“We are one of many businesses that have been the subject of a global cyber-attack in recent months, and we are working closely with other businesses to understand how we can better protect ourselves from this type of criminal activity.” Andrew Luxmoore, Fisher and Paykel
Fisher and Paykel has joined the list of major organisations recently subjected to cyber-attacks. Automaker, Honda and beverage company, Lion (formerly known as Lion Nathan) have also been hacked, following the Service NSW, Toll Group and BlueScope in having their operations similarly disrupted in recent months.
The Rise of Nefilim
Yesterday, ACS Information Age reported that the malware program known as Nefilim impacted Fisher and Paykel’s manufacturing and distribution operations. Although the threat was quickly identified and IT systems were locked down immediately, this week the hackers published corporate files on the dark web, including historic financial data, reviews and budgets.
The dark web site hosting Fisher and Paykel’s data leak is accessible via Tor and contains leaks from other Nefilim victims such as Toll Group, which was struck by the ransomware in May. Nefilim gradually leaks data downloaded from breached networks if the hacked companies fail to negotiate with them.
Last week, the second part of Toll Group’s data was uploaded to the site which contained information about their corporate relationship with Samsung.
Major Australian beverage company Lion was also hit with a cyber-attack this week, which impacted critical aspects of the brewing process that are heavily reliant on IT infrastructure. Lion was forced to revert to manual processes to maintain business continuity. Although it appears there have not been any data breaches, Lion is still thoroughly investigating the major incident.
The Value of Cyber Resilience Planning
The frequency and magnitude of these recent cyber threats during the global coronavirus pandemic highlights that cyber resilience planning must be prioritised and fully integrated within every organisations’ risk management framework.
Agilient is one of Australia’s leading security consultancies. We blend strategy and technology to address clients’ complex, high-priority cyber challenges. Our expertise provides our corporate and government clients with confidence that their IT security risk objectives are achieved. Contact us today to find out how we can assist your business.
Author: Phillipa Lee, Agilient Consultant