Hospital Simone Veil in Cannes (CHC-SV)
April 16, 2024
•[ ransomware, malware, healthcare ]
The Hospital Simone Veil in Cannes (CHC-SV) announces that it was targeted by a cyberattack, severely impacting its operations and forcing staff to go back to pen and paper. The LockBit ransomware operation claims responsibility for the attack.
Octapharma
April 15, 2024
•[ ransomware, malware, healthcare ]
The plasma donation company Octapharma suffers a BlackSuit ransomware attack.
Atlantic States Marine Fisheries Commission
April 15, 2024
•[ ransomware, malware, government ]
The Atlantic States Marine Fisheries Commission (ASMFC) suffers an 8Base ransomware attack.
The Post and Courier
April 15, 2024
•[ ransomware, malware ]
The Post and Courier is hit with a BlackSuit ransomware attack.
Northeast Ohio Neighborhood Health (NEON)
April 15, 2024
•[ ransomware, malware, healthcare ]
The Medusa ransomware group claims responsibility for a cyberattack on the servers of Northeast Ohio Neighborhood Health (NEON), a company providing healthcare services, and the exfiltration of nearly 51GB of data.
Frontier Communications
April 14, 2024
•[ ransomware, malware, technology ]
American telecom provider Frontier Communications is hit by a cyberattack claimed by the RansomHub ransomware operation.
Group Health Cooperative of South Central Wisconsin (GHC-SCW)
April 9, 2024
•[ ransomware, malware, healthcare ]
Non-profit healthcare service provider Group Health Cooperative of South Central Wisconsin (GHC-SCW) discloses that a ransomware gang breached its network in January and stole documents containing the personal and medical information of over 500,000 individuals.
Shook Lin & Bok
April 9, 2024
•[ ransomware, malware ]
The law firm Shook Lin & Bok is hit by an Akira ransomware attack.
Extern
April 9, 2024
•[ ransomware, malware, healthcare ]
Extern, a social justice charity, is hit with a ransomware attack.
Community Clinic of Maui
April 5, 2024
•[ ransomware, malware, healthcare ]
The Community Clinic of Maui (Mlama) warns more than 123,000 people that their information was accessed by threat actors during a LockBit ransomware attack in May.
NorthBay VacaValley Hospital
April 4, 2024
•[ ransomware, malware, healthcare ]
The NorthBay VacaValley Hospital in California is forced to turn some patients away due to a ransomware attack.
Ernest Health
April 3, 2024
•[ ransomware, malware, healthcare ]
Ernest Health rehabilitation hospitals notify patients of a LockBit ransomware attack.
New Mexico Highlands University
April 3, 2024
•[ ransomware, malware, education ]
New Mexico Highlands University (NMHU) is forced to cancel all classes after suffering a ransomware attack.
Unnamed Philippines-based military company
April 3, 2024
•[ espionage, malware, government ]
China-linked APT used EggStreme (fileless, DLL-sideloaded) to persist on hosts at a Philippine military firm; EggStremeAgent backdoor + Keylogger enabled reconnaissance, lateral movement, and data theft; activity observed since early 2024; initial access unknown; attribution to a specific group not made.
East Baton Rouge Sheriff's Office
April 3, 2024
•[ ransomware, malware, government ]
The East Baton Rouge Sheriff's Office is hit with a ransomware attack. The Medusa group claims responsibility.
Undisclosed organization(s) or individual(s)
April 3, 2024
•[ hack, malware, technology ]
Google fixes CVE-2024-29745 and CVE-2024-29748, two Google Pixel zero-days exploited by forensic firms to unlock phones without a PIN and gain access to the data stored within them.
Jackson County
April 2, 2024
•[ ransomware, malware, government ]
Jackson County, Missouri, declares a state of emergency and closes key offices indefinitely as it responds to what officials believe is a ransomware attack that has made some of its IT systems inoperable.
MediSecure
April 1, 2024
•[ ransomware, malware, healthcare ]
The e-script provider MediSecure is hit with a ransomware attack. A subsequent analysis reveals that 12.9 million records were affected.
Hoya Corporation
March 31, 2024
•[ ransomware, malware, manufacturing ]
Hoya Corporation, one of the largest global manufacturers of optical products, says a "system failure" caused servers at some of its production plants and business divisions to go offline. The Hunters International ransomware gang claims responsibility for the attack and demands a $10M ransom.
Samsung Germany Customer Tickets
March 30, 2024
•[ leak, malware, technology ]
In March 2025, data from Samsung Germany was compromised in a data breach of their logistics provider, Spectos. Allegedly due to credentials being obtained by malware running on a Spectos employee's machine, the breach included 216k unique email addresses along with names, physical addresses, items purchased from Samsung Germany and related support tickets and shipping tracking numbers.
