“The attackers specifically targeted a limited access network, used by both a third-party and internally, that was not secure due to recent changes at the company (e.g. restructuring/rebranding, new building, new building lease, new network setup or a combination of any of these scenarios),” Linares told The Register.
Malicious parties get access to your system when you stumble across an unsecure or compromised website.
Stay safe online and keep your critical infrastructure as secure as possible by following these steps:
- Keep browsers and plug-ins updated – Any device connected to the internet is open to attack
- Be alert of new files or network connections on your system that you did not add
- Regularly use multi-factor authentication and strong, unique passwords
- Any device connected to the internet is open to attack Keep software up-to-date