-
CONATECO
June 3, 2023
•
[ hack ]
The DarkRace cyber criminal gang claims responsibility for a cyber attack to Conateco, a terminal in the Naples port.
-
Gruppo Mercurio
June 2, 2023
•
[ ransomware, malware, automotive ]
Gruppo Mercurio, an Italian vehicle transportation company, is hit with a LockBit 3.0 ransomware attack.
-
Swiss Parliament website
June 2, 2023
•
[ hack, ddos, government ]
The pro-Russia NoName057(16) collective attacks the Swiss parliament website while its members discuss whether the country abandoned its neutrality to send aid to Ukraine.
-
CareNet Medical Group (CMG)
June 2, 2023
•
[ hack, healthcare ]
CareNet Medical Group (CMG) files a notice of data breach after learning that hackers were able to obtain confidential patient information stored on the company's IT network.
-
Elgon Information Systems (HomecareGPS)
June 2, 2023
Elgon Information Systems (Elgon), which does business under the name HomecareGPS, files a notice of data breach after learning that confidential consumer information entrusted to the company was subject to unauthorized access.
-
Globalcaja
June 2, 2023
•
[ ransomware, malware, finance ]
Globalcaja, a major lender in Spain reveals to be dealing with a ransomware attack affecting several offices. The Play ransomware gang claims responsibility for the attack.
-
Hospitality Staffing Solutions (HSS)
June 2, 2023
•
[ hack ]
Hospitality Staffing Solutions (HSS) files a notice of data breach after discovering that an unauthorized party accessed the company's computer network.
-
University of Rochester
June 2, 2023
•
[ hack, sqlinjection, education ]
The University of Rochester confirms a data theft as a result of the exploitation of the CVE-2023-34362 vulnerability affecting popular file transfer tool MOVEit.
-
Harris Health System
June 2, 2023
•
[ hack, sqlinjection, healthcare ]
Harris Health System notifies patients and employees that some of their protected health information may have been compromised during a cyberattack exploiting the CVE-2023-34362 MOVEit vulnerability.
-
Performance Health Technology (PH Tech)
June 2, 2023
Performance Health Technology (PH Tech), a company that provides data management services to U.S. healthcare insurers, confirms in a notice that it was impacted by the MOVEit mass-hacks
-
TSG Interactive US Services Limited (d/b/a PokerStars)
June 2, 2023
•
[ ransomware, cve-2023-34362, technology ]
PokerStars is added to the list of the victims of the Clop ransomware gang exploiting the CVE-2023-34362 vulnerability.
-
YKK
June 2, 2023
•
[ ransomware, malware, manufacturing ]
The Japanese zipper giant YKK confirms that its U.S. operations were targeted by hackers in recent weeks but said it was able to contain the threat before damage was caused. However the LockBit ransomware gang posts the company name on its leak site, threatening to leak the stolen data.
-
Wake Family Eye Care
June 2, 2023
•
[ ransomware, malware, healthcare ]
Wake Family Eye Care files a notice of data breach after discovering that a recent ransomware attack compromised confidential patient information.
-
Allegheny County
June 1, 2023
Allegheny County, Pennsylvania, files a notice of data breach after confirming that a vulnerability in MOVEit, a file-transfer program used by Allegheny County, resulted in an unauthorized party being able to access confidential consumer information.
-
Allegiant Air
June 1, 2023
•
[ hack, sqlinjection ]
Allegiant Air confirms that 1,405 people had information accessed through the exploitation of the MOVEit vulnerability.
-
biorieux
June 1, 2023
biorieux files a notice of data breach after discovering that the MOVEit file transfer software used by Vitality Group, contained a vulnerability allowing hackers to access confidential consumer information that had been provided to bioMrieux.
-
University System of Georgia (USG)
June 1, 2023
•
[ ransomware, malware, education ]
Threat actors are actively exploiting a zero-day vulnerability in the MOVEit Transfer file transfer software, tracked as CVE-2023-34362, to steal data from organizations. Few days later the Clop ransomware gang claims responsibility for the attacks and starts extorting companies impacted by the data theft attacks,
-
Law Foundation of Silicon Valley
June 1, 2023
The Law Foundation of Silicon Valley, a California law firm that provides free services to those in need, discloses to have been it by a ransomware attack compromising the data of 42,000 individuals.
-
North Mississippi Health Services
June 1, 2023
North Mississippi Health Services (NMHS) posts a notice on its website describing a third-party data breach at Cadence Bank, a company that provides treasury management services to NMHS, due to the exploitation of MOVEit vulnerability.
-
Ofcom
June 1, 2023
•
[ hack, sqlinjection, government ]
Britain's communications regulator Ofcom announces that confidential information which it held on companies it regulates was downloaded by hackers exploiting the CVE-2023-34362 vulnerability in the MOVEit file transfer tool.
