Chemical and IT sector organizations in South Korea
April 14, 2022
•[ espionage, malware, manufacturing ]
Researchers from Symantec Broadcom reveal that the Operation Dream Job has now been expanded to target chemical and IT sector organizations in South Korea.
New Creation Counseling Center (NCCC)
April 14, 2022
•[ ransomware, malware, healthcare ]
New Creation Counseling Center (NCCC) reveals to have suffered a ransomware attack that impacted 24,029 individuals
Musco Sports Lighting
April 14, 2022
•[ ransomware, leak, malware ]
Lorenz executed exfiltration of data and ransomeware in targeted network. Data presented on dark web "leak site"
Government Agencies in Ukraine
April 14, 2022
•[ hack, malware, government ]
The Computer Emergency Response Team of Ukraine (CERT-UA) reveal the details of a campaign targeting organizations in Ukraine and distributing the IcedID (aka BankBot) malware.
BHGRE Metro Brokers
April 13, 2022
•[ ransomware, malware ]
Documents Leaked on ransomware site.
Undisclosed U.S. Government Agency
April 12, 2022
•[ ransomware, malware, government ]
Researchers from Sophos reveal that a regional U.S. government agency compromised with LockBit ransomware had the threat actor in its network for at least five months before the payload was deployed.
DeeZee
April 12, 2022
•[ ransomware, leak, malware ]
Lorenz executed exfiltration of data and ransomeware in targeted network. Data presented on dark web "leak site"
Heartland Healthcare Services
April 11, 2022
•[ ransomware, malware, healthcare ]
Heartland Healthcare Services confirms that files containing patient data were exfiltrated from its network in an April 2022 ransomware attack.
Florida International University
April 11, 2022
•[ ransomware, malware, education ]
The BlackCat (ALPHV) ransomware group claims to have breached the Florida International University, stealing 1.2 TB of data.
Large Ukrainian energy provider
April 8, 2022
•[ hack, malware, energy ]
Researchers from ESET and the Computer Emergency Team of Ukraine (CERT-UA) reveal that the Russian state-sponsored hacking Sandworm, tried to to take down a large Ukrainian energy provider via a new wiper malware called Industroyer2.
ERP provider in the Middle East
April 7, 2022
•[ ransomware, malware, technology ]
Researchers from Kaspersky provide an analysis of a BlackCat ransomware attack targeting an undisclosed ERP provider in the Middle East.
McKenzie Health System
April 7, 2022
•[ ransomware, malware, healthcare ]
The Avos Locker ransomware gang lists McKenzie Health System among their victims.
Oil, gas, mining and construction company in South America
April 7, 2022
•[ ransomware, malware, energy ]
Researchers from Kaspersky provide an analysis of a BlackCat ransomware attack targeting an undisclosed oil, gas, mining and construction company in South America via a data exfiltration tool called Fendr and ExMatter.
I-SEC
April 5, 2022
•[ leak, ransomware, malware ]
Conti threat actors add I-SEC, one of the main providers in the field of aviation security, to their leak site and have provided some proof of claim.
Keicorp(ICPM)
April 5, 2022
•[ ransomware, leak, malware ]
Lorenz executed exfiltration of data and ransomeware in targeted network. Data presented on dark web "leak site"
Sonae
April 5, 2022
•[ ransomware, leak, malware ]
The RansomEXX ransomware gand drops leaked data samples on their TOR site.
Saskatchewan Liquor and Gaming Authority
April 4, 2022
•[ ransomware, malware, government ]
RANSOM HOUSE criminal gang exploits data and encrypts systems. Data and ransom demands presented on "leak" site on dark web.
Emma The Sleep
April 4, 2022
•[ financial, malware, manufacturing ]
Emma The Sleep confirms it suffered a Magecart attack which enabled the attackers to skim customers' credit or debit card data from its website.
Maternal & Family Health Services (MFHS)
April 4, 2022
•[ ransomware, malware, healthcare ]
Maternal & Family Health Services discloses that social Security numbers and other sensitive data was stolen by cybercriminals in a ransomware attack.
Nordex
April 2, 2022
•[ ransomware, malware, manufacturing ]
The Conti ransomware operation claims responsibility for a cyberattack on wind turbine giant Nordex, which was forced to shut down IT systems and remote access to the managed turbines.
