Renault
May 12, 2017
•[ ransomware, malware, manufacturing ]
A threat actor used a tool called WannaCry to encrypt data in compromised networks, and intended to provide the victims with the decryption key only after a ransom had been paid. The threat actors used an exploit, called EternalBlue--first discovered by the U.S. National Security Agency--to propagate WannaCry in organizations using the Windows operating system. The attack shut down Renault operations in several countries.
Russian Central Bank
May 12, 2017
•[ ransomware, malware, finance ]
A threat actor used a tool called WannaCry to encrypt data in compromised networks, and intended to provide the victims with the decryption key only after a ransom had been paid. The threat actors used an exploit, called EternalBlue--first discovered by the U.S. National Security Agency--to propagate WannaCry in organizations using the Windows operating system. The Russian Central Bank detected an attack on its systems, but was able to thwart it.
Debenhams
May 5, 2017
•[ hack, malware, retail ]
Malware infects the backend systems used by British high street chain Debenhams, and steals 26,000 people's personal information in the process. The hack happened after compromising the systems at Ecomnova, the firm that runs the Debenhams Flowers business, for more than six weeks.
HandBrake
May 2, 2017
•[ hack, malware, technology ]
The popular DVD-ripping HandBrake app, is hacked to install a new variant of the Proton malware.
Pekin Community High School
April 30, 2017
•[ ransomware, malware, education ]
A ransomware attack takes down Pekin Community High School.
Virginia Sex Offender and Crimes Against Children Registry (SOR)
April 29, 2017
•[ hack, malware, government ]
A malware infection affecting servers belonging to the Virginia State Police (VSP) shuts down the department's email system, along with its ability to update the Virginia Sex Offender and Crimes Against Children Registry (SOR).
City of Newark
April 25, 2017
•[ ransomware, malware, government ]
A ransomware attack hits some municipal computers in New Jersey's most populous city, Newark.
Greenway Health
April 24, 2017
•[ ransomware, malware, healthcare ]
Greenway Health is the victim of a ransomware attack.
KCG Holdings
April 23, 2017
•[ insider, espionage, malware ]
The FBI arrests Zhengquan Zhang, a 31-year-old IT engineer, accused of installing malware on his employer's servers to steal proprietary source.
Atlantic Digestive Specialists
April 21, 2017
•[ ransomware, malware, healthcare ]
Atlantic Digestive Specialists notify patients of a ransomware incident.
Sierra Tel
April 10, 2017
•[ hack, malware, technology ]
The Bricker Bot takes down the Zyxel HN-51 Modem belonging to Sierra Tel, a Californian ISP.
Gamestop
April 7, 2017
•[ hack, malware, retail ]
Video game giant GameStop Corp says it is investigating reports that hackers may have siphoned credit card and customer data from its website gamestop.com.
Unnamed Russian bank
April 4, 2017
•[ financial, malware, finance ]
Kaspersky reveals the details of ATMitch, a fileless malware used to steal cash from ATMs. The researchers have only tracked down two incidents where ATMitch was used. The first is in a Russian bank.
Unnamed Kazakh bank
April 4, 2017
•[ financial, malware, finance ]
Kaspersky reveals the details of ATMitch, a fileless malware used to steal cash from ATMs. The researchers have only tracked down two incidents where ATMitch was used. The second is in a Kazakh bank.
Bill Marczak
March 29, 2017
•[ espionage, malware, technology ]
A threat actor targeted Ethiopian dissidents for the purpose of espionage, using commercially available spyware sold by Cyberbit, an Israel-based company. Most notably, the actor targeted the Oromia Media Network and some individuals associated with it.
Mountain Home Water Department
March 14, 2017
•[ ransomware, malware, government ]
The servers of Mountain Home Water Department fall victim to a ransomware attack.
Pennsylvania Senate Democrats
March 3, 2017
•[ ransomware, malware, government ]
The Pennsylvania Senate Democrats are hit by a ransomware attack that locks senators and employees out of their computer network.
Aptos
March 1, 2017
•[ financial, malware, technology ]
Shoppers of 40 online stores have had their bank card numbers and addresses stolen by a malware infection at backend provider Aptos late last year.
U.S. Residents in 20 states
February 26, 2017
•[ financial, malware ]
According to federal court documents, Russian hackers operating in Colorado and 15 other states used data-mining viruses to steal thousands of credit card numbers from U.S. residents in 20 states and sold them on the darknet for more than $3.6 million.
Inland Revenue Department
February 25, 2017
•[ ransomware, malware, government ]
Thousands of Inland Revenue files are locked up after New Zealand's tax department becomes the target of a Cryptolocker attack in November.
