cyber Ransomware

ABB

Jul 9, 2023 1 min read
ABB

The world's largest provider of automation and electrification technology, ABB of Switzerland, acknowledged a data breach following a ransomware attack that purportedly affected its business operations.

The company's Windows Active Directory was compromised by the attack, infecting hundreds of devices, according to BleepingComputer, which broke the news of the incident first.

According to BleepingComputer, the Black Basta ransomware organisation was responsible for the attack, which also caused some projects to be postponed and affected some of the corporate factories.

The company claimed via a news release that threat actors gained unauthorised access to several ABB systems, installed ransomware, and stole some data.

Source: https://securityaffairs.com/146752/cyber-crime/abb-ransomware-attack.html

TPRM report: https://scoringcyber.rankiteo.com/company/abb

"id": "abb02812623",
"linkid": "abb",
"type": "Breach",
"date": "05/2023",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"
{'affected_entities': [{'industry': 'Automation and Electrification Technology',
                        'location': 'Switzerland',
                        'name': 'ABB',
                        'type': 'Company'}],
 'attack_vector': 'Windows Active Directory',
 'data_breach': {'data_exfiltration': 'Some data stolen'},
 'description': 'ABB of Switzerland acknowledged a data breach following a '
                'ransomware attack that affected its business operations. The '
                "company's Windows Active Directory was compromised, infecting "
                'hundreds of devices. The Black Basta ransomware organization '
                'was responsible for the attack, which also caused some '
                'projects to be postponed and affected some of the corporate '
                'factories. Threat actors gained unauthorized access to '
                'several ABB systems, installed ransomware, and stole some '
                'data.',
 'impact': {'data_compromised': 'Some data stolen',
            'downtime': 'Some projects postponed',
            'operational_impact': 'Affected some corporate factories',
            'systems_affected': ['Windows Active Directory',
                                 'hundreds of devices']},
 'initial_access_broker': {'entry_point': 'Windows Active Directory'},
 'motivation': 'Data theft and ransom',
 'ransomware': {'data_encryption': 'Ransomware installed',
                'data_exfiltration': 'Some data stolen',
                'ransomware_strain': 'Black Basta'},
 'references': [{'source': 'BleepingComputer'}],
 'response': {'communication_strategy': 'News release'},
 'threat_actor': 'Black Basta ransomware organization',
 'title': 'ABB Data Breach and Ransomware Attack',
 'type': 'Data Breach and Ransomware Attack'}
Published by
Roshni Ray
Roshni Ray
You might also like
Ransomware cyber

IdeaLab

public 1 min read
IdeaLab, a California-based technology startup incubator, experienced a data breach in October 2024 where hackers accessed sensitive information. The Hunters…
Jeremy C Jeremy C
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.