Real cases

Data since 2012

Real cases of hacked carsDate
Chinese cyber criminals threaten the automotive industryDic 2020Read More
Headline Chinese cyber criminals threaten the automotive industry
Year 2020
Month Diciembre
Country China
Description 

The cracker group known as APT10 – of Chinese origin and apparently backed by the Chinese government – exploited various vulnerabilities in Windows operating systems – such as the well-known ‘ZeroLogon’ – to gain access to the websites of a number of Western companies. These include those of several automobile manufacturers around the world. It is suspected that the crackers’ intention was to spy on the movements of each company, as well as to try to obtain internal company data through unauthorized access.

Intentionality Cracker
Target Empresa
Company Various
Type of company 
Data / Life Datos
Access Aplicación
Recognized by brand No
Source https://securityboulevard.com/2020/12/china-cyber-attacks-the-current-threat-landscape/
U.S. Logistics operator suffers ransomware attackDic 2020Read More
Headline U.S. Logistics operator suffers ransomware attack
Year 2020
Month Diciembre
Country United States
Description 

Forward Air -one of the main US logistics operators- receives a strong cyberattack through ransomware that interrupts its operations and billing. The perpetrators – a group known as “Hades”- hijack a large amount of sensitive data, threatening to erase it forever if they do not receive a financial ransom in return.

Intentionality Cracker
Target Empresa
Company Forward Air
Type of company Transport
Data / Life Datos
Access Remoto
System Data bases
Recognized by brand 
Source https://www.freightwaves.com/news/news-alert-forward-air-reveals-ransomware-attack-warns-of-revenue-hit
Israeli insurance company extorted with stolen driver dataDic 2020Read More
Headline Israeli insurance company extorted with stolen driver data
Year 2020
Month Diciembre
Country Israel
Description 

A group of crackers called themselves ‘Black Shadow’ successfully attacks the internal servers of the Israeli insurer Shirbit. They steal a large amount of their clients’ personal data – names and surnames, addresses, license plates of the insured vehicles, scanned documents … – and threaten the company itself with spreading them on the Internet if they do not pay a certain amount of ‘bitcoins’ in concept ransomware – what is called ransomware.

Intentionality Cracker
Target Empresa
Company Shirbit
Type of company Insurance
Data / Life Datos
Access Remoto
System Company internal servers
Recognized by brand 
Source https://www.timesofisrael.com/hackers-say-they-sold-batch-of-information-stolen-from-israeli-insurance-firm/
A US transportation company is stopped by a cyber attackDic 2020Read More
Headline A US transportation company is stopped by a cyber attack
Year 2020
Month Diciembre
Country United States
Description 

The American transport company Central Freight Lines -specialized in road freight- suffers a cyberattack in the computer systems of its operations and its call center -center for calls and attention to the public and customers to resolve doubts, setbacks, order their services … -. The identity of the attackers is unknown, but it is known that, curiously, they did not ask for ransom for the potentially stolen files.

Intentionality Cracker
Target Empresa
Company Central Freight Lines
Type of company Transport and Logistics
Data / Life Datos
Access Remoto
Recognized by brand 
Source https://www.freightwaves.com/news/news-alert-central-freight-lines-falls-victim-to-cyberattack
Kawasaki discovers a spy in their intranetDic 2020Read More
Headline Kawasaki discovers a spy in their intranet
Year 2020
Month Diciembre
Country Japan
Description 

The Japanese motorcycle manufacturer Kawasaki discovers illegal access to a server on its internal network located in its home country. According to their investigations, this “back door”- which connected to one of its headquarters in Thailand – had been open for more than a year, which would have allowed a large leak of confidential data.

Intentionality Cracker
Target Empresa
Company Kawasaki
Type of company Motorcycle manufacturer
Data / Life Datos
Access Remoto
Recognized by brand 
Source https://hackercar.com/kawasaki-descubre-espia-red-informatica/
Vulnerability is found in a rent a car management platformDic 2020Read More
Headline Vulnerability is found in a rent a car management platform
Year 2020
Month Diciembre
Country 
Description 

An independent investigator finds a flaw in the ‘Car Rental Management System 1.0’ platform. It is a fleet manager, developed in open source for use in car rental agencies. A bug in the image upload applet – a component of an application that runs in the context of another program, for example in a web browser – allows you to control the application remotely with administrator privileges.

Intentionality Hacker
Target Otros
Company SourceCodester
Type of company Software developer
Data / Life Datos
Access Remoto
System A fleet manager
Recognized by brand 
Source https://nvd.nist.gov/vuln/detail/CVE-2020-27956#vulnCurrentDescriptionTitle
The data of 21,000 drivers appears for sale on the dark webNov 2020Read More
Headline The data of 21,000 drivers appears for sale on the dark web
Year 2020
Month Noviembre
Country United Kingdom
Description 

An attack on the database of a British insurer – whose name is unknown – led to the leakage of the personal data of 21,000 drivers across the UK. The leaked information included names, addresses, contact methods and driver’s license numbers. Shortly after the theft occurred, the data appeared for sale in “street markets” on the Dark Web.

Intentionality Cracker
Target Empresa
Company British insurance company
Type of company Vehicle insurer
Data / Life Datos
Access Aplicación
Recognized by brand No
Source https://www.teiss.co.uk/british-motorists-data-hacked/
International automotive dealer suffers an attack by ransomwareDic 2020Read More
Headline International automotive dealer suffers an attack by ransomware
Year 2020
Month Diciembre
Country Australia
Description 

The Australian subsidiary of Inchcape – an international automotive distribution and service provider that works with a large number of brands – is undergoing a cyberattack. A group of crackers filters the ‘ransomware’ known as ‘Ransomexx’ on their servers, which encrypts and captures large volumes of sensitive company data. Some of this information has even ended up leaked on the Dark Web.

Intentionality Cracker
Target Empresa
Company Inchcape
Type of company Automotive Distribution and Services
Data / Life Datos
Access Remoto
System Company servers
Recognized by brand 
Source https://www.itwire.com/security/auto-services-firm-inchcape-hit-by-windows-ransomexx-ransomware.html
Crackers expose data of a logistics operator in the U.S.Dic 2020Read More
Headline Crackers expose data of a logistics operator in the U.S.
Year 2020
Month Diciembre
Country United States
Description 

The american company Cardinal Logistics -located  in North Carolina, United States- and which counts with a fleet of more than 3.100 transportation vehicles, suffered a ransomware attack from the REvil group. When the information hijacking ended -where could be found  confidentiality agreements type NDA, financial information and employees data-, the crackers spread a small amount of confidential data on the Dark Web in response to the company’s refusal to pay the ransom.

Intentionality Cracker
Target Empresa
Company Cardinal Logistics
Type of company Transport and logistics
Data / Life Datos
Access Remoto
System Databases
Reach 1
Recognized by brand 
Source https://www.freightwaves.com/news/hackers-leak-data-from-trucking-firm-cardinal-logistics



Este sitio web utiliza cookies para que usted tenga la mejor experiencia de usuario. Si continúa navegando está dando su consentimiento para la aceptación de las mencionadas cookies y la aceptación de nuestra política de cookies, pinche el enlace para mayor información.plugin cookies

ACEPTAR
Aviso de cookies