January 31, 2024 at 04:51PM
Johnson Controls International (JCI) spent $27 million remediating a September 2023 ransomware attack on its systems, which threatened physical security according to government officials. The attack locked up IT infrastructure and allowed data exfiltration. JCI’s incident management and response plan, along with external cybersecurity specialists, helped restore affected systems. The company expects ongoing investigation and recovery spending. No impact to digital products, services, or solutions was found.
Key takeaways from the meeting notes:
– Johnson Controls International (JCI) spent $27 million remediating a September 2023 ransomware attack on its systems, which was warned to threaten physical security by government officials at the time.
– The attack was discovered the weekend of Sept. 23, after reports of system outages, and was attributed to Dark Angels using a custom VMware ESXi encryptor.
– JCI implemented its incident management and response plan, business continuity plans, and remediation measures to restore affected systems and functions.
– The $27 million effort includes cyber insurance payouts and retaining outside cybersecurity specialists, with ongoing investigation and remediation efforts.
– Despite initial fears, JCI stated there is no evidence of impact on its digital products, services, and solutions, such as OpenBlue and Metasys, which are deployed in industrial settings and bring operational technology (OT) together with IT systems.