Canadian mining firm shuts down mill after ransomware attack

Canadian mining firm shuts down mill after ransomware attack

The Canadian Copper Mountain Mining Company (CMMC) in British Columbia has introduced that it was the goal of a ransomware attack that impacted its functions.

CMMC, partly owned by Mitsubishi Resources Company, is an 18,000-acre assert that generates an typical of 100 million lbs . of copper for each 12 months and has an estimated mineral reserve capability for an additional 32 years.

The cyberattack concentrating on the firm transpired late on December 27, 2022, and the firm’s IT group responded promptly by utilizing the predefined risk administration units and protocols.

To have the incident, CMMC isolated the infected units and took down other elements to analyze them extensively and decide the ransomware attack’s effects.

CMMC’s engineers experienced to shut down the mill as a preventative measure to decide the position of its management system, whilst other procedures switched to guide functions.

“The Firm’s external and internal IT groups are continuing to evaluate dangers and are actively establishing further safeguards to mitigate any even more chance to the Corporation,” reads the announcement on CMMC’s internet site.

“Copper Mountain is investigating the resource of the assault and is in make contact with with the appropriate authorities, who are aiding the Company” – Canadian Copper Mountain Mining Company

CMMC’s announcement clarifies that the cybersecurity incident did not compromise the security measures or lead to any kind of environmental harm.

The company’s key precedence at this time is to return to normal operations as soon as doable, restricting the monetary effects of the incident.

An exciting element learned by BleepingComputer with the assist of cyber-intelligence agency KELA is that a cybercriminal offered to market account credentials belonging to a CMMC employee on a hacker marketplace on December 13, 2022.

Specified the shut dates amongst the credential currently being offered for sale and the disclosure of the ransomware assault, it is possible that that hackers used a compromised account to acquire a foothold on the firm’s community.