Home / Tech / News / IBM uncovers more attacks against Covid-19 vaccine supply chain

IBM uncovers more attacks against Covid-19 vaccine supply chain

IBM’s new research found that the targets were broader than originally detected, involving emails sent in early September that sought to trick people into opening malicious attachments that purported to contain requests for quotes for a solar-powered vaccine refrigerator and other equipment specific to the industry.

IBM didn’t identify any suspected hacking group behind the attacks, but the company previously said it believed the campaign was the work of an unspecified nation-state. IBM didn’t identify any suspected hacking group behind the attacks, but the company previously said it believed the campaign was the work of an unspecified nation-state.
IBM didn’t identify any suspected hacking group behind the attacks, but the company previously said it believed the campaign was the work of an unspecified nation-state.

A hacking campaign that International Business Machines Corp. detected last year against organizations involved in the manufacturing, transportation and storage of Covid-19 vaccines was wider than initially understood and is now found to have targeted more than 40 companies in 14 countries, the company said Wednesday.

The attacks against the “cold chain” -- a temperature-controlled supply chain -- highlight the risk of intellectual property theft and potential disruption for stakeholders in the fragile process of shipping vaccines across long distances at stable temperatures, researchers from IBM’s X-Force cybersecurity group wrote in a blog post.

ALSO READ: 97% of organisations faced mobile malware attack in 2020: Checkpoint report

More From This Section

“Exploring the available emails, X-Force uncovered multiple features which likely signal the actor’s exceptional knowledge of the cold chain,” the researchers wrote. “While our previous reporting featured direct targeting of supranational organizations, the energy and IT sectors across six nations, we believe this expansion to be consistent with the established attack pattern, and the campaign remains a deliberate and calculated threat.”

ALSO READ: 57% of firms in India suffered downtime due to data loss in 2020: Acronis survey

IBM didn’t identify any suspected hacking group behind the attacks, but the company previously said it believed the campaign was the work of an unspecified nation-state. IBM didn’t say whether the attacks were effective in getting people to click on the malicious attachments.

By Jordan Robertson

Follow HT Tech for the latest tech news and reviews, also keep up with us on Twitter, Facebook, and Instagram. For our latest videos, subscribe to our YouTube channel.