Difference between revisions of "Software/S0008"

From attackics
Jump to navigation Jump to search
(username removed)
(username removed)
m (edit summary removed)
Line 3: Line 3:
 
|Description={{LinkThisPage}} is ransomware that has been tied to various attacks on industrial and manufacturing firms with apparently catastrophic consequences.[[CiteRef::LockerGoga - Wired - 201903]][[CiteRef::LockerGoga - DoublePulsar]][[CiteRef::LockerGoga - Hydro]]
 
|Description={{LinkThisPage}} is ransomware that has been tied to various attacks on industrial and manufacturing firms with apparently catastrophic consequences.[[CiteRef::LockerGoga - Wired - 201903]][[CiteRef::LockerGoga - DoublePulsar]][[CiteRef::LockerGoga - Hydro]]
 
|WindowsBuiltin=No
 
|WindowsBuiltin=No
|Contributors=Joe Slowik
+
|Contributors=Joe Slowik - Dragos
 
|AliasDescriptions={{Alias Description
 
|AliasDescriptions={{Alias Description
 
|Alias=LockerGoga
 
|Alias=LockerGoga

Revision as of 10:20, 6 January 2020

LockerGoga
Software
ID S0008
Aliases LockerGoga
Type Malware
External Contributors Joe Slowik - Dragos

LockerGoga is ransomware that has been tied to various attacks on industrial and manufacturing firms with apparently catastrophic consequences.123

Associated Software Descriptions

  • LockerGoga - 2

Techniques Used

  • Loss of Productivity and Revenue - While Norsk Hydro attempted to recover from a LockerGoga infection, most of its 160 manufacturing locations switched to manual (non-IT driven) operations. Manual operations can result in a loss of productivity.23
  • Loss of View - Some of Norsk Hydro's production systems were impacted by a LockerGoga infection. This resulted in a loss of view which forced the company to switch to manual operations.23
  • Loss of Control - Some of Norsk Hydro's production systems were impacted by a LockerGoga infection. This resulted in a loss of control which forced the company to switch to manual operations.23