Johnson Controls Ransomware Cleanup Costs Top $27M & Counting

  /     /     /  
Publicated : 23/11/2024   Category : security


Johnson Controls Ransomware Cleanup Costs Top $27M & Counting


JCIs latest SEC filing notes that its smart-factory installations werent compromised, allaying physical security fears.



Johnson Controls International (JCI) spent $27 million remediating a September 2023 ransomware attack on its systems — an attack that government officials warned at the time could threaten physical security.
According to a filing with the US Securities & Exchange Commission (SEC) this week, the building automation, HVAC, and fire protection giant
uncovered the attack the weekend of Sept. 23
, after receiving reports of system outages. It was a ransomware hit that locked up internal IT infrastructure and allowed assailants to exfiltrate company data.
The filing didnt mention which gang JCI determined to be behind the cyberattack, but at the time researchers attributed it to Dark Angels using a custom VMware ESXi encryptor.
The company implemented its incident management and response plan and business continuity plans, including implementing remediation measures to mitigate the impact of the incident and restore affected systems and functions,
JCI noted in the SEC filing
, adding that the $27 million price tag for the effort takes into account cyber insurance payouts, and includes the cost of retaining outside cybersecurity specialists.
The filing noted that the investigation and remediation efforts remain ongoing, including the analysis of data accessed, exfiltrated or otherwise impacted during the cybersecurity incident, and expects to spend more on the recovery as a result.
Contrary to fears
floated by the Department of Homeland Security
after the attack, JCI also said that there is no evidence of any impact to its digital products, services, and solutions including OpenBlue and Metasys, referring to its smart-building and AI-enabled lines of business, which are often deployed in industrial settings and bring
operational technology (OT) together with IT systems
.

Last News

▸ Car Sector Speeds Up In Security. ◂
Discovered: 23/12/2024
Category: security

▸ Making use of a homemade Android army ◂
Discovered: 23/12/2024
Category: security

▸ CryptoWall is more widespread but less lucrative than CryptoLocker. ◂
Discovered: 23/12/2024
Category: security


Cyber Security Categories
Google Dorks Database
Exploits Vulnerability
Exploit Shellcodes

CVE List
Tools/Apps
News/Aarticles

Phishing Database
Deepfake Detection
Trends/Statistics & Live Infos



Tags:
Johnson Controls Ransomware Cleanup Costs Top $27M & Counting