Women's Health Care Group of PA (WHCGPA)
July 29, 2017
•[ ransomware, malware, healthcare ]
Women's Health Care Group of PA (WHCGPA) reveals to have been hit by ransomware on May 16, 2017. 300,000 patient records are affected.
KQED
July 18, 2017
•[ ransomware, malware, technology ]
KQED, a San Francisco radio station is still recovering from a ransomware attack, nearly one month after.
Peachtree Neurological Clinic
July 14, 2017
•[ ransomware, malware, healthcare ]
While investigating a ransomware incident, Peachtree Neurological Clinic discovers that its computer system had been previously accessed without its knowledge by unauthorized individuals between February 2016 and May 2017.
Community Care of St. Catharines and Thorold
July 11, 2017
•[ hack, malware ]
Community Care of St. Catharines and Thorold notifies to be still recovering from a cyberattack that shut its computers down for more than a week.
Avanti Markets
July 8, 2017
•[ hack, malware, finance ]
Avanti Markets, a self-service payment kiosks vendors acknowledges to have suffered of breach of its internal networks in which hackers were able to push malicious software out to payment devices.
gandi
July 7, 2017
•[ hack, malware, technology ]
French domain registrar Gandi loses control over 751 customer domains, which have their DNS records altered to point incoming traffic to websites hosting exploits kits.
PVHS-ICM Employee Health and Wellness
July 1, 2017
•[ ransomware, malware, healthcare ]
PVHS-ICM Employee Health and Wellness notifies its patients to have been hit by a ransomware attack.
Undetermined
June 27, 2017
•[ ransomware, malware, finance ]
Threat actors deploy a tool, called NotPetya, with the purpose of encrypting data on victims' machines and rendering it unusable. The malware was spread through tax software that companies and individuals require for filing taxes in Ukraine and spread globally.'Australia, Estonia,'Denmark, Lithuania, Ukraine, the United Kingdom, and the United States issued statements attributing NotPetya to Russian state-sponsored actors.
Airway Oxygen
June 22, 2017
•[ ransomware, malware, healthcare ]
Airway Oxygen notifies that a ransomware attack in mid-April resulted in the compromise of data belonging to 550,000 customers and employees.
Cleveland Medical Associates
June 22, 2017
•[ ransomware, malware, healthcare ]
Cleveland Medical Associates reveals the details of a ransomware attack that happened on April 21, 2017.
Col. Richard Downie
June 20, 2017
•[ espionage, malware, government ]
A threat actor targeted individuals who were political critics and business rivals of Ricardo Martinelli, president of Panama between 2009 and 2014, for espionage purposes. The threat actor uses the Pegasus tool, created by the NSO Group. One of the victims is Col. Richard Downie (ret.), the former director of the Center for Hemispheric Studies at the National Defense University. He worked on the 2014 presidential campaign of Juan Carlos Navarro.
Nayana
June 19, 2017
•[ ransomware, malware, technology ]
A South Korean Web-hosting service provider, Nayana, agrees to pay $1 million to a ransomware operation that encrypted data stored on 153 Linux servers and 3,400 customer websites via the Erebus ransomware.
The Buckle Inc.
June 17, 2017
•[ financial, malware, retail ]
The Buckle Inc., a clothier that operates more than 450 stores in 44 U.S. states, discloses that its retail locations have been hit by malicious software designed to steal customer credit card data.
Ulster University
June 16, 2017
•[ ransomware, malware, education ]
The Ulster University is also hit by ransomware.
University College London
June 15, 2017
•[ ransomware, malware, education ]
University College London is hit by a "major" ransomware attack which brings down its shared drives and student management system. The attack also leads to a number of hospital trusts suspending their email servers as a precautionary measure, in an attempt to prevent the repetition of last month's damaging WannaCry epidemic.
ATMs in India
June 14, 2017
•[ hack, malware, finance ]
ATMs in India are under attack via Rufus, a Chinese malware targeting cash machines running outdated Windows XP.
Waverly Health Center
June 14, 2017
•[ ransomware, malware, healthcare ]
Waverly Health Center is hit by ransomware, causing the medical facility to shut down their IT systems.
Kmart
May 31, 2017
•[ financial, malware, retail ]
For the second time in less than three years, Kmart Stores suffers a malware-based security breach of its store credit card processing systems.
Ismael Borquez
May 26, 2017
•[ espionage, malware, government ]
The Mexican government is suspected of using NSO Group spyware to compromise the personal devices of journalists, lawyers, activists, scientists, politicians, and civil society organizations. One of the victims is Ismael Borquez, the director of R Doce and a colleague of Javier Valdez. Valdez was killed in May 2017 and was investigating organized crime in the state of Sinaloa.
Griselda Triana
May 25, 2017
•[ espionage, malware, government ]
The Mexican government is suspected of using NSO Group spyware to compromise the personal devices of journalists, lawyers, activists, scientists, politicians, and civil society organizations. One of the victims is Ismael Borquez, the director of R Doce and a colleague of Javier Valdez. Valdez was killed in May 2017 and was investigating organized crime in the state of Sinaloa.
