Month: February 2023

HACKS OF THE DAY 03/02/2023

Post author By Stefano Favarato
Post date 03/02/2023

Hacks Of The Day news'cover

news

HACKS OF THE DAY 03/02/2023

Today’s HOTD includes 18 victims:

17 ransomware from the notorious LockBit 3.0, BlackCat/Alphv and Royal Ransomware gangs and 1 data breach.
The average Cyber Risk Factor of the day is 3.3.

Read below the full list.

Disclaimer:

Data are collected from public info published on Dark Web.
The Cyber Risk factor is calculated on cyber attacks’ impact based on available data.
It shows the severity of an event: 1 = low, 5 = critical

MCEWAN FRASER LEGAL

Victim website:	mcewanfraserlegal.co.uk
Victim country:	United Kingdom
Attacker name:	BlackCat/ALPHV
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	323 GB
Exfiltrated data type:	Internal Company Data (Employees personal data, CV’s, DL’s, ID’s, Passports, Financial reports, accounting data, Loans data, Insurance, Agreements and much more); Client’s documentation (DL’s, ID’s, Passports, Financial data, Credit cards information, Loans data, Agreements and much more); Complete network map including credentials for local and remote services.
Leaked data:	Sample with screenshots of PII
Ransom deadline:	N/A
Cyber Risk Factor:	5

MESSER CUTTING SYSTEMS

Victim website:	us.messer-cutting.com
Victim country:	USA
Attacker name:	Royal Ransomware
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	600 GB
Exfiltrated data type:	Personal data, HR, finance, projects, mailboxes
Leaked data:	20% of the total amount
Ransom deadline:	14 Feb 23
Cyber Risk Factor:	5

GUARDIAN ANALYTICS

Victim website:	guardiananalytics.com
Victim country:	USA
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	11,5 GB
Exfiltrated data type:	Miscellaneous documents
Leaked data:	Sample with miscellaneous documents
Ransom deadline:	18^th Feb 2023
Cyber Risk Factor:	4

SEEL

Victim website:	seelllc.com
Victim country:	USA
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	230 GB
Exfiltrated data type:	Miscellaneous documents
Leaked data:	Sample with miscellaneous documents
Ransom deadline:	21^st Feb 23
Cyber Risk Factor:	4

BIOSONICS

Victim website:	biosonicsinc.com
Victim country:	USA
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	228 GB
Exfiltrated data type:	Miscellaneous documents
Leaked data:	Sample with miscellaneous documents
Ransom deadline:	19^th Feb 23
Cyber Risk Factor:	4

KOSTICA

Victim website:	kostika.co.il
Victim country:	Israel
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	250 GB
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	20^th Feb 23
Cyber Risk Factor:	4

AVANTE TEXTIL

Victim website:	avantetextil.com.mx
Victim country:	Mexico
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	350 GB
Exfiltrated data type:	Miscellaneous documents
Leaked data:	Sample with miscellaneous documents
Ransom deadline:	23^rd Feb 23
Cyber Risk Factor:	4

PITT MEADOWS SCHOOL DISTRICT 42

Victim website:	sd42.ca
Victim country:	Canada
Attacker name:	N/A
Attacker class:	Cybercrime
Attack technique:	Data breach
Ransom demand:	N/A
Exfiltrated data amount:	18,850 records
Exfiltrated data type:	Students’ information
Leaked data:	Email addresses, passwords, usernames
Ransom deadline:	N/A
Cyber Risk Factor:	3

NEIGHBORHOOD LEGAL SERVICES MICHIGAN

Victim website:	nlsmichigan.org
Victim country:	USA
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous documents
Leaked data:	Sample with miscellaneous documents
Ransom deadline:	19^th Feb 23
Cyber Risk Factor:	3

ΒΥΤΕ COMPUTER S.A

Victim website:	byte.gr
Victim country:	Greece
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous documents
Leaked data:	Sample with miscellaneous documents
Ransom deadline:	23^rd Feb 23
Cyber Risk Factor:	3

FABRICATED PIPE

Victim website:	fabricatedpipe.com
Victim country:	USA
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous documents
Leaked data:	Sample with miscellaneous documents
Ransom deadline:	21^st Feb 23
Cyber Risk Factor:	3

SCANDIA FOOD

Victim website:	scandia.ro
Victim country:	Romania
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous documents
Leaked data:	Sample with miscellaneous documents
Ransom deadline:	23^rd Feb 23
Cyber Risk Factor:	3

SAKR GROUP

Victim website:	sakrgroup.net
Victim country:	Egypt
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous documents
Leaked data:	Sample with miscellaneous documents
Ransom deadline:	19^th Feb 23
Cyber Risk Factor:	3

CRYSTAL CREAMERY

Victim website:	crystalcreamery.com
Victim country:	USA
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous documents
Leaked data:	Sample with screenshots of PII
Ransom deadline:	24th Feb 23
Cyber Risk Factor:	3

PLASMAJET

Victim website:	plasmasurgical.com
Victim country:	USA
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous documents
Leaked data:	Sample with miscellaneous documents
Ransom deadline:	10^th Feb 23
Cyber Risk Factor:	3

TONOLI GROUP

Victim website:	tonoli.com
Victim country:	Italy
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	14^th Feb 23
Cyber Risk Factor:	2

BETH RIVKAH

Victim website:	bethrivkah.edu
Victim country:	USA
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	21^st Feb 23
Cyber Risk Factor:	2

ION

Victim website:	Iongroup.com
Victim country:	Luxembourg
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	4^th Feb 23
Cyber Risk Factor:	2

Stay safe!

