Posted on 06/13/2019 6:22:46 PM PDT by bitt
Belgium-based aircraft parts maker ASCO Industries has been severely hit by a ransomware attack that started last week.
Founded in 1954, ASCO has four manufacturing plants in Belgium, the US, Canada and Germany, and it employs 1,500 people. The company’s products are used by most aircraft manufacturers, including Airbus, Boeing and Lockheed Martin. ASCO was taken over last year by US-based Spirit AeroSystems.
According to media reports, ASCO’s machines were infected with an unidentified piece of ransomware on Friday and the company has been having trouble restoring operations.
The incident has reportedly disrupted the company’s ability to supply products to customers and impacted roughly 1,000 employees, which have been placed on temporary leave.
SecurityWeek has reached out to ASCO for clarifications, but the firm has yet to respond. ASCO representatives said the attackers don’t appear to have stolen any information.
“The attack against ASCO has once again highlighted the dangerous power of ransomware. The attack has brought operations to a halt and resulted in over a thousand employees being sent home which will be having a significant impact on the organisation financially,” Andrea Carcano, CPO and co-founder of Nozomi Networks, told SecurityWeek.
“When it comes to ransomware, prevention is always better than cure as, if infected, it is never advisable to pay the ransom as it is not guaranteed that the criminals will honour the agreement and restore systems/data. Organisations should prepare for these types of events and have an incident response plan in place to help limit the damage caused, not only to production but also to customer trust and brand reputation,” Carcano added.
(Excerpt) Read more at securityweek.com ...
Imho, bad s**t like this typically happens because corporate culture doesn’t incorporate sensible risk management in decision making. In fact, there’s probably people in senior management who fight against it. I heard about the ASCO debacle from another vendor, who has screwed their customers because they sole-sourced with ASCO, and said company ignored advice about it being an existential exposure. A lot of this risk management is very pro forma, no excuses about “unexpected” please. I allowed for my vendors failure risk and adjusted my exposure accordingly, so I’m now irritated but not desperate.
Our ‘intelligence’ thugs could put a stop to this crap if they weren’t so busy trying to take down a duly elected President of the United States.
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.