Bucharest City Hall
October 31, 2024
•[ ransomware, malware, government ]
The data of approximately 200,000 citizens of the administrative unit Sector 5 of the city of Bucharest are put up for sale after the City Hall suffers a RansomHub ransomware attack at the end of October.
Crypto users
October 31, 2024
•[ financial, malware, finance ]
The popular LottieFiles Lotti-Player project is compromised in a supply chain attack to inject a crypto drainer into websites that steals visitors' cryptocurrency.
Organizations in Israel
October 31, 2024
•[ espionage, malware, technology ]
Researchers at Check Point reveal that the threat actor dubber WIRTE, affiliated with Hamas has expanded its malicious cyber operations beyond espionage to carry out disruptive attacks with the SameCoin malware that exclusively target Israeli entities.
Tver Administration's Network
October 29, 2024
•[ hack, malware, government ]
A group with the moniker of Ukrainian Cyber Alliance claims to have taken down the Tver administration's network and to have wiped out dozens of virtual machines, backup storage, websites, email, and hundreds of workstations.
Newpark Resources
October 29, 2024
•[ ransomware, malware, energy ]
Newpark Resources, a key supplier for oilfields says a ransomware attack caused disruptions and limited access to certain systems.
AEP
October 28, 2024
•[ ransomware, malware, retail ]
German pharmaceutical distributor AEP is hit with a ransomware attack.
City of Coppell
October 23, 2024
•[ ransomware, malware, government ]
The RansomHub operation takes credit for a damaging attack on the city of Coppell, Texas.
DoctorsToYou
October 16, 2024
•[ ransomware, malware, healthcare ]
The RansomHub ransomware group adds a listing for DoctorsToYou in New York to their leak site. After they realize the organization is non-profit, they claim to return the data and provide a decryptor.
Volkswagen Group
October 15, 2024
•[ ransomware, malware, manufacturing ]
The Volkswagen Group issues a statement after the 8Base ransomware group claims to have stolen valuable information from the carmakers systems.
Rivers Casino Philadelphia
October 14, 2024
•[ ransomware, malware, retail ]
Rivers Casino Philadelphia disclosed that between Oct 1422, 2024, an unauthorized actor accessed and exfiltrated patron data, including names, SSNs, bank account details, and drivers license numbers. Notifications were issued Dec 30, 2024, with public filings Feb 16, 2025. The ransomware group Cicada3301 claimed responsibility, stating it stole 2.56 TB of data. Rivers Casino offered identity protection services to affected patrons.
Axis Health System
October 10, 2024
•[ ransomware, malware, healthcare ]
Axis Health System is hit with a Rhysida ransomware attack.
Family Medical Center in Mount Airy
October 9, 2024
•[ ransomware, malware, healthcare ]
Family Medical Center in Mount Airy reports a ransomware attack.
Casio
October 7, 2024
•[ ransomware, malware, manufacturing ]
Japanese electronics giant Casio suffers a ransomware attack that resulted in the theft of customer data.
Uttarakhand State Data Center
October 7, 2024
•[ ransomware, malware, government ]
India's state of Uttarakhand is hit with a ransomware attack, targeting the Uttarakhand State Data Center.
Access Sports Medicine & Orthopaedics
October 5, 2024
•[ ransomware, malware, healthcare ]
Access Sports Medicine & Orthopaedics informs more than 88,000 individuals that their information was compromised as a result of a cyberattack. The Inc Ransom ransomware gang claims responsibility for the attack.
Young Consulting (now Connexure)
October 4, 2024
•[ ransomware, malware, technology ]
Young Consulting sends data breach notifications to 954,177 people who had their information exposed in a BlackSuit ransomware attack on April 10, 2024.
Pacific Pulmonary Medical Group
October 4, 2024
•[ ransomware, malware, healthcare ]
The Pacific Pulmonary Medical Group (PPMG) is hit with an Everest Team ransomware attack.
Wayne County
October 3, 2024
•[ ransomware, malware, government ]
Wayne County in Michigan is dealing with an alleged ransomware attack that has shut down all government websites and limited the operations of several offices.
Bloom Hearing Specialists
October 3, 2024
•[ ransomware, malware, healthcare ]
Bloom Hearing Specialists warns thousands of customers about a ransomware attack stealing sensitive data.
Governments and armed forces, think tanks, academic researchers, and Ukrainian entities
October 1, 2024
•[ espionage, malware, government ]
Researchers at Trend Micro reveal the details of a campaign carried out by the Russia-linked APT29 threat actor, leveraging malicious Remote Desktop Protocol (RDP) configuration files.
