U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks|RustDuck: The Botnet That’s Still Small but Engineering Like It Plans to Grow|GuardFall Flaw Hits 10 of 11 Popular Open-Source AI Agents|XSS.is, The Forum That Ran the Ransomware Supply Chain Is Down. The Market Isn’t|U.S. CISA adds SimpleHelp flaw to its Known Exploited Vulnerabilities catalog|Hackers Steal Data of 4.38 Million Aflac Japan Customers|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks|RustDuck: The Botnet That’s Still Small but Engineering Like It Plans to Grow|GuardFall Flaw Hits 10 of 11 Popular Open-Source AI Agents|XSS.is, The Forum That Ran the Ransomware Supply Chain Is Down. The Market Isn’t|U.S. CISA adds SimpleHelp flaw to its Known Exploited Vulnerabilities catalog|Hackers Steal Data of 4.38 Million Aflac Japan Customers|
Advertisement

Ad Placeholder

Full Width × 90

Breaking News

Japanese car-maker giant Honda hit by a ransomware attack

Japanese carmaker Honda announced it has been hit by a cyberattack that disrupted its business in several countries. The Japanese carmaker Honda announced that threat actors have compromised the Honda network disrupting its business in several countries. Source informed about the security incident believe Honda’s systems have been infected with SNAKE Ransomware. BleepingComputer reported that […]

Honda Rolling-PWN Attack

Japanese carmaker Honda announced it has been hit by a cyberattack that disrupted its business in several countries.

The Japanese carmaker Honda announced that threat actors have compromised the Honda network disrupting its business in several countries. Source informed about the security incident believe Honda’s systems have been infected with SNAKE Ransomware.

BleepingComputer reported that a security researcher named Milkream has found a sample of the SNAKE (EKANS) ransomware submitted to VirusTotal that checks for the internal Honda network name of “mds.honda.com”.

“When BleepingComputer tried to analyze the sample, the ransomware would start and immediately exit without encrypting any files. The researcher states that this is because the ransomware tries to resolve the “mds.honda.com” domain, and failing to do so, will terminate the ransomware without encrypting any files.” states BleepingComputer.

“Security researcher Vitali Kremez has also told BleepingComputer that in addition to the mds.honda.com check, it also contains a reference to the U.S. IP address 170.108.71.15. This IP address resolves to the ‘unspec170108.amerhonda.com’ hostname.”

The reference to an IP address and the internal hostname check suggests the attack was launched against Honda. caused by a SNAKE ransomware attack.

The company confirmed that no breach of data has occurred as a result of the attack, it said that there is no impact on Honda customers.

The organizations is working to “minimize the impact and to restore full functionality of production, sales and development activities.″

“At this point, we see minimal business impact,″ reads the statement published by the company.

The cyber attack distrupted production in Japan on Monday morning, but now the operations have been resumed,

Production in Japan is back to normal, after being disrupted Monday morning.

The impact of the attack on production in the UK could be limited because production at the factory in Swindon has been suspended during the COVID-19 lockdown.

“The attack also comes as automakers face pressure to invest large amounts of money in new technologies such as electric and autonomous cars to meet air pollution limits in Europe and China and fend off competition from tech companies.” states AP News.

[adrotate banner=”9″][adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – Honda, hacking)

[adrotate banner=”5″]

[adrotate banner=”13″]