Embassies and international organizations
November 13, 2023
•[ espionage, malware, government ]
The Ukraine's National Cyber Security Coordination Center (NCSCC) reveals that Russian state-sponsored hackers from APT29 have targeted embassies and international organizations exploiting the WinRAR CVE-2023-38831 vulnerability.
Plati
November 13, 2023
•[ ransomware, malware, manufacturing ]
The LockBit 3.0 ransomware gang claims responsibility for a cyber attack to Plati.
Toyota Financial Services Europe & Africa
November 13, 2023
•[ ransomware, malware, finance ]
Toyota Financial Services Europe & Africa confirms being targeted in a cyberattack, which appears to have been conducted by the Medusa ransomware group exploiting the CVE-2023-4966 CitrixBleed vulnerability.
Homeland
November 13, 2023
•[ ransomware, malware ]
Homeland is added to the "victim list" of a ransomware group, raising concerns that the company may have experienced a data breach
City of Huber Heights
November 12, 2023
•[ ransomware, malware, government ]
A ransomware attack on the city of Huber Heights, Ohio, causes significant problems for several city systems.
InHealth Technologies
November 11, 2023
•[ ransomware, malware, manufacturing ]
InHealth Technologies (InHealth) files a notice of data breach after discovering that hackers encrypted files on the companys IT network.
Meredosia-Chambersburg School District
November 11, 2023
•[ ransomware, malware, education ]
The Meredosia-Chambersburg school district is hit with a ransomware attack.
Glendale Community College
November 10, 2023
•[ ransomware, malware, education ]
Glendale Community College confirms it was hit with ransomware.
New Zealand Government
November 10, 2023
•[ hack, malware, government ]
Researchers from NSFOCUS reveal that a threat actor marked as Actor231004 launched attacks against governmental sectors of New Zealand exploiting the CVE-2023-38831 WinRAR vulnerability to deliver the Bumblebee malware.
Relevant personnel of the European Parliament
November 10, 2023
•[ hack, malware, government ]
Researchers from NSFOCUS reveal that a threat actor marked as Actor230830 launched attacks on relevant personnel of the European Parliament exploiting the CVE-2023-38831 WinRAR vulnerability.
Califano Carrelli
November 9, 2023
•[ ransomware, malware, manufacturing ]
The Black Basta ransomware gang claims responsibility for a cyber attack to Califano Carrelli.
Amber Hill Group
November 8, 2023
•[ ransomware, leak, malware ]
The LockBit 3.0 ransomware group adds Amber Hill Group the their leak site.
Hopewell Area School District
November 8, 2023
•[ ransomware, malware, education ]
The Hopewell Area School District is hit with a Medusa ransomware attack.
Comhairle nan Eilean Siar
November 8, 2023
•[ ransomware, malware, government ]
A suspected ransomware attack causes significant disruption to IT systems at Scotland's Western Isles local authority, Comhairle nan Eilean Siar.
Fawry
November 8, 2023
•[ ransomware, malware, finance ]
The LockBit 3.0 ransomware group successfully encrypts files and also allegedly exfiltrates data from Egyptian e-payment provider Fawry.
Corsica Ferries
November 7, 2023
•[ ransomware, malware ]
The ALPHV/BlackCat ransomware group claims responsibility for a cyber attack to Corsica Ferries.
Harris Center for Mental Health
November 7, 2023
•[ ransomware, malware, healthcare ]
The Harris Center for Mental Health falls victim to a ransomware attack.
Pulaski County Public Schools
November 7, 2023
•[ ransomware, malware, education ]
The Pulaski County Public Schools are hit with a ransomware attack.
OmniVision
November 7, 2023
•[ ransomware, malware, manufacturing ]
The California-based imaging sensors manufacturer OmniVision warns of a data breach after the company suffered a Cactus ransomware attack last year.
Government and defense organizations in India
November 6, 2023
•[ espionage, malware, government ]
Researchers from Seqrite discover multiple campaigns of the Pakistan-based APT SideCopy, targeting Indian government and defense entities, exploiting the recent WinRAR vulnerability CVE-2023-38831 to deploy AllaKore RAT, DRat and additional payloads.
