City of Killeen
August 7, 2024
•[ ransomware, malware, government ]
The city of Killeen, Texas reveals to be recovering from a BlackSuit ransomware attack.
Florida’s Sumter County Sheriff’s Office
August 6, 2024
•[ ransomware, malware, government ]
Floridas Sumter County Sheriffs Office confirms that it experienced a Rhysida ransomware attack.
Dispatch centers in the Highland Lakes and across Central Texas
August 4, 2024
•[ hack, ddos, government ]
A reported cyberattack disrupts 9-1-1 service at dispatch centers in the Highland Lakes and across Central Texas for over five hours.
Grand Palais Réunion des musées nationaux (Rmn)
August 3, 2024
•[ hack, government ]
The Grand Palais Runion des muses nationaux (Rmn) in France warns that it suffered a cyberattack.
Senior American Political Figures
August 1, 2024
•[ espionage, government ]
The U.S. believes that the Chinese cyber espionage campaign Salt Typhoon targeted and recorded telephone calls of "very senior" American political figures.
Former President Donald Trump’s campaign
August 1, 2024
•[ hack, government ]
The FBI is investigating the alleged hack of former President Donald Trumps campaign, days after the campaign blamed Iran for a breach.
Iran's Ministry of Information and Communications Technology
August 1, 2024
•[ hack, ddos, government ]
Israel-based hacktivists from the group WeRedEvils take credit for an ongoing internet outage in Iran.
Biden-Harris campaign
August 1, 2024
•[ hack, espionage, government ]
The FBI is also investigating the alleged hack of the Biden-Harris campaign by threat actors from Iran
Communist Party of Vietnam
August 1, 2024
•[ espionage, malware, government ]
Researchers at Recorded Future observe the Chinese state-sponsored group RedDelta targeting Mongolia, Taiwan, Myanmar, Vietnam, and Cambodia with an adapted infection chain to distribute its customized PlugX backdoor.
Intendencia de Paysandú
July 24, 2024
•[ ransomware, encryption, government ]
On July 24 2024, the Paysand Department (Uruguay) suffered a ransomware attack that encrypted all servers and backups, paralyzing municipal operations for several days. Hackers demanded about USD 650 000 in bitcoin; AGESICs forensic investigation confirmed no evidence of data exfiltration or intellectual-property theft.
Jefferson County Clerk’s Office
July 22, 2024
•[ hack, government ]
A cyber attack forces the Jefferson County Clerks Office to close eight branches.
Superior Court of Los Angeles County (LASC)
July 19, 2024
•[ ransomware, malware, government ]
The largest trial court in the United States, the Superior Court of Los Angeles County, closed all 36 courthouse locations on Monday to restore systems affected by a Friday ransomware attack.
City of Columbus
July 18, 2024
•[ ransomware, malware, government ]
The City of Columbus, Ohio, says it's investigating whether personal data was stolen in a ransomware attack that disrupted the City's services. The attackers claimed to have stolen 6.5 terabytes of data, including personal information such as names, addresses, dates of birth, Social Security numbers, bank account details, and driver's license information of approximately 500,000 residents.
Taiwanese government-affiliated research institute
July 15, 2024
•[ espionage, malware, government ]
Researchers from Cisco Talos reveal that a Taiwanese government-affiliated research institute that specializes in computing and associated technologies was breached by the nation-state threat actors APT41 with ties to China, through a variety of backdoors and post-compromise tools like ShadowPad and Cobalt Strike.
The Heritage Foundation
July 11, 2024
•[ hack, government ]
The hacktivist group SiegedSec claims responsibility for a data breach at the Heritage Foundation, stealing details of a potentially controversial Project 2025.
At least five Macau government websites
July 11, 2024
•[ hack, ddos, government ]
At least five Macau government websites are knocked offline by suspected foreign hackers for almost an hour.
Clay County
July 11, 2024
•[ ransomware, malware, government ]
Clay County, Indiana files a local disaster declaration following a ransomware attack.
Monroe County
July 8, 2024
•[ ransomware, malware, government ]
Monroe County is hit with a BlackSuit ransomware attack.
Solano County
July 3, 2024
•[ ransomware, malware, government ]
Nearly three months after a ransomware attack disrupted phone lines, computer services and Wi-Fi across Solano County's public libraries, systems are still down.
Multiple U.S. defense contractors
July 1, 2024
•[ espionage, malware, government ]
Between July 2024 and July 2025, the Chinese state-linked group RedNovember, operating under the Ministry of State Security (MSS), conducted an espionage campaign exploiting internet-facing network devices and Outlook Web Access systems to infiltrate at least two U.S. defense contractors. Attackers deployed the Go-based backdoor Pantegana, Cobalt Strike, and SparkRAT for reconnaissance and persistence, exfiltrating sensitive defense-related data.
