KISTERS Ransomware Attack

-


The attack became on the night of November 10th, the company announced: "As far as we know, the attackers gained access to the computer network via an orchestrated ransomware attack despite a strong security system," explained the management.


The software provider specializing in the energy industry therefore no longer has access to its own IT because it has shut down the system "to avert further damage". The extent of the damage is still unclear. At the moment, "no statements can be made about which data are affected by the attack," says managing director Klaus Kisters. Both the Federal Office for Information Security and the criminal police and a specialist team of data forensics have already started their investigations. In the recent past, the energy industry has been increasingly targeted by Cyber ​​criminals advised. Attacks on public utilities have already made headlines several times (energate reported).


Kisters is working on returning from crisis mode

The Kister employees are only active in crisis mode and can therefore only be reached via their mobile phones, not by e-mail or landline telephony. As soon as knowledge is available about which data is involved and when the company can return to normal operation, Kisters AG wants to "provide clear and open information", announced the management: "Now for us it is first about getting back to everything quickly We are working hard on that, "says Klaus Kisters. It will also be about learning from the incident and increasing cybersecurity for the future.

Popular posts from this blog

LIST OF STOP DJVU Extensions

-
Image
Extension appended to the end of the encrypted data filename Older STOP (Djvu) Ransomware encryptions: .STOP, .SUSPENDED, .WAITING, .PAUSA, .CONTACTUS, .DATASTOP, .STOPDATA, .KEYPASS, .WHY, .SAVEfiles, .DATAWAIT, .INFOWAIT, .puma, .pumax, .pumas, .shadow, .djvu, .djvuu, .udjvu, .djvuq, .uudjvu, .djvus, .djvur, .djvut .pdff, .tro, .tfude, .tfudeq, .tfudet, .rumba, .adobe, .adobee, .blower, .promos, .promoz, .promock, .promoks, .promorad,, promorad2, .kroput, .kroput1, .charck, .pulsar1, .klope, .kropun, .charcl, .doples, .luces, .luceq, .chech, .proden, .drume, .tronas, .trosak, .grovas, .grovat, .roland, .refols, .raldug, .etols, .guvara, .browec, .norvas, .moresa, .verasto, .hrosas, .kiratos, .todarius, .hofos, .roldat, .dutan, .sarut, .fedasot, .forasom, .berost, .fordan, .codnat, .codnat1, .bufas, .dotmap, .radman, .ferosas, .rectot, .skymap, .mogera, .rezuc, .stone, .redmat, .lanset, .davda, .poret, .pidon, .heroset, .myskle, .boston, .muslat, .gerosan, .vesad, .horon, .neras, .tru...
Read-more »

How to remove syzs_dl_svr.exe error

-
Image
What is syzs_dl_svr.exe? The file syzs_dl_svr.exe is an executable program associated with the Gameloop Android emulator , commonly used to play mobile games like PUBG Mobile and Call of Duty Mobile on a Windows PC. It typically installs in the following directory: C:\Program Files\txgameassistant\appmarket\ Although it’s a legitimate component of Gameloop, syzs_dl_svr.exe has raised concerns due to its hidden nature, network activity, and moderate danger rating. Some malware programs also disguise themselves using this file name, especially when found in suspicious locations like: C:\Windows\ C:\Windows\System32\ Common Errors Caused by syzs_dl_svr.exe Many users report the following issues: Gameloop startup crashes Camtasia not responding , especially during editing or adding callouts High CPU or memory usage Suspicious internet activity (data being sent over open ports) Antivirus alerts marking it as a Trojan or potentially unwanted program (PUP) ...
Read-more »