Wayne Memorial Hospital
July 1, 2024
•[ ransomware, malware, healthcare ]
The Monti ransomware gang claims to have breached Wayne Memorial Hospital in Pennsylvania and adds it to their Tor leak site.
EqualizeRCM
July 1, 2024
•[ ransomware, malware, education ]
SysInformation Healthcare Services, LLC ("SysInformation"), d/b/a EqualizeRCM discloses a ransomware attack.
Florida Community Health Centers
July 1, 2024
•[ ransomware, malware, healthcare ]
Florida Community Health Centers (FCHC) discloses to have suffered a ransomware attack affecting nearly 300,000 people.
Organizations in the manufacturing and logistics industries
July 1, 2024
•[ ransomware, malware, manufacturing ]
Researchers from Halcyon discover Volcano Demon, a new ransomware group targeting organizations in manufacturing and logistics via an encryptor dubbed LukaLocker.
Berman & Rabin
July 1, 2024
•[ ransomware, malware ]
Law firm Berman & Rabin notifies roughly 152,000 individuals that their personal information was compromised in a July 2024 ransomware attack.
Multiple U.S. defense contractors
July 1, 2024
•[ espionage, malware, government ]
Between July 2024 and July 2025, the Chinese state-linked group RedNovember, operating under the Ministry of State Security (MSS), conducted an espionage campaign exploiting internet-facing network devices and Outlook Web Access systems to infiltrate at least two U.S. defense contractors. Attackers deployed the Go-based backdoor Pantegana, Cobalt Strike, and SparkRAT for reconnaissance and persistence, exfiltrating sensitive defense-related data.
Patelco Credit Union
June 29, 2024
•[ ransomware, malware, finance ]
Patelco Credit Union discloses it experienced a ransomware attack that led to the proactive shutdown of several of its customer-facing banking systems to contain the incident's impact.
Kadokawa
June 28, 2024
•[ ransomware, leak, malware ]
Japanese media giant Kadokawa confirms that some of its data was leaked in a ransomware attack early June 2024. The BlackSuit ransomware gang claims responsibility for the attack.
Pediatric Urology Associates
June 28, 2024
•[ ransomware, malware, healthcare ]
Pediatric Urology Associates is allegedly hit with a dAn0n ransomware attack.
Shoe Zone
June 28, 2024
•[ hack, malware, retail ]
In June 2024, the UK footwear chain Shoe Zone disclosed a data breach that was subsequently posted for sale on a popular hacking forum. The data included over 100k orders containing names, addresses, partial credit card numbers (card type and last 4 digits), and 46k unique email addresses. The data was provided to HIBP by a source who requested it be attributed to "IntelBroker".
University Hospital Centre in Zagreb, a.k.a. KBC Zagreb
June 27, 2024
•[ ransomware, malware, healthcare ]
The LockBit ransomware gang claims responsibility for a cyberattack on Croatias largest hospital, which forces it to shut down IT systems for a day.
Palomar Health Medical Group
June 26, 2024
•[ ransomware, malware, healthcare ]
Palomar Health Medical Groups (PHMG) phones and computer systems are still down after suspicious activities nearly two months ago.
South Africa’s National Health Laboratory Service
June 25, 2024
•[ ransomware, malware, healthcare ]
South Africas National Health Laboratory Service (NHLS) confirms to be dealing with a ransomware attack.
Indonesia's Temporary National Data Center
June 24, 2024
•[ ransomware, malware, government ]
The Indonesian National Cyber and Encryption Agency (BSSN) reveals that the Brain Cipher ransomware disrupted the Temporary National Data Center server, affecting the operations of 210 government institutions, including immigration services at Soekarno-Hatta International Airport.
Neiman Marcus
June 24, 2024
•[ hack, malware, retail ]
High-end department store Neiman Marcus discloses a data breach, shortly before the threat actor 'Sp1d3r' offered to sell information belonging to millions of the companys customers. The hack impacted 64,000 users and is likely part of the massive SnowFlake campaign.
SpyX
June 24, 2024
•[ leak, malware, technology ]
In June 2024, spyware maker SpyX suffered a data breach that exposed almost 2M unique email addresses. The breach also exposed IP addresses, countries of residence, device information and 6-digit PINs in the password field. Further, a collection of iCloud credentials likely used to monitor targets directly via the cloud were also in the breach and contained the target's email address and plain text Apple password.
Pinnacle Orthopaedics & Sports Medicine Specialists
June 21, 2024
•[ ransomware, malware, healthcare ]
Pinnacle Orthopaedics & Sports Medicine Specialists is hit with an INC ransomware attack.
Acadian Ambulance
June 21, 2024
•[ ransomware, malware, healthcare ]
Acadian Ambulance is hit with a Daixin ransomware attack. The threat actors claim to have stolen 10 million records.
U.S. Dermatology Partners
June 16, 2024
•[ ransomware, malware, healthcare ]
U.S. Dermatology Partners has allegedly 1.8 TB of files leaked by the Black Basta ransomware operation.
1,899 victims in Singapore
June 14, 2024
•[ financial, hack, malware ]
A Singapore police-led law enforcement operation dismantles a regional cybercrime ring that carried out malware-enabled scams to steal tens of millions of dollars from victims since 2023.
