Metals & Mining Archives

Vesuvius Industrial Manufacturer Discloses $4.6M Cost as Result of Cyber Incident

February 6, 2023

Vesuvius, a UK-based molten metal flow engineering company issued an alert on February 6, 2023, which stated it was “currently managing a cyber incident, [which] has involved unauthorized access to our systems.” The London Stock Exchange-listed ceramics manufacturer disclosed in May that the perplexing cyber incident will incur a hefty cost of $4.6 million.

The exact nature of the incident remains shrouded in secrecy, as the company has refrained from providing specific details.

Notably, Vesuvius is the second British industrial ceramics manufacturer to disclose a cyber incident in 2023. In January, Morgan Advanced Materials, a company specializing in semiconductor production, also submitted a cybersecurity incident notice to the London Stock Exchange.

Bl00dy ransomware Gang Targets Italian Steel Manufacturing Group Lucchini RS

December 12, 2022

The cybergang Bl00dy ransomware claims a cyber attack against the Italian Lucchini Group. The gang reported this within its Telegram channels. No official statement from the company has been published.

Ransomware attack at Copper Mountain Mining Corp.

December 27, 2022

Copper Mountain Mining Corp. was the target of a ransomware attack on Dec. 27. The attack targeted the IT systems at its Copper Mountain Mine and corporate office. Copper Mountain said it implemented risk management systems, isolated operations, switched to manual processes, and preventatively shut down the mill “to determine the effect on its control system.” “There have been no safety or environmental incidents as a result of the attack,” the company said.

World’s Largest Copper Smelter Largely Maintains Operations after Cyberattack

October 21, 2022

Aurubis, Europe’s largest copper smelting company, sustained a cyberattack. The company believes it was targeted as part of a larger campaign against the metals sector. It responded by shutting down certain IT systems and isolating them from the Internet. Its core industrial processes have continued to function. “The production and environmental protection facilities at the smelter sites are running, and incoming and outgoing goods are also being maintained manually,” Aurubis said. “Transitional solutions are being implemented to make the company’s full services available to business partners again starting next week. Customers and suppliers can still reach their Aurubis contacts by phone.”

Cyber attack at German Steel Mill damages equipment

March 18, 2014

A German steel mill was targeted with malware that gave the attackers access to the business network and then to the SCADA/ICS network. The event was confirmed by the German government’s Federal Office for Information Security (BSI) in an IT security report. Attackers that appeared to particularly target industrial plant personnel, caused plant control components to fail, resulting in an uncontrolled furnace, which eventually caused physical damage to the steel factory.

According to a study issued by the SANS Institute, the hackers used spear-phishing attempts to obtain access to the steel mill network. The email most likely contained an attached document that, when opened, activated the malicious malware onto the system. The malware then constructed a remote connection point to establish a bridge between the attackers and the targeted industrial network by exploiting vulnerabilities in a targeted operating system. The hackers were able to modify the programmable logic controllers (PLCs) at this stage, jeopardizing the furnace’s operations, which further lead to its own physical damage.

Advantech Hit By Ransomware

November 19, 2020

Ransomware attack hit Taiwan-based Advantech Co. in November, 2020 and the hackers sought 750 bitcoin or $13.8 million in exchange for the decryption key.

Nyrstar Ransomware Attack

January 22, 2019

Nyrstar said that its metals processing and mining operations were not damaged by the attack.

EVRAZ Infection Affects Steel Production Plants Across Canada and the US

March 5, 2020

A cyberattack late Wednesday night has shut down Evraz North America’s information technology systems across the United States and Canada, a company spokesperson confirmed on Thursday. The company also confirmed that temporary layoff notices have been issued as a result. “At this point, there has been no indication of any breach of confidential or personal customer or employee information,” said Patrick Waldron, spokesperson for the company. Waldron said there is currently no timeline for resolution of the situation but it has affected internal infrastructure such as the company’s email system.

Norsk Hydro Production lines stopped

May 18, 2019

Production lines had stopped at some of its 170 plants.

The ransomware LockerGoga blocked the company’s systems, forcing a switch to manual operations and workarounds. The Extruded Solutions unit, which makes components for car manufacturing, construction and other industries, reduced its output by 50%. Administrative systems, such as reporting, billing and invoicing, suffered delays. It took Norsk Hydro several weeks to bring operations back to normal.