Global critical infrastructure targeted by 10 hacking groups

Ten hacking groups have been launching attacks against North American and European industrial systems, with increasing activity expected within the next year, reports ZDNet. Suspected Iranian state-sponsored threat group Parasite has been leveraging known security weaknesses and open source tools in attacks aimed at utilities, oil and gas, and aerospace entities in North America, Europe, and the Middle East, a Dragos report revealed. On the other hand, Chrysene, which is also believed to be related to Iran, has been aiming attacks at Middle Eastern and European industrial firms. Magnallium, which has been associated with Iranian state-backed APT33, has also begun targeting North American and European oil and gas and aircraft firms after similar attacks against Saudi Arabia. The report also identified suspected Russian state-backed groups Xenotime and Allanite, with the latter impacting not only U.S. and U.K. electricity sector networks but also German industrial infrastructure. Electric utilities in the U.S., Europe, and East Asia have been targeted by Lazarus Group-linked Covellite, while APT41-linked Vanadinite has been exploiting vulnerable software leveraged by industrial firms worldwide.