pressure on their victims’ employees, notifying the victims by printing messages on printers connected to a compromised network – we publish interesting details of attacks on industrial enterprises disclosed at this quarter.

• APT,
• cyberespionage,
• mining,
• phishing,
• ransomware,
• spyware,
• statistics

19 February 2025

Many large companies, including some well-known brands, affected by cyberattacks. An unusually high number of victims were in critical sectors such as utilities and power and energy.

• automotive,
• construction,
• data leakage,
• denial of IT services,
• denial of operations,
• denial of production,
• denial of service,
• electronics industry,
• energy sector,
• food & beverage,
• logistics,
• manufacturing,
• metallurgy,
• mining,
• personal data leakage,
• ransomware,
• retail,
• textile,
• transportation,
• utilities

26 December 2024

During the quarter, a number of research papers and technical advisories were published detailing attacks that either targeted or affected organizations in the industrial sector. From our perspective, the following are likely to be the most interesting for researchers and useful for cybersecurity practitioners

• APT,
• cyberespionage,
• mining,
• phishing,
• ransomware,
• spyware,
• statistics

08 November 2024

A total of 35 incidents were confirmed by victims. Half of the attacks reportedly resulted in the denial of IT systems and the denial of operations. There is a case of a company that was unable to recover from the impact of a cyberattack and decided to cease operations.

• automotive,
• construction,
• data leakage,
• denial of IT services,
• denial of operations,
• denial of production,
• denial of service,
• denial of shipment,
• electronics industry,
• food & beverage,
• logistics,
• manufacturing,
• metallurgy,
• mining,
• personal data leakage,
• pharmaceutical,
• ransomware,
• transportation,
• utilities

03 June 2024

A total of 30 incidents were confirmed by victims. 37% of victims reported denial of operations or product shipment caused by the incident. Almost half of all incidents resulted in disruption of the victims’ public digital services.

• automotive,
• data leakage,
• denial of IT services,
• denial of operations,
• denial of production,
• denial of shipment,
• electronics industry,
• energy sector,
• food & beverage,
• logistics,
• manufacturing,
• mining,
• personal data leakage,
• ransomware,
• supply chain,
• transportation,
• utilities,
• water supply

11 April 2024

In this overview, we discuss cybercriminal and hacktivist attacks on industrial organizations.

• 0-day,
• abuse of IT services,
• aerospace,
• automotive,
• construction,
• data leakage,
• data loss,
• denial of IT services,
• denial of operations,
• denial of production,
• denial of shipment,
• electronics industry,
• energy sector,
• food & beverage,
• hacktivists,
• ICS engineering,
• logistics,
• manufacturing,
• metallurgy,
• mining,
• MOVEit MFT,
• network equipment,
• oil & gas,
• personal data leakage,
• ransomware,
• shipbuilding,
• supply chain,
• transportation,
• unitronics,
• utilities,
• water supply

05 October 2023

In this overview, we discuss cybercriminal and hacktivist attacks on industrial organizations.

• 0-day,
• automotive,
• data leakage,
• data loss,
• electronics industry,
• energy sector,
• food & beverage,
• hacktivists,
• ICS engineering,
• industrial automation,
• irrigation,
• logistics,
• manufacturing,
• metallurgy,
• military-defense,
• mining,
• MOVEit MFT,
• oil & gas,
• pharmaceutical,
• phishing,
• ransomware,
• robotics,
• transportation,
• utilities,
• waste recycling