Tuesday, November 26, 2024
HomeComputer SecurityExtensive Ransomware Attack Hits Worldwide Operation at Aluminum Manufacturing Gaint Norsk Hydro

Extensive Ransomware Attack Hits Worldwide Operation at Aluminum Manufacturing Gaint Norsk Hydro

Published on

Extensive Ransomware Attack forced to shut down operations at, Norsk Hydro, one of the world’s largest aluminum producers. The company suffered production outages across Europe and the U.S.

The cyberattack shut down operations in the number of metal extrusion and rolled products plants, which transform the aluminum into finished products for car makers and for other manufactured goods.

According to the press release, “Hydro isolated the plants and operations and they are now switching to manual operations and procedures as far as possible.”

- Advertisement - SIEM as a Service

Chief Financial Officer Eivind Kallevik told this is a classic ransomware attack and the situation is quite severe. He said that the company is doing everything possible to fix the problem.

Extensive Ransomware Attack

The attack hits Hydro late Monday with a new ransomware strain LockerGoga and escalates overnight. The infection hits most of the IT system which forces the staff to provide updates through social media.

LockerGoga encrypts the files stored on the computers and demands ransom payments. It encrypts files with RSA-4096 and AES-256 cryptography algorithms.

Kallevik said that the company is not intended to pay ransom to unlock the systems, instead, they planned to restore the data from backup servers. “We have good back-up systems and we have plans on how to restore it,” he said to Reuters.

Related Read: Ransomware Attack Response and Mitigation Checklist

Hydro is working to contain and neutralize the attack but does not yet know the full extent of the situation. It is too early to indicate the operational and financial impact, as well as timing to resolve the situation.

The company confirms that Primary plants are fully operational, as they shifted to manual process and no other plants are affected outside of Norway.

You can follow us on LinkedinTwitterFacebook for daily Cybersecurity updates also you can take the Best Cybersecurity courses online to keep your self-updated.

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

IBM Workload Scheduler Vulnerability Stores User Credentials in Plain Text

IBM has issued a security bulletin warning customers about a vulnerability in its Workload...

Multiple Flaws With Android & Google Pixel Devices Let Attackers Elevate Privileges

Several high-severity vulnerabilities have been identified in Android and Google Pixel devices, exposing millions...

Threat Actors Exploit Google Docs And Weebly Services For Malware Attacks

Phishing attackers used Google Docs to deliver malicious links, bypassing security measures and redirecting...

Python NodeStealer: Targeting Facebook Business Accounts to Harvest Login Credentials

The Python-based NodeStealer, a sophisticated info-stealer, has evolved to target new information and employ...

Free Webinar

Protect Websites & APIs from Malware Attack

Malware targeting customer-facing websites and API applications poses significant risks, including compliance violations, defacements, and even blacklisting.

Join us for an insightful webinar featuring Vivek Gopalan, VP of Products at Indusface, as he shares effective strategies for safeguarding websites and APIs against malware.

Discussion points

Scan DOM, internal links, and JavaScript libraries for hidden malware.
Detect website defacements in real time.
Protect your brand by monitoring for potential blacklisting.
Prevent malware from infiltrating your server and cloud infrastructure.

More like this

IBM Workload Scheduler Vulnerability Stores User Credentials in Plain Text

IBM has issued a security bulletin warning customers about a vulnerability in its Workload...

Multiple Flaws With Android & Google Pixel Devices Let Attackers Elevate Privileges

Several high-severity vulnerabilities have been identified in Android and Google Pixel devices, exposing millions...

Threat Actors Exploit Google Docs And Weebly Services For Malware Attacks

Phishing attackers used Google Docs to deliver malicious links, bypassing security measures and redirecting...