Breach cyber

Orpak Systems

Dec 21, 2024 1 min read
Orpak Systems

Orpak Systems, an Israel-based company, alongside U.S.-based Gasboy fuel management systems, were targeted by a cyberattack orchestrated by the Iran-linked CyberAv3ngers group. The attackers leveraged a custom IoT malware, IOCONTROL, to infiltrate and compromise critical infrastructure. Approximately 200 gas stations in Israel and the U.S. were affected. The attack's impact included potential service shutdowns and the risk of credit card information theft from customers. Persistence and stealth features of the malware posed serious concerns as it could operate undetected and survive device restarts.

Source: https://securityaffairs.com/171980/malware/iocontrol-cyberweapon-targets-us-isreael.html

TPRM report: https://scoringcyber.rankiteo.com/company/orpak

"id": "orp001122124",
"linkid": "orpak",
"type": "Breach",
"date": "12/2024",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"
{'affected_entities': [{'customers_affected': 'Approximately 200 gas stations',
                        'industry': 'Fuel Management Systems',
                        'location': 'Israel',
                        'name': 'Orpak Systems',
                        'type': 'Company'},
                       {'customers_affected': 'Approximately 200 gas stations',
                        'industry': 'Fuel Management Systems',
                        'location': 'U.S.',
                        'name': 'Gasboy',
                        'type': 'Company'}],
 'attack_vector': 'IoT Malware',
 'data_breach': {'type_of_data_compromised': ['Credit card information']},
 'description': 'Orpak Systems, an Israel-based company, alongside U.S.-based '
                'Gasboy fuel management systems, were targeted by a '
                'cyberattack orchestrated by the Iran-linked CyberAv3ngers '
                'group. The attackers leveraged a custom IoT malware, '
                'IOCONTROL, to infiltrate and compromise critical '
                'infrastructure. Approximately 200 gas stations in Israel and '
                "the U.S. were affected. The attack's impact included "
                'potential service shutdowns and the risk of credit card '
                'information theft from customers. Persistence and stealth '
                'features of the malware posed serious concerns as it could '
                'operate undetected and survive device restarts.',
 'impact': {'data_compromised': ['Credit card information'],
            'downtime': ['Potential service shutdowns'],
            'payment_information_risk': ['High'],
            'systems_affected': ['Gas station fuel management systems']},
 'motivation': 'Disruption and potential data theft',
 'threat_actor': 'CyberAv3ngers group',
 'title': 'Cyberattack on Orpak Systems and Gasboy Fuel Management Systems',
 'type': 'Cyberattack',
 'vulnerability_exploited': 'Custom IoT malware, IOCONTROL'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.