3 min read

Aluminium plants hit by cyber-attack, global company turns to manual operations

Graham CLULEY

March 19, 2019

Ad One product to protect all your devices, without slowing them down.
Free 90-day trial
Aluminium plants hit by cyber-attack, global company turns to manual operations

Norsk Hydro, one of the world’s largest producers of aluminium, says that it is battling an “extensive cyber-attack” that first hit its systems on Monday evening and then escalated overnight.

Norsk Hydro, often just referred to as Hydro, operates in some 50 countries worldwide, and is a major producer of hydroelectric power in Norway.

The most obvious external sign that anything is awry comes if you visit the company’s website at hydro.com.

Normally it looks like this:

But now the company appears to be redirecting website visitors to a holding page that displays a stark message:

Clearly the problem is significant and has affected many systems, impacting different areas of the company’s business globally.

Reuters reports that the company has shut several of its metal extrusion plants used to make components for car manufacturers and other industries, and that smelters as far afield as Brazil, Qatar, and Norway had been switched to manual operations.

In a Facebook post, Hydro says that people’s safety have not been put in danger by the attack, and that its main priority is to limit the attack as much as possible to ensure that people continue to remain safe.

According to the company, it doesn’t yet know the attack’s full impact, and it believes it is too early to determine how customers may be affected.

However, thankfully, Hydro does say that its hydroelectric power plants are continue to run normally as they are on isolated IT systems.

For now, with no easy method of updating its website, and its email systems down, Hydro says that its main external communication channel will be its Facebook account. (Let’s just hope that Facebook doesn’t suffer its own outage like last week, eh?)

It’s clearly not the type of situation that any corporation wants to find itself in, but it appears that Hydro is making an attempt to be transparent about what has happened, considering that it is still probably attempting to gather information.

Hydro has informed the authorities about the attack, including the Norwegian National Security Authority (NSM) which says that it is sharing details with other business sectors and international partners.

One thing which isn’t clear at this time is whether this was a targeted attack by someone against Hydro, or the unfortunate result of – say – a common-or-garden ransomware attack that struck particularly hard.

If it were an attack by state-sponsored hackers against another nation’s infrastructure, it certainly wouldn’t be the first. For instance, in recent years there have been a number of attacks targeting the Ukrainian electric power industry.

Anyone responsible for the security of industrial control systems and national infrastructure should think carefully about whether they have done enough to protect their systems, and what can be done to further reduce the opportunities for external hackers to attack.

As news of the Norsk Hydro cyber attack spread, aluminium prices rose to a three-month high in early trading on the London Metal Exchange.

tags


Author



Right now

Top posts

Enhance your cyber resilience and privacy on Computer Security Day in four easy steps

Enhance your cyber resilience and privacy on Computer Security Day in four easy steps

November 29, 2022

2 min read
How to monitor your online privacy during your Thanksgiving trip

How to monitor your online privacy during your Thanksgiving trip

November 22, 2022

3 min read
Just your yearly dose of Black Friday spam: Cybercrooks get ahead of the game to steal shoppers’ info

Just your yearly dose of Black Friday spam: Cybercrooks get ahead of the game to steal shoppers’ info

November 16, 2022

6 min read
Bitdefender VPN in 2022: the new, the improved, and the soon-to-be

Bitdefender VPN in 2022: the new, the improved, and the soon-to-be

November 14, 2022

5 min read
Cyber Tips for a Spook-Free Halloween

Cyber Tips for a Spook-Free Halloween

October 26, 2022

3 min read
August Spam Debrief: Bitdefender Labs Warns of Fraud Campaigns Exploiting the Russia-Ukraine War

August Spam Debrief: Bitdefender Labs Warns of Fraud Campaigns Exploiting the Russia-Ukraine War

August 31, 2022

4 min read

FOLLOW US ON

SOCIAL MEDIA


You might also like

Hacking cars remotely with just their VIN Hacking cars remotely with just their VIN
Graham CLULEY

December 05, 2022

2 min read
Russian courts attacked by CryWiper malware that poses as ransomware Russian courts attacked by CryWiper malware that poses as ransomware
Graham CLULEY

December 05, 2022

2 min read
Android App in Google Play Store Was Harvesting SMS Messages Helping Criminals Create New Accounts Android App in Google Play Store Was Harvesting SMS Messages Helping Criminals Create New Accounts
Silviu STAHIE

December 02, 2022

1 min read