Security News > 2023 > May > US govt contractor ABB confirms ransomware attack, data theft

Swiss tech multinational and U.S. government contractor ABB has confirmed that some of its systems were impacted by a ransomware attack, previously described by the company as "An IT security incident."
"ABB has determined that an unauthorized third-party accessed certain ABB systems, deployed a type of ransomware that is not self-propagating, and exfiltrated certain data," the company said in a press release.
The investigation is still in its early stages, and ABB is also working with advisors and law enforcement to minimize the ransomware attack's impact.
ABB reported revenue of $29.4 billion for 2022 and has roughly 105,000 employees that develop industrial control systems and SCADA systems for manufacturing and energy suppliers.
While ABB didn't reveal the name of the attackers, BleepingComputer independently confirmed that the attack was conducted by the Black Basta ransomware gang with the help of an anonymous source familiar with the incident.
"ABB recently detected an IT security incident that directly affected certain locations and systems," the company told BleepingComputer in a statement after the attack.
News URL
Related news
- Toronto Zoo shares update on last year's ransomware attack (source)
- Feds name and charge alleged Silk Typhoon spies behind years of China-on-US attacks (source)
- US seizes domain of Garantex crypto exchange used by ransomware gangs (source)
- Ransomware gang creates tool to automate VPN brute-force attacks (source)
- SANS Institute Warns of Novel Cloud-Native Ransomware Attacks (source)
- ⚡ THN Weekly Recap: Router Hacks, PyPI Attacks, New Ransomware Decryptor, and More (source)
- BlackLock ransomware claims nearly 50 attacks in two months (source)
- TechRepublic EXCLUSIVE: New Ransomware Attacks are Getting More Personal as Hackers ‘Apply Psychological Pressure” (source)
- Texas State Bar warns of data breach after INC ransomware claims attack (source)
- Sensata Technologies hit by ransomware attack impacting operations (source)