news
HACKS OF THE DAY 14/02/2023
Today’s HOTD includes 19 ransomware victims of the notorious LockBit 3.0, Royal Ransomware, RansomHouse, Medusa and BlackCat/ALPHV gangs.
The average Cyber Risk Factor of the day is 3.7.
Read below the full list.
Disclaimer:
Data are collected from public info published on Dark Web.
The Cyber Risk factor is calculated on cyber attacks’ impact based on available data.
It shows the severity of an event: 1 = low, 5 = critical
BANK OF AFRICA
Victim website: | bank-of-africa.net |
Victim country: | Morocco |
Attacker name: | Medusa |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | $ 10,000,000 |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Miscellaneous including financial and confidential documents |
Leaked data: | Sample with screenshots of miscellaneous financial and confidential documents |
Ransom deadline: | 20th Feb 23 |
Cyber Risk Factor: | 5 |
CNPR CASSA RAGIONIERI
Victim website: | cassaragionieri.it |
Victim country: | Italy |
Attacker name: | LockBit 3.0 |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | $ 399,000 |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | miscellaneous PII, financial, confidential documents |
Leaked data: | Sample with screenshots of Miscellaneous PII, financial, confidential documents |
Ransom deadline: | 23rd Feb 23 |
Cyber Risk Factor: | 5 |
EUREKA CASINO RESORT
Victim website: | eurekamesquite.com |
Victim country: | USA |
Attacker name: | Medusa |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | $ 2,000,000 |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Miscellaneous financial and PII documents |
Leaked data: | Sample with screenshots of miscellaneous financial and PII documents |
Ransom deadline: | 16th Feb 23 |
Cyber Risk Factor: | 5 |
TONGA COMMUNICATIONS
Victim website: | Tcc.to |
Victim country: | Tonga |
Attacker name: | Medusa |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | $ 2,000,000 |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Miscellaneous documents |
Leaked data: | Sample with screenshots of miscellaneous confidential documents |
Ransom deadline: | 25th Feb 23 |
Cyber Risk Factor: | 5 |
HIDALGO COUNTY COMMUNITY SUPERVISION AND CORRECTIONS DEPARTMENT
Victim website: | hidalgocounty.us |
Victim country: | USA |
Attacker name: | LockBit 3.0 |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | 134 GB |
Exfiltrated data type: | Miscellaneous documents |
Leaked data: | Sample with screenshots of miscellaneous documents |
Ransom deadline: | 06th Mar 23 |
Cyber Risk Factor: | 4 |
BANCO SOL
Victim website: | bancosol.ao |
Victim country: | Angola |
Attacker name: | BlackCat/ALPHV |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Internal Company Data (Employees personal data, CV’s, DL’s, ID’s, Passports, Financial reports, accounting data, Loans data, Insurance, Agreements and much more); Client’s documentation (DL’s, ID’s, Passports, Financial data, Credit cards information, Loans data, Agreements and much more); Complete network map including credentials for local and remote services. |
Leaked data: | / |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
VITAS
Victim website: | vitas.ps |
Victim country: | Palestine |
Attacker name: | BlackCat/ALPHV |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | 1,05 TB |
Exfiltrated data type: | Confidential data (finances, passports, customer bases, reports, etc.) |
Leaked data: | Sample with screenshots of miscellaneous and PII documents |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
DIETHELM KELLER AVIATION PTE LTD
Victim website: | diethelmkelleraviation.com |
Victim country: | Singapore |
Attacker name: | Medusa |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | $ 200,000 |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Miscellaneous documents |
Leaked data: | Sample with screenshots of miscellaneous documents |
Ransom deadline: | 17th Feb 23 |
Cyber Risk Factor: | 4 |
HOSPITAL SERVICE SPA
Victim website: | hshospitalservice.com |
Victim country: | Italy |
Attacker name: | RansomHouse |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | 50 GB |
