New Hexane Group Targets Oil and Gas, Telco Providers

Are Colorado’s oil and gas wars over? Hearing on new state law yields few signs of peace
August 2, 2019
Trump promised offshore jobs. That’s not happening
August 2, 2019
Show all

New Hexane Group Targets Oil and Gas, Telco Providers

A new threat group discovered recently focuses on organizations in the oil and gas industry and attacking telecommunication providers most likely in an attempt to reach the main target.

Called Hexane by security researchers, the actor has been active since at least the middle of 2018 and ramped up actions at the beginning of 2019 and all through the middle of the year.
A distinct group

Uncovered by Dragos Inc, a cybersecurity company offering defenses for organizations managing critical infrastructure, Hexane seems to follow the lead of adversaries with the same interests.

By targeting third-party entities like telco service providers, Hexane’s intent is to infiltrate the supply chain of potential targets.

Although there are similarities with the way other groups operate (Magnallium, Chrysene – both collecting info on targets since at least 2017 ) in that it’s interested in oil and gas companies, Hexane is a unique entity, with different behavior, tools, techniques, and set of targets.

“For instance, HEXANE’s observed victimology is mostly focused on critical infrastructure, but divided between ICS verticals and telecommunications operations” – Dragos Inc.

Further evidence that it is an independent group is provided by its infrastructure and capabilities. The pattern observed for creating malicious domains (follows general IT themes) and the use of new techniques to evade detection distinguish it from the other groups tracked by Dragos. At the moment, the company tracks the activity of nine adversaries interested in industrial control systems (ICS).
Picks victims in the Middle East

According to the company, Hexane goes after companies in the Middle East, with Kuwait being a primary operating region. As for telcos, the adversary targets organizations in the greater Middle East, Central Asia, and Africa.

The most active period of the group coincides with the escalation of tensions in the Middle East due to political and military turmoil.

Victims of this threat actor were compromised via malicious documents that drop malware, paving the way for further stages of the attack.

Researchers at Dragos believe that Hexane has not yet developed capabilities for taking down ICS networks. However, they assess this with moderate confidence, based on the visibility into this adversary’s operations.

Leave a Reply

Your email address will not be published. Required fields are marked *

Rate Our Services
close slider

Rate Our Website and / or Training Services

WeCreativez WhatsApp Support
Our AGOGPro team is here to answer your questions. Ask us anything!
Hi, how can I help?

Our Leadership Values

Do what’s right

 

By acting with integrity, behaving responsibly and treating people with respect.

Deliver wining results

By expecting to win, owning personal and collective accountability to deliver; taking appropriate risks without fear of failure while challenging for constant improvement

Build collaborative teams

By attracting only the best people, serving, recognizing and rewarding their development and success, fostering a collaborative and open environment with the freedom to disagree but always making timely decisions and aligning behind them

Get things done in fact based, disciplined way

By seizing the initiative with highest level of urgency and energy; meeting all commitments responsively while being objective, analytical and using effective process

Learn and grow, inwardly and outwardly

By being introspective personally and organizationally, freely admitting mistakes or development needs; deeply understanding and connecting with stakeholders globally as a primary source of learning and growth

Dare to be transparent, passionate and humble

By having the self-confidence and courage to be completely candid and direct; willing to communicate openly in a trusting manner; acting with passion, conviction and personal humility, especially when delivering winning results