Blueprints released, company claims they aren’t a big deal

I was catching up with Krebs on Security today and a story a little back dated talks about a company who had security blueprints taken and an attack for the extortion variety type stopped.

As these cases go, it always starts somehow either by an email or through a vulnerability through software. After that, the actors can stay inside of the network for as long as they want.

Apparently 38,000 documents were extorted from the company, according to the article which has a link to a news report. This material was uploaded to a public server, the article continues.

Larsson quotes Gunnebo CEO Stefan Syrén saying the company never considered paying the ransom the attackers demanded in exchange for not publishing its
internal documents. What’s more, Syrén seemed to downplay the severity of the exposure.

“I understand that you can see drawings as sensitive, but we do not consider them as sensitive automatically,” the CEO reportedly said. “When it comes
to cameras in a public environment, for example, half the point is that they should be visible, therefore a drawing with camera placements in itself is
not very sensitive.”

It remains unclear whether the stolen RDP credentials were a factor in this incident. But the password to the Gunnebo RDP account — “password01” — suggests
the security of its IT systems may have been lacking in other areas as well.

The RDP credentials, according to the article, was set up by the hackers so they can have access in to the company any time they wish.

Want to read the entire story from Krebs? Security Blueprints of Many Companies Leaked in Hack of Swedish Firm Gunnebo is the article, and I hope you enjoy this one.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.