Security News > 2020 > February > IoT Devices at Major Manufacturers Infected With Malware via Supply Chain Attack
Three of the world's largest manufacturers had some IoT devices running Windows 7 infected with a piece of malware in what experts believe to be a supply chain attack.
TrapX Security reported this week that it had identified a cryptocurrency miner on several IoT devices at some major manufacturers, including automatic guided vehicles, a printer and a smart TV. Ori Bach, the CEO of TrapX, told SecurityWeek that the attacks appeared to be part of the same campaign.
At one manufacturing site, the malware was found on several automatic guided vehicles that were running Windows 7.
The cybersecurity firm believes that in all of these cases the malware was installed on the devices before they reached the manufacturers.
"We believe the attack initially targeted the supply chain, and then any manufacturer that was part of the targeted supply chain was affected," Bach told SecurityWeek.
News URL
Related news
- Rspack npm Packages Compromised with Crypto Mining Malware in Supply Chain Attack (source)
- IPany VPN breached in supply-chain attack to push custom malware (source)
- New IOCONTROL malware used in critical infrastructure attacks (source)
- Iran-Linked IOCONTROL Malware Targets SCADA and Linux-Based IoT Platforms (source)
- Ultralytics Supply-Chain Attack (source)
- 390,000 WordPress accounts stolen from hackers in supply chain attack (source)
- FBI spots HiatusRAT malware attacks targeting web cameras, DVRs (source)
- Malware botnets exploit outdated D-Link routers in recent attacks (source)
- It's only a matter of time before LLMs jump start supply-chain attacks (source)
- Ivanti zero-day attacks infected devices with custom malware (source)