Mad River Township Fire and EMS station
December 4, 2017
•[ ransomware, malware, government ]
Mad River Township Fire and EMS station has all its data encrypted by ransomware.
Sacramento Regional Transit system
November 19, 2017
•[ ransomware, malware, government ]
The Sacramento Regional Transit system is hit by destructive ransomware, and the attackers threaten to do more damages if the SacRT doesn't pay them the equivalent of $8,000 in bitcoins.
Montgomery County, IL
November 17, 2017
•[ hack, malware, government ]
The Montgomery County Emergency Management Agency reported that much of the county's computer system went down last week due to what it is calling a malware incident.
J. Sterling Morton school district
November 15, 2017
•[ ransomware, malware, education ]
An in-development home made ransomware named J. Sterling Ransomware is discovered. This ransomware strain targets the high school students of the J. Sterling Morton school district in Cicero, Illinois by pretending to be a student survey.
Jewson
November 14, 2017
•[ hack, malware, retail ]
Builders merchant Jewson notifies 1,659 customers that their private information could have been exposed in a breach occurred late this summer. The breach happened after malicious code was implanted in the Jeson Direct website.
City of Spring Hill
November 8, 2017
•[ ransomware, malware, government ]
The City of Spring Hill, Tennessee is hit by a ransomware attack. The attackers demand a $250,000 ransom.
Golden Optometric
November 6, 2017
•[ ransomware, malware, healthcare ]
Goldon Optometric informs some patients whose information was affected by a CrySiS ransomware attack.
Crunchyroll
November 4, 2017
•[ hack, malware, technology ]
Crunchyroll.com is the victim of a DNS hijack attack, so the visitors are redirected to a malicious website designed to infect them with malware.
NIC Asia Bank
November 4, 2017
•[ financial, hack, malware ]
NIC Asia Bank, based in Kathmandu, suffers a hack on its computer networks, which abused the SWIFT financial messaging system to help steal approximately $4.4m
Family and Children's Services of Lanark, Leeds and Grenville
November 1, 2017
•[ ransomware, malware, healthcare ]
Two Ontario children's aid societies (Children's Aid Society of Oxford County and Family and Children's Services of Lanark, Leeds and Grenville) are hit by ransomware.
Dell
October 24, 2017
•[ hack, malware, manufacturing ]
KrebsOnSecurity reveals that a web site set up by PC maker Dell Inc. to help customers recover from malicious software (DellBackupandRecoveryCloudStorage.com) may have been hijacked for a few weeks this summer.
Coinhive
October 23, 2017
•[ hack, malware, technology ]
The DNS records for coinhive.com are manipulated to redirect requests for the coinhive.min.js to a third party server hosting a modified version of the JavaScript file with a hardcoded site key and letting the attacker "steal" hashes from users.
FirstHealth
October 20, 2017
•[ ransomware, malware, healthcare ]
The network of FirstHealth is hit by WannaCry and forced to suspend operations.
Politifact
October 13, 2017
•[ hack, malware, technology ]
Politifact, the Pulitzer Prize-winning website devoted to checking the factual accuracy of US politicians' words, appears to have been hacked so that it secretly mines cryptocurrency in visitors' browsers via CoinHive.
Hyatt Hotels Corp.
October 12, 2017
•[ financial, malware, retail ]
Hyatt Hotels Corp reveals to have discovered unauthorized access to payment card information at certain Hyatt-managed locations worldwide between March 18, 2017 and July 2, 2017.
San Ysidro School District
September 29, 2017
•[ hack, malware, education ]
Malware infects the San Ysidro School District, deleting emails and forcing the district to temporarily shut down part of its systems.
Minsk Operational Administration of the Armed Forces
September 28, 2017
•[ espionage, malware, government ]
A threat actor targeted the government of Belarus for espionage purposes, using a tool known as Travle or PYLOT, which is believed to be an update of malware used by NetTraveler. Between June and August the threat actor sent a total of 20 unique emails to various government entities. The emails contained a series of subject lines revolving around Zapad-2017, a joint exercise between the Russian and Belarusian militaries.
Arkansas Oral & Facial Surgery Center
September 27, 2017
•[ ransomware, malware, healthcare ]
Arkansas Oral & Facial Surgery Center disclose a ransomware incident that may or may not have resulted in access to protected health information of as many as 128,000 patients.
showtimeanytime
September 25, 2017
•[ hack, malware, technology ]
Two Showtime domains are found serving Coinhive, a JavaScript library that mines Monero using the CPU resources of users visiting Showtime's websites. It is not clear if the event is the consegue of a hack or an experiment.
Swiss Federal Department of Defense, Civil Protection and Sports
September 15, 2017
•[ espionage, malware, government ]
Switzerland's Federal Department of Defense, Civil Protection and Sports reveals to have detected a cyber attack carried on by the infamous Turla APT.
