-
Gems Education
February 25, 2022
•
[ leak, education ]
Dubai's largest education operator suffers a cyberattack compromising student personal information.
-
Undetermined
February 25, 2022
UNC1151 has targeted a number of Belarusian organizations. Mass phishing emails have recently been observed; after the account is compromised, the threat actiors, by the IMAP protocol, get access to all the messages. Subsequently, the attacks leverage the contact information stored in the victim's address book to propagate the phishing messages to other targets.
-
Baltimore State Attorney's Office
February 24, 2022
The official Twitter account for the Baltimore State Attorney's Office is hacked.
-
RT
February 24, 2022
•
[ hack, ddos, technology ]
Anonymous takes down the site of Russian news outlet RT.
-
ARcare
February 24, 2022
•
[ hack, malware, healthcare ]
ARcare notifies people whose personal and/or medical information may have been accessed or acquired in a malware incident impacting 345,353 patients.
-
Kyiv Post
February 24, 2022
•
[ hack, ddos, technology ]
A Ukrainian news website reports that its site has been under constant cyberattack during the Russian-Ukrainian armed conflict. The DDOS attack incapacitated their systems and they had to find alternative means to publish the news by posting shortened stories on Facebook, Twitter, and LinkedIn.
-
Undetermined
February 24, 2022
•
[ espionage, phishing, finance ]
A phishing campaign was observed using a possibly compromised Ukrainian armed service member's email account, to target European government personnel involved in managing the logistics of refugees fleeing Ukraine. Researchers indicate there was a clear preference for targeting individuals with responsibilities related to transportation, financial and budget allocation, administration, and population movement within Europe.
-
Undetermined
February 24, 2022
ESET identified a further wiper in Ukrainian government networks, affecting organizations that had not been attacked by HermeticWiper and does not share any code similarity with it. On February 25, the attackers dropped a new version of IsaacWiper with debug logs, indicating that the attackers were unable to wipe some of the compromised machines. The malware was developed/employed at least since October 19, 2021.
-
Viasat
February 24, 2022
•
[ hack, ddos, technology ]
During the early hours of February 24, satellite internet connections were disrupted at Viasat. A mysterious cyberattack against the satellite's ground infrastructure "not the satellite itself "plunged tens of thousands of people into internet darkness. Impacted the ability of customers to connect to the ground network.
-
Ukrainian Ministry of Internal Affairs
February 23, 2022
•
[ hack, ddos, government ]
The websites of several Ukrainian banks and government departments, including the Ministry of Foreign Affairs, Ministry of Defense, Ministry of Internal Affairs, Security Service (SBU) and Cabinet of Ministers became inaccessible following a large DDoS attack. Most other sites came online within two hours of the attack but latency and outages continued into the following day for others.
-
Undetermined
February 23, 2022
•
[ espionage, finance, government ]
More than 600 websites belonging to the defence ministry in Kyiv and other institutions suffered attacks with the launch of thousands of exploits with attempts pointed to at least 20 distinct vulnerabilities. The campaign started mid-February and peaked on 23 February. The attacks sought to infiltrate targets ranging from border defence forces to the national bank and railway authority. They were designed to steal data and explore ways to shut down or disrupt vital defence and civilian infrastructure. The Times, allegedly quoting a source at the SBU, claimed the campaign was co-ordinated by the Chinese government. The SBU went on to deny The Times report.
-
Undetermined
February 23, 2022
•
[ hack, malware, finance ]
A number of organizations in Ukraine have been hit by a cyberattack, infecting hundreds of computers. The attack involved new data-wiping malware dubbed HermeticWiper '" a destructive malware that can delete or corrupt data on a targeted computer or network. The wiper has been detected in Ukraine, Latvia and Lithuania.
-
ABC Seamless
February 23, 2022
SNATCH executed exfiltration of data and ransomeware in targeted network. Data presented on dark web "leak site"
-
Center for Life Management (CLM)
February 23, 2022
The Mental Health Center of Greater Manchester (MHCGM) in New Hampshire has announced that patient data was potentially compromised in a cyberattack at a third-party community mental health services partner, Center for Life Management (CLM), which was used for data storage.
-
Nvidia
February 23, 2022
•
[ leak, manufacturing ]
US chip manufacturer Nvidia suffers data breach, Lapsus$ group compromises 1TB of proprietary data and employee information.
-
Undetermined
February 23, 2022
•
[ ransomware, malware, finance ]
UAC-0082 (a.k.a. Sandworm) staged a file encryptor on the network of an agricultural firm, holding this entity at risk for future destruction. Microsoft assesses that this was likely targeting grain production, a major export commodity in Ukraine's economy.
-
NVIDIA
February 23, 2022
•
[ hack, malware, technology ]
In February 2022, microchip company NVIDIA suffered a data breach that exposed employee credentials and proprietary code. Impacted data included over 70k employee email addresses and NTLM password hashes, many of which were subsequently cracked and circulated within the hacking community.
-
Flurry Finance
February 22, 2022
•
[ financial, hack, finance ]
Hacker steals around $295,000 from decentralized platform Flurry Finance.
-
Washington Metropolitan Area Transit Authority (WMATA)
February 21, 2022
The WMATA Twitter account is hacked and obsene messages are posted.
-
TruConnect
February 20, 2022
TruConnect files notice of a data breach after learning that an unauthorized party was able to access confidential consumer data stored on the company's computer network.