Government sites and nuclear facilities in Iran
October 12, 2024
•[ hack, ddos, government ]
Government sites and nuclear facilities in Iran are hit by disruptive cyberattacks.
Russian general jurisdiction courts
October 11, 2024
•[ hack, ddos, government ]
The websites of Russian general jurisdiction courts are down for several days following a cyberattack claimed by pro-Ukrainian hackers from BO Team.
Uttarakhand State Data Center
October 7, 2024
•[ ransomware, malware, government ]
India's state of Uttarakhand is hit with a ransomware attack, targeting the Uttarakhand State Data Center.
Websites of the Senate of the Federal Parliament of Belgium, and the local authority in the southern Belgian region of Wallonia
October 7, 2024
•[ hack, ddos, government ]
The websites of the Senate of the Federal Parliament of Belgium, and the local authority in the southern Belgian region of Wallonia are hit with a DDoS attack by the Pro-Russia collective NoName057(16).
VGTRK
October 7, 2024
•[ hack, ddos, government ]
Russian state media company VGTRK, which owns and operates the country's main national TV stations, is targeted in a DDoS cyberattack on Putin's birthday, which a Ukrainian government source said Kyiv's hackers had caused.
Wayne County
October 3, 2024
•[ ransomware, malware, government ]
Wayne County in Michigan is dealing with an alleged ransomware attack that has shut down all government websites and limited the operations of several offices.
Governments and armed forces, think tanks, academic researchers, and Ukrainian entities
October 1, 2024
•[ espionage, malware, government ]
Researchers at Trend Micro reveal the details of a campaign carried out by the Russia-linked APT29 threat actor, leveraging malicious Remote Desktop Protocol (RDP) configuration files.
Rafic Hariri International Airport
September 28, 2024
•[ hack, government ]
The Israeli cyber army allegedly hacks into the control tower of the Rafic Hariri International Airport in Beirut, and threatens an Iranian civilian plane attempting to land, forcing it to return.
National Dutch police (Politie)
September 27, 2024
•[ espionage, government ]
The National Dutch police (Politie) says that a state actor was likely behind a data breach detected the previous week.
Senator Ben Cardin
September 26, 2024
•[ espionage, phishing, government ]
An advanced deepfake operation targets Sen. Ben Cardin, the Democratic chair of the Senate Foreign Relations Committee, who is involved in a Zoom conversation with a fake Dymtro Kuleba, the former Ukrainian Minister of Foreign Affairs.
19 stations, including London Cannon Street, London Bridge, Charing Cross, Clapham Junction, Euston, King’s Cross, Liverpool Street, Paddington, Victoria, Waterloo, Reading, Guildford, Manchester Piccadilly, Liverpool Lime Street, Birmingham New Street, Leeds, Bristol Temple Meads, Edinburgh Waverley, Glasgow Central
September 26, 2024
•[ hack, misconfiguration, government ]
U.K. transport officials and police say they are investigating a cyber-security incident that hit the public Wi-Fi networks at the countrys biggest railway stations and displayed an anti-Islam message in the login page.
Suburb of Richardson
September 25, 2024
•[ ransomware, malware, government ]
Richardson, a large Dallas suburb is dealing with a ransomware attack that has required help from the FBI to resolve.
Multiple Ukrainian government and municipal organizations
September 25, 2024
•[ vulnerability, phishing, malware ]
A zero-day vulnerability in 7-Zip (CVE-2025-0411) was exploited beginning September 25, 2024, by undetermined Russian-speaking cybercriminal actors via phishing and homoglyph-lure archives. Trend Micro and SecurityWeek confirmed at least nine Ukrainian government and public-service entities (including the Ministry of Justice, Kyiv Public Transportation, and water-utility systems) were compromised. The campaign delivered SmokeLoader malware through malicious archives bypassing Windows Mark-of-the-Web protections.
City of Pleasanton
September 24, 2024
•[ ransomware, malware, government ]
The City of Pleasanton in California is hit with a Valencia ransomware attack. The threat actor claims to have stolen 283GB of sensitive information.
Water utility in Arkansas City
September 24, 2024
•[ hack, government ]
Arkansas City, a small city in Cowley County, Kansas, is forced to switch its water treatment facility to manual operations over the weekend to contain a cyberattack detected on Sunday morning.
U.S. Capitol
September 24, 2024
•[ leak, government ]
The personal information of over 3,000 congressional staffers is leaked on the dark web following a major breach on the U.S. Capitol.
Houston Housing Authority
September 22, 2024
•[ ransomware, malware, government ]
The Houston Housing Authority falls victim of a ransomware attack.
Dozens of Austrian websites
September 20, 2024
•[ hack, ddos, government ]
The Pro-Russia groups NoName057(16) and OverFlame claim responsibility for disrupting dozens of Austrian websites ahead of the country's general election later this month.
Marin Housing Authority
September 15, 2024
•[ financial, government ]
Threat actors steal $950,000 that was earmarked for the rehabilitation of public housing in Marin City, from the Marin Housing Authority.
Osnovanie
September 13, 2024
•[ hack, government ]
Threat actors from Ukraine claim to have compromised the infrastructure of the agency that certifies digital signatures in Russia, known as Osnovanie ("Foundation" in Russian), and defaces its websites.