Exfiltrated data type: | Confidential data |
Leaked data: | Sample with confidential data |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
CHEMPARTNER
Victim website: | chempartner.com |
Victim country: | China |
Attacker name: | LockBit 3.0 |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | 281 GB |
Exfiltrated data type: | Company analytics, project information, reports, information on drug supplies |
Leaked data: | Sample with screenshots of miscellaneous documents |
Ransom deadline: | 06th Mar 23 |
Cyber Risk Factor: | 4 |
TUCSON EYE CARE
Victim website: | tucsoneyecare.com |
Victim country: | USA |
Attacker name: | LockBit 3.0 |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | 22,8 GB |
Exfiltrated data type: | Miscellaneous documents including PHI documents |
Leaked data: | Sample with screenshots of PHI documents |
Ransom deadline: | 04th Mar 23 |
Cyber Risk Factor: | 4 |
VANDER KAAY
Victim website: | vanderkaay.com |
Victim country: | USA |
Attacker name: | LockBit 3.0 |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | 195 GB |
Exfiltrated data type: | Miscellaneous documents |
Leaked data: | Sample with screenshots of miscellaneous documents |
Ransom deadline: | 06th Mar 23 |
Cyber Risk Factor: | 4 |
REVENTICS
Victim website: | reventics.com |
Victim country: | USA |
Attacker name: | Royal Ransomware |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Miscellaneous documents |
Leaked data: | 10% of the total amount exfiltrated |
Ransom deadline: | N/A |
Cyber Risk Factor: | 3 |
DANA GROUP ASSOCIATES
Victim website: | dana-group.com |
Victim country: | USA |
Attacker name: | LockBit 3.0 |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Miscellaneous financial and PII documents |
Leaked data: | Sample with screenshots of miscellaneous financial and PII documents |
Ransom deadline: | 05th Mar 23 |
Cyber Risk Factor: | 3 |
MANGALA GROUP
Victim website: | mangalagroup.com |
Victim country: | India |
Attacker name: | LockBit 3.0 |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | 23,6 GB |
Exfiltrated data type: | Miscellaneous documents |
Leaked data: | Sample with screenshots of miscellaneous documents |
Ransom deadline: | 06th Mar 23 |
Cyber Risk Factor: | 3 |
NON SON FASHION
Victim website: | nonson.com.vn |
Victim country: | Vietnam |
Attacker name: | LockBit 3.0 |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Miscellaneous documents |
Leaked data: | Sample with screenshots of PII documents |
Ransom deadline: | 05th Mar 23 |
Cyber Risk Factor: | 3 |
LAGAN SPECIALIST CONTRACTING
Victim website: | laganscg.com |
Victim country: | Ireland |
Attacker name: | LockBit 3.0 |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | N/A |
Leaked data: | / |
Ransom deadline: | 28th Feb 23 |
Cyber Risk Factor: | 2 |
MDS LOGISTICS
Victim website: | mdstrucking.com |
Victim country: | USA |
Attacker name: | LockBit 3.0 |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | N/A |
Leaked data: | / |
Ransom deadline: | 27th Feb 23 |
Cyber Risk Factor: | 2 |
GREEK PEAK MOUNTAIN RESORT
Victim website: | greekpeak.net |
Victim country: | USA |
Attacker name: | LockBit 3.0 |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | N/A |
Leaked data: | / |
Ransom deadline: | 28th Feb 23 |
Cyber Risk Factor: | 2 |
Stay safe!
Hackmanac Team
Latest news
HACKS OF TODAY 11-12-13-14-15/05/2024
Today's HOT includes 94 victims by the notorious Hunters International, Rhysida, BianLIan, dAn0n, Qilin, Embargo, Everest, INC Ransom, Black Suit, Monti, Akira, RansomHub, Zero Tolerance...
Read MoreHACKS OF TODAY 09-10/05/2024
Today's HOT includes 94 victims by the notorious Hunters International, Rhysida, BianLIan, dAn0n, Qilin, Embargo, Everest, INC Ransom, Black Suit, Monti, Akira, RansomHub, Zero Tolerance...
Read MoreOPERATION CRONOS AND THE MAGNITUDE OF THE LOCKBIT REACTION: 119 PREVIOUSLY UNCLAIMED VICTIMS WORLDWIDE
In recent days, following the events involving the LockBit criminal group and law enforcement with Operation Cronos, the hacker group decided to go all in...
Read More