-
Rostec
March 23, 2022
•
[ espionage, malware, manufacturing ]
Multiple Chinese APT groups leveraged the Russia and Ukraine war as a lure for cyberespionage operations. The APT groups have been using sanctions-related baits to attack Russian defense institutes, part of the Rostec Corporation. The hackers used new tools, which have not previously been described: a sophisticated multi-layered loader and a backdoor dubbed SPINNER. These tools use advanced evasion and anti-analysis techniques such as multi-layer in-memory loaders and compiler-level obfuscations. The operation targeted defense research institutes in Russia and possibly also in Belarus. The purpose of the backdoor and the operation is likely to collect information from targets inside the high-tech Russian defense industry to support China in its technological advancement.
-
Undetermined
March 23, 2022
Swedish authorities reported an increase in DDoS attacks against government entities, specifically mentioning the targeting of financial and transportation administration.
-
Cashio
March 23, 2022
An anoymous attacker uses an infinite loop vulnerability to mint and steal the equivalent of $48M.
-
Establishment of the Agency for the Environmental Protection of the Marche Region
March 23, 2022
•
[ ransomware, leak, malware ]
Vice Society encrypts network and threatens to leak data on their dark web portal.
-
Ronin Network
March 23, 2022
A hacker steals almost $620 million in Ethereum and USDC tokens from Axie Infinity's Ronin network bridge, making it possibly the largest crypto hack in history.
-
Russian Ministry of Internal Affairs
March 23, 2022
•
[ hack, ddos, government ]
A number of web pages belonging to public authorities were subjected to DDoS attacks. The attacks compromised equipment and networks, by exploiting security vulnerabilities and enrolling them in a botnet network.
-
Ukranian Logistical Services
March 23, 2022
•
[ hack ]
UAC-0082 conducted a destructive attack on the network of a transportation/logistics provider, the type of organization that could be involved in moving Ukrainian supplies to conflict hotspots. The firm is headquartered in western Ukraine, where much of the foreign military and humanitarian assistance is entering the country.
-
Undetermined
March 23, 2022
•
[ leak, finance ]
Anonymous leaked 28GB worth of a Russian bank's data now available for public download. Distributed Denial of Secrets (aka DDoSecrets) announced archiving the entire data on its official website. Those 35,000 files contain some of the regulator's "secret agreements". They have been distributed to various online points. According to a post by the BBC Russian Service, in the files are hundreds of audit reports and information on bank owners.
-
Advanced Medical Practice Management (AMPM)
March 22, 2022
•
[ leak, healthcare ]
Advanced Medical Practice Management (AMPM) reveals to have suffered a data breach that impacted over 56,000 individuals
-
Hanon Systems
March 22, 2022
SNATCH executed exfiltration of data and ransomeware in targeted network. Data presented on dark web "leak site"
-
Morinaga
March 22, 2022
•
[ leak, manufacturing ]
Japanese confectionery manufacturer Morinaga warns that a suspected data breach of its online store may have exposed the personal information of more than 1.6 million customers.
-
Alacrity Solutions Group, LLC
March 22, 2022
•
[ leak ]
Alacrity Solutions Group, LLC notifies 54,674 people about a breach that involved their personal information.
-
Miratorg Agribusiness Holding
March 22, 2022
•
[ ransomware, malware, manufacturing ]
Moscow-based meat producer and distributor Miratorg Agribusiness Holding suffers a major cyberattack that encrypts its IT systems using Windows BitLocker.
-
Slobodna Dalmacija
March 22, 2022
As part of a cyber-enabled information operation, around 10 articles on the website of a Croatian newspaper - were replaced by articles promoting Russian disinformation.
-
Microsoft
March 22, 2022
Microsoft confirms that one of their employees was compromised by the Lapsus$ hacking group, allowing the threat actors to access and steal portions of their source code.
-
VKontakte (VK)
March 21, 2022
VKontakte users receive messages from what appears to be the official VK account about Russia's war on Ukraine, suggesting a possible hack.
-
Transneft
March 21, 2022
The Anonymous collective leaks roughly 79 gigabytes of emails allegedly stolen from Russian state-controlled oil pipeline company Transneft.
-
Horizon Actuarial Services
March 21, 2022
•
[ ransomware, malware, finance ]
Horizon Actuarial Services, a consulting firm that provides actuarial solutions to multiemployer benefit plans, notifies 38,418 individuals of a ransomware cyberattack.
-
Johnson Memorial Hospital
March 21, 2022
•
[ leak, malware, healthcare ]
Johnson Memorial Hospital announces that the personal and protected health information of some of its patients has been exposed as a result of a malware infection at the law firm, Reid and Riege.
-
OneRing Finance
March 21, 2022
•
[ financial, finance ]
Attackers steal $1.4 million from the One Ring protocol via a flash loan attack.