Engineering (Includes Industrial Construction)

Industry

Vesuvius Industrial Manufacturer Discloses $4.6M Cost as Result of Cyber Incident

February 6, 2023

Vesuvius, a UK-based molten metal flow engineering company issued an alert on February 6, 2023, which stated it was “currently managing a cyber incident, [which] has involved unauthorized access to our systems.” The London Stock Exchange-listed ceramics manufacturer disclosed in May that the perplexing cyber incident will incur a hefty cost of $4.6 million.

The exact nature of the incident remains shrouded in secrecy, as the company has refrained from providing specific details.

Notably, Vesuvius is the second British industrial ceramics manufacturer to disclose a cyber incident in 2023. In January, Morgan Advanced Materials, a company specializing in semiconductor production, also submitted a cybersecurity incident notice to the London Stock Exchange.

read more

Black Basta Hacks Systems of Engineering Firm that Designs Hundreds of US Power Stations.

October 15, 2022

Sargent & Lundy, a Chicago-based construction and engineering firm fell victim to a Black Basta ransomware attack. The hack exposed information of over 6,900 individuals belonging to multiple electric utility companies. The organization works as a US government contractor handling critical infrastructure projects across the country.

The firm also handles nuclear security issues, working alongside the departments of Defense, Energy, and other agencies. Federal officials closely monitored the potential broader impact on the US power sector, though it is being reported that no other power-sector firms were involved.

read more

Thyssenkrupp System Engineering Group Target of Ransomware Attack

August 11, 2020

In August 2020, Mount Locker ransomware gang targeted Engineering and Technology giant ThyssenKrupp in what appears to be a data breach. Threat actors gained access to critical HR information and documentation regarding the company’s present and past employees through the ThyssenKrupp Materials group of firms in the United States and Canada.

Mount Locker ransomware operators advertise what seems to be 30 MB of data related to ThyssenKrupp System Engineering group.

read more

Thyssenkrupp Target of Cyberattack

December 20, 2022

German ThyssenKrupp AG said today that it’s fending off a cyberattack against its Materials Services division and corporate headquarters. The form of attack was not disclosed. The attack is said to have been noticed at an early stage by the company’s cybersecurity staff and efforts are underway to limit the attack and bring it to an end. No other sections of ThyssenKrupp have been affected by the attack.

No cybercriminal group has yet accepted responsibility for the attack.

read more

Weir Group Ransomware Incident

September 21, 2021

Weir Group is currently managing the consequences of a sophisticated attempted ransomware attack that occurred in the second half of September. Weir’s cybersecurity systems and controls responded quickly to the threat and took robust action. This included isolating and shutting down IT systems including core Enterprise Resource Planning (ERP) and engineering applications. These applications are now restored on a partial basis, and other applications are being brought back online in a progressive manner in order of business priority. The above actions have led to a number of ongoing but temporary disruptions including engineering, manufacturing and shipment rephasing, which has resulted in revenue deferrals and overhead under-recoveries. Effective capabilities are being progressively restored in the coming weeks but the consequences of the operational disruption and associated inefficiencies are expected to continue into the fourth quarter.

read more

Advantech Hit By Ransomware

November 19, 2020

Ransomware attack hit Taiwan-based Advantech Co. in November, 2020 and the hackers sought 750 bitcoin or $13.8 million in exchange for the decryption key.

read more

Emcor IT Systems Attack

February 15, 2020

EMCOR said that not all of its systems were impacted and only “certain IT systems” were affected, which it promptly shut down to contain the infection. The company said it was restoring services, but did not specify if it paid the ransom demand or if it was restoring from backups.

read more