Manufacturer of spare parts for Tesla and SpaceX confirmed the data breach
Visser Precision is an American company from Denver that develops special parts for spacecraft, cars and aircraft. Some time ago, a manufacturer confirmed a cyber attack on it. In its statement, the company specified that it became "the recent target of a criminal cybersecurity incident, including access to or theft of data.
TechCrunch has learned that the details of the attack were never found, the attackers were also not found, and Visser "continues its comprehensive investigation of the attack, and business is operating normally".
However, a number of cybersecurity experts have already conducted their own investigation and found that DoppelPaymer was responsible for the attack using a self-developed data encryption program. It has been in operation since mid-2019 and has already managed to steal data from several large corporations. "Some companies may not even realize that their data has been exfiltrated prior to it being published," said Callow.
The stolen data promises to be published if it is not ransomed for them by the company, similar cases have already happened before, for example, in December Allied Universal also became a victim of a cyber attack, as a result of which confidential data of its employees and some business materials were openly published because it refused to pay the ransom.
Brett Callow, a threat analyst at Emsisoft, reported that such data was published by DoppelPaymer. Files that were stolen from Visser have already started to be published online. Among the published and available for downloading the data materials of customers of the manufacturer's products, including major companies such as Tesla, SpaceX and Boeing. As an interesting document that penetrated the network, was an electronic model of the antenna for the rocket, containing "Lockheed Martin proprietary information".
At the same time, customers of Visser's products did not comment on the data leak. The only statement about this was made by Callow: "Data theft is a strategy that multiple groups have now adopted, and therefore, ransomware should be treated as data breaches until it can be established they are not".