Malware

Visser Precision, a part maker for Tesla, Boeing, and Lockheed Martin hit with data-stealing ransomware

Data-stealing ransomware infected systems at Visser Precision, a parts maker for many enterprises, including Tesla, Boeing, and Lockheed Martin.

Visser Precision is a parts maker for many companies in several industries, including aerospace, automotive, industrial and manufacturing.

The company disclosed a ransomware attack that might have exposed data related to multiple business partners, including Tesla, SpaceX, Boeing and Lockheed Martin.

“[Visser Precision was] the recent target of a criminal cybersecurity incident, including access to or theft of data,” reads a statement issued by the company and published by TechCrunch.

A company spokesman told TechCrunch that the company is still investigating the security breach that it has resumed normal operations.

Security experts believe the systems at the company have been infected with the DoppelPaymer ransomware, a malware that also implements data-stealing capabilities.

Operators behind DoppelPaymer and other threats, including Nemty ransomware, Maze ransomware, and Sodinokibi have started threatening victims of leaking the stolen data using specially set-up leak sites.

DoppelPayer appeared in the threat landscape in July 2019, experts believe that some members of TA505 cybercrime gang left the group and forked the source code of both Dridex and BitPaymer to develop the ransomware.

Crooks behind the attack against Visser Precision have started leaking clients’ stolen documents, including non-disclosure agreements between the company and Tesla and SpaceX. Experts also reported the leak of a partial blueprint for a missile antenna designed by Lockheed Martin.

According to TechCrunch, a Lockheed Martin spokesperson said the company is “aware of the situation with Visser Precision and are following our standard response process for potential cyber incidents related to our supply chain.”

[adrotate banner=”9″] [adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – hacking, Visser Precision)

[adrotate banner=”5″]

[adrotate banner=”13″]

Pierluigi Paganini

Pierluigi Paganini is member of the ENISA (European Union Agency for Network and Information Security) Threat Landscape Stakeholder Group and Cyber G7 Group, he is also a Security Evangelist, Security Analyst and Freelance Writer. Editor-in-Chief at "Cyber Defense Magazine", Pierluigi is a cyber security expert with over 20 years experience in the field, he is Certified Ethical Hacker at EC Council in London. The passion for writing and a strong belief that security is founded on sharing and awareness led Pierluigi to find the security blog "Security Affairs" recently named a Top National Security Resource for US. Pierluigi is a member of the "The Hacker News" team and he is a writer for some major publications in the field such as Cyber War Zone, ICTTF, Infosec Island, Infosec Institute, The Hacker News Magazine and for many other Security magazines. Author of the Books "The Deep Dark Web" and “Digital Virtual Currency and Bitcoin”.

Recent Posts

U.S. CISA adds a Samsung MagicINFO 9 Server flaw to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds a Samsung MagicINFO 9 Server vulnerability to its…

36 minutes ago

New Signal update stops Windows from capturing user chats

Signal implements new screen security on Windows 11, blocking screenshots by default to protect user…

8 hours ago

Law enforcement dismantled the infrastructure behind Lumma Stealer MaaS

Microsoft found 394,000 Windows systems talking to Lumma stealer controllers, a victim pool that included…

13 hours ago

Russia-linked APT28 targets western logistics entities and technology firms

CISA warns Russia-linked group APT28 is targeting Western logistics and tech firms aiding Ukraine, posing…

16 hours ago

A cyberattack was responsible for the week-long outage affecting Cellcom wireless network

Cellcom, a regional wireless carrier based in Wisconsin (US), announced that a cyberattack is the…

1 day ago

Coinbase data breach impacted 69,461 individuals

Cryptocurrency exchange Coinbase announced that the recent data breach exposed data belonging to 69,461 individuals.…

1 day ago