Honeywell Says Malware Disrupted IT Systems

Industrial giant Honeywell on Tuesday revealed that some of its IT systems were disrupted as a result of a malware attack.

The company said the intrusion was detected “recently” and only a “limited number” of IT systems were disrupted. No other information has been provided regarding impact.

An investigation into the incident is ongoing, but Honeywell says it has found no evidence to date that the attacker managed to exfiltrate data from systems that store customer information. However, based on its statement, it cannot completely rule out that some customer data may have been compromised.

“At this time, we do not expect this incident will have a material impact on Honeywell,” the company stated. “We promptly took steps to address the incident, including partnering with Microsoft to assess and remediate the situation. Our systems have since been secured, we identified the point of entry, and all unauthorized access has been revoked.”

Law enforcement has been notified and impacted services should be working properly by now.

SecurityWeek has reached out to Honeywell to find out if the incident involved a piece of ransomware.

The news from Honeywell comes shortly after Canada-based IoT company Sierra Wireless revealed that some of its internal IT systems were recently hit by ransomware. Sierra, which also provides solutions for — among others — industrial organizations, said the incident disrupted production at manufacturing facilities.

Other major companies that recently reported disruption to production operations due to a cyberattack include beverage conglomerate Molson Coors and packaging giant WestRock.

Related: Vulnerabilities Allow Hackers to Access Honeywell Fire Alarm Systems

Related: Serious Vulnerabilities Expose Honeywell Surveillance Systems to Attacks

Related: Honeywell Sees Rise in USB-Borne Malware That Can Cause Major ICS Disruption