Hackers are targeting construction firms - Velox Systems

Hackers are targeting construction firms

An image depicting a hacker gaining access to a computer

 

Hackers are targeting construction firms. The construction industry is facing growing threats from cyberattacks, with hackers specifically targeting FOUNDATION Accounting Software. Sub-industries such as plumbing, HVAC (heating, ventilation, and air conditioning), and concrete are among those being affected.

“Attackers have been observed brute-forcing the software at scale and gaining access simply by using the product’s default credentials,” warned cybersecurity firm Huntress. This means the malicious actors could brute force the server, leveraging the xp_cmdshell configuration option to run arbitrary shell commands. Essentially, remote actors would being able to gain control of the enterprises’ hardware and run shell commands/scripts as if they had access right from the internal system command.

Targeting through FOUNDATION software

A critical vulnerability lies in FOUNDATION’s Microsoft SQL server, which includes two privileged accounts often left with unchanged default credentials. As Huntress explained, this flaw allows threat actors to brute-force the server, gain access, and execute shell commands and scripts as if they were operating directly from the system command prompt.

The first signs of this activity were detected on September 14, 2024, when Huntress recorded approximately 35,000 brute-force login attempts.

How to Reduce Hacking Risks

To reduce the risk of such attacks, experts recommend:

  1. Rotating default account credentials
  2. Avoid exposing the application to the public internet whenever possible.
  3. Disable the xp_cmdshell option where appropriate.

Hackers are targeting construction firms. The construction industry’s vulnerabilities extend beyond software exposure, including risks to intellectual property and financial records. This puts your firm at risk of financial damage, reputational/PR damage, as well as have your unique designs, blueprints, and other distinct company property made public.  With so much at stake, how secure is your construction firm?

If you’re unsure or want to strengthen your defenses against cyber threats in 2025, Velox Systems has you covered. We have services tailored to the needs of construction firms’ security. Let’s set up a quick chat to explore your company’s vulnerabilities and secure your enterprise for the future.