Transneft
December 15, 2017
•[ hack, malware ]
Transneft reveals that its computers have been used for the unauthorized manufacture, or "mining", of the cryptocurrency Monero.
Proctor School District
December 14, 2017
•[ ransomware, malware, education ]
The Proctor school district is hit by ransomware.
Jerome School District
December 11, 2017
•[ ransomware, malware, education ]
Jerome School District falls victim to ransomware.
National Capital Poison Center
December 11, 2017
•[ ransomware, malware, healthcare ]
National Capital Poison Center reports a ransomware incident.
Village of Nashotah
December 7, 2017
•[ ransomware, malware, government ]
The Village of Nashotah pays an unidentified hacker a $2,000 ransom to decrypt its computer system after a hack in late November.
Oromia Media Network
December 6, 2017
•[ espionage, malware, technology ]
A threat actor targeted Ethiopian dissidents for the purpose of espionage, using commercially available spyware sold by Cyberbit, an Israel-based company. Most notably, the actor targeted the Oromia Media Network and some individuals associated with it.
Colorado Center for Reproductive Medicine Minneapolis
December 5, 2017
•[ ransomware, malware, healthcare ]
Colorado Center for Reproductive Medicine Minneapolis warns customers that, in the wake of a ransomware attack that occurred in October 2017, an unauthorized third-party may have breached the clinic's computer security and viewed or accessed patient information that was on the server.
Mecklenburg County
December 4, 2017
•[ ransomware, malware, government ]
Mecklenburg County, which includes the city of Charlotte and surrounding areas, is hit with ransomware and struggles to get its systems back online ever since. In the meantime, county officials are forced to revert to paper systems.
Mad River Township Fire and EMS station
December 4, 2017
•[ ransomware, malware, government ]
Mad River Township Fire and EMS station has all its data encrypted by ransomware.
Sacramento Regional Transit system
November 19, 2017
•[ ransomware, malware, government ]
The Sacramento Regional Transit system is hit by destructive ransomware, and the attackers threaten to do more damages if the SacRT doesn't pay them the equivalent of $8,000 in bitcoins.
Montgomery County, IL
November 17, 2017
•[ hack, malware, government ]
The Montgomery County Emergency Management Agency reported that much of the county's computer system went down last week due to what it is calling a malware incident.
J. Sterling Morton school district
November 15, 2017
•[ ransomware, malware, education ]
An in-development home made ransomware named J. Sterling Ransomware is discovered. This ransomware strain targets the high school students of the J. Sterling Morton school district in Cicero, Illinois by pretending to be a student survey.
Jewson
November 14, 2017
•[ hack, malware, retail ]
Builders merchant Jewson notifies 1,659 customers that their private information could have been exposed in a breach occurred late this summer. The breach happened after malicious code was implanted in the Jeson Direct website.
City of Spring Hill
November 8, 2017
•[ ransomware, malware, government ]
The City of Spring Hill, Tennessee is hit by a ransomware attack. The attackers demand a $250,000 ransom.
Golden Optometric
November 6, 2017
•[ ransomware, malware, healthcare ]
Goldon Optometric informs some patients whose information was affected by a CrySiS ransomware attack.
Crunchyroll
November 4, 2017
•[ hack, malware, technology ]
Crunchyroll.com is the victim of a DNS hijack attack, so the visitors are redirected to a malicious website designed to infect them with malware.
NIC Asia Bank
November 4, 2017
•[ financial, hack, malware ]
NIC Asia Bank, based in Kathmandu, suffers a hack on its computer networks, which abused the SWIFT financial messaging system to help steal approximately $4.4m
Family and Children's Services of Lanark, Leeds and Grenville
November 1, 2017
•[ ransomware, malware, healthcare ]
Two Ontario children's aid societies (Children's Aid Society of Oxford County and Family and Children's Services of Lanark, Leeds and Grenville) are hit by ransomware.
Dell
October 24, 2017
•[ hack, malware, manufacturing ]
KrebsOnSecurity reveals that a web site set up by PC maker Dell Inc. to help customers recover from malicious software (DellBackupandRecoveryCloudStorage.com) may have been hijacked for a few weeks this summer.
Coinhive
October 23, 2017
•[ hack, malware, technology ]
The DNS records for coinhive.com are manipulated to redirect requests for the coinhive.min.js to a third party server hosting a modified version of the JavaScript file with a hardcoded site key and letting the attacker "steal" hashes from users.
