Tecon-Automatics NGO

As of March 2022, the company's main activity is the production of instruments and instruments for measurement, testing and navigation.

History

2024: Hacking controllers by hackers

On July 8, 2024, it became known about a large-scale cyber attack on the public sector and companies in Russia, carried out through hacked elevator control systems. The hacker group Lifting Zmiy from Eastern Europe exploited vulnerabilities in SCADA system controllers to penetrate the IT infrastructure of various organizations.

According to RBC, the attackers focused their attacks on the controllers of the Tekon-Avtomatika company, which specializes in the development of automated control systems and dispatching of elevator equipment. Hackers placed servers on hacked devices, which were subsequently used to attack other targets.

𝓲

Freepik

The Solar 4RAYS Group Cyber ​ ​ Threat Research Center reported Solar that among the victims of the attacks were organizations from the public sector, IT companies, telecommunications enterprises and representatives of other industries. It is noteworthy that the hackers used the infrastructure of the provider Starlink owned by the company to carry out their operations. SpaceX Elona Musk

Solar 4RAYS experts emphasize that there was no direct intervention in the operation of elevators, but theoretically the attackers could have had such an opportunity. Dmitry Marichev, a specialist at the Solar 4RAYS Cyber ​ ​ Threat Research Center, noted that the main goal of hackers was to complicate the detection of their activities by placing control servers on hacked controllers.

A vulnerability in Tecon-Automation systems was discovered back in 2022, after which the manufacturer took measures to improve security. However, according to experts, some users may not have updated the security settings on their devices, which allowed hackers to carry out a successful attack.^[1]

Notes