Nov 23, 2021
0 0

Wind turbine giant Vestas' data compromised in cyberattack

Written by

Exploit released for Microsoft Exchange RCE bug, patch now
US govt warns of increased ransomware risks during holidays
New Windows zero-day with public exploit lets you become an admin
Biometric auth bypassed using fingerprint photo, printer, and glue
This $30 CompTIA bundle helps you get four key security certifications
Windows 11 KB5007262 Cumulative Update Preview Released
New Windows zero-day with public exploit lets you become an admin
Exploit released for Microsoft Exchange RCE bug, patch now
Qualys BrowserCheck
Junkware Removal Tool
How to remove the PBlock+ adware browser extension
Remove the Search Redirect
Remove the Search Redirect
Remove the Search Redirect
Remove Security Tool and SecurityTool (Uninstall Guide)
How to remove Antivirus 2009 (Uninstall Instructions)
How to Remove WinFixer / Virtumonde / Msevents / Trojan.vundo
How to remove Google Redirects or the TDSS, TDL3, or Alureon rootkit using TDSSKiller
Locky Ransomware Information, Help Guide, and FAQ
CryptoLocker Ransomware Information Guide and FAQ
CryptorBit and HowDecrypt Information Guide and FAQ
CryptoDefense and How_Decrypt Ransomware Information Guide and FAQ
How to make the Start menu full screen in Windows 10
How to install the Microsoft Visual C++ 2015 Runtime
How to open an elevated PowerShell Admin prompt in Windows 10
How to Translate a Web Page in Google Chrome
How to start Windows in Safe Mode
How to remove a Trojan, Virus, Worm, or other Malware
How to show hidden files in Windows 7
How to see hidden files in Windows
IT Certification Courses
Gear + Gadgets
Vestas Wind Systems, a leader in wind turbine manufacturing, has shut down its IT systems after suffering a cyberattack.
Vestas is a leading North American manufacturer, installer, and servicing company for wind turbines, with 40,000 MW installed and 36,000+ MW under service in the U.S. and Canada.
The company states that they suffered an attack on Friday, November 19th, forcing them to shut down IT systems across multiple business units and locations to prevent the attack’s spread.
As a result, customers, employees, and other stakeholders may be affected by this disruption, and some factories of Vestas were forced to slow down production.
In an update published today on the Vestas website, the firm explains that they are still working on re-establishing the integrity of its IT systems but hasn’t provided any timeline for the recovery.
Vestas also confirmed that some data had been compromised, which means the hackers have managed to exfiltrate information from the accessed systems.
“The company’s preliminary findings indicate that the incident has impacted parts of Vestas’ internal IT infrastructure and that data has been compromised,” Vesta disclosed in a new statement today. “At this stage, the work and investigation are still ongoing,” 
In the same update, the firm has explained that the impact on manufacturing, construction, and service has been minimal.
While Vestas has not disclosed what type of cyberattack they suffered, the description describes what is likely a ransomware attack.
BleepingComputer has reached out to Vestas to ask for more details about the incident and whether the hackers are demanding a ransom, but we have not received a response yet.
Vestas employs 25,000 people and operates manufacturing plants in 16 countries, having an annual operating income of over a billion USD.
As countries accelerate the adoption of pollution-reduction policies and roll out renewable energy investment programs, Vestas has a crucial role in fulfilling such services.
As such, disrupting the manufacturing, installation, and servicing process could significantly impact the regions that rely on wind turbines as a power source.
Completing projects that are set to replace traditional forms of energy is critical now, as energy shortages resulting from carbon-plant shutdowns are pushing prices high.
Already, Vestas was among those struggling with supply chain issues and rising commodity prices, so this cyberattack comes at a particularly bad time.
Critical infrastructure has increasingly been suffering cyberattacks as ransomware gangs escalate their attacks for larger payouts.
Previous attacks on critical infrastructure include Ireland’s Health Service Executive, meat producer JBS, and U.S. fuel pipeline Colonial Pipeline.
This $30 CompTIA bundle helps you get four key security certifications
Hackers hit Iran’s Mahan airline, claim confidential data theft
Snag this cybersecurity training bundle for less than $20
North Korean cyberspies target govt officials with custom malware
RedCurl corporate espionage hackers resume attacks with updated tools
Data compromised does not mean they are extracted. It means hackers has had access to them in some way
1 encrypted file and that file is “compromised”.
No information is out apart from press releases. I read the latest as if infection vector has been detected, blocked and recovery / data validation is in progress. That is, I see it as a pretty positive looking press release.
Not a member yet? Register Now
How to download a Windows 10 21H2 ISO from Microsoft
New Windows zero-day with public exploit lets you become an admin
To receive periodic updates and news from BleepingComputer, please use the form below.
Terms of Use Privacy PolicyEthics Statement
Copyright @ 2003 – 2021 Bleeping Computer® LLC – All Rights Reserved
Not a member yet? Register Now
Read our posting guidelinese to learn what content is prohibited.


Article Categories:
Cybersecurity News

Comments are closed.