Hackmanac Team

Latest news

HACKS OF TODAY 24/04/2024

Today's HOT includes 10 ransomware victims by the notorious RansomHouse, Black Suit, Rhysida, BianLian, RansomHub, BlackBasta, Eraleig and Qiulong gangs. The average Cyber Risk Factor is 4.4. Read...

HACKS OF TODAY 23/04/2024

Today's HOT includes 12 ransomware victims by the notorious Medusa, Abyss, RansomHouse, Cactus, RansomHub, BianLian, Qilin and Qiulong gangs. The average Cyber Risk Factor is 4.5. Read below...

HACKS OF TODAY 20-21-22/04/2024

Today's HOT includes 10 ransomware victims by the notorious 8Base, Medusa, Embargo and Inc Ransom gangs. The average Cyber Risk Factor is 3.9. Read below the full list.

Tags CYBER SECURITY, CYBERCRIME, DARKWEB, DATA BREACH, HACKING, HOTD, MALWARE, RANSOMWARE

2023 HOT News-EN

HACKS OF THE DAY 02/02/2023

Post author By Stefano Favarato
Post date 02/02/2023

Hacks Of The Day news'cover

news

HACKS OF THE DAY 02/02/2023

Today’s HOTD includes 5 victims:

5 ransomware from the notorious LockBit 3.0, Vice Society, BlackCat/Alphv, AvosLocker and Royal Ransomware gangs.
The average Cyber Risk Factor of the day is 3.2.

Read below the full list.

Disclaimer:

CANNONDESIGN

Victim website:	cannondesign.com
Victim country:	US
Attacker name:	AvosLocker
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	5,7 TB
Exfiltrated data type:	Corporate and client files
Leaked data:	100% of the exfiltrated data with samples
Ransom deadline:	N/A
Cyber Risk Factor:	5

SOTO CONSULTING ENGINEERS

Victim website:	soto.com.au
Victim country:	Australia
Attacker name:	BlackCat/ALPHV
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	356 GB
Exfiltrated data type:	Miscellaneous documents
Leaked data:	Internal Company Data (Employees personal data, CV’s, DL’s, ID’s, Financial reports, accounting data, Loans data, Insurance, Agreements, Confidential data, Passwords for online and offline services); Clients documentation (DL’s, ID’s, Financial data, Credit cards information, Loans data, Confidential data, Agreements); Complete network map including credentials for local and remote services;
Ransom deadline:	Expired
Cyber Risk Factor:	5

PHARMAGESTAO

Victim website:	pharmagestao.com.br
Victim country:	Brasil
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	21st Feb 2023
Cyber Risk Factor:	2

GUILDFORD COUNTY SCHOOL

Victim website:	guildfordcounty.co.uk
Victim country:	United Kingdom
Attacker name:	Vice Society
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous documents
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	2

CASA LEY

Victim website:	casaley.com.mx
Victim country:	Mexico
Attacker name:	Royal Ransomware
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	2

Stay safe!

Hackmanac Team

Latest news

HACKS OF TODAY 24/04/2024

Today's HOT includes 10 ransomware victims by the notorious RansomHouse, Black Suit, Rhysida, BianLian, RansomHub, BlackBasta, Eraleig and Qiulong gangs. The average Cyber Risk Factor is 4.4. Read...

HACKS OF TODAY 23/04/2024

Today's HOT includes 12 ransomware victims by the notorious Medusa, Abyss, RansomHouse, Cactus, RansomHub, BianLian, Qilin and Qiulong gangs. The average Cyber Risk Factor is 4.5. Read below...

HACKS OF TODAY 20-21-22/04/2024

Today's HOT includes 10 ransomware victims by the notorious 8Base, Medusa, Embargo and Inc Ransom gangs. The average Cyber Risk Factor is 3.9. Read below the full list.

Tags CYBER SECURITY, CYBERCRIME, DARKWEB, HACKING, HOTD, MALWARE, RANSOMWARE

2023 News-EN

CYBER SECURITY IN 2023: WHAT SHOULD WE IMPROVE?

Post author By Sofia
Post date 01/02/2023

news

CYBER SECURITY IN 2023: WHAT SHOULD WE IMPROVE?

2022 was a complex year to say the least: between the still unresolved Covid-19 pandemic emergency and the implications of the European conflict, the repercussions in the cyber security world were considerable.
Once again this can demonstrate how much there is still to do in this sector .

What changes will therefore need to be made to Cyber Security in 2023?
Let’s see the main ones.

Do not compress investments because of the crisis

The difficult economic situation that has arisen impacted every business sector.
In this scenario, Cyber Security already greatly underestimated, risks losing important investments when it’s clear that the emergency of cyber attacks shows no sign of diminishing.
In fact, attackers are dramatically constant and aware of how convenient can be to hit organizations that are already stressed and busy managing other problems.
This is demonstrated by the impact on the healthcare sector during the pandemic.

The solution?
Evaluate investments better, optimizing budgets so that they will be effective in contrasting threats while remaining economically efficient.

Outsource security services

Outsourcing security services in some situations is not only convenient but also the most valid solution.
This is true, for example, in the case of security assessments, where it makes sense for an external element to carry out the verifications and provide indications on corrective actions.

And this is also true for freelancers and small and medium-sized enterprises that do not always have technical staff to devote to IT and Cyber Security.
In these cases, managed security is the only viable solution.

The costs of managed Cyber Security services can be demanding, but it’s a priority, especially for a small company or a freelance, to properly assess risks and costs in case of systems compromissions: these can be huge and devastating.

Adapt services and solutions to SMEs

SMBs are often thought to be less exposed to cyber threats, as if cybercriminals were only interested in large and well known victims.

If it’s true that large companies offer a greater attack surface, on the other hand cyber criminals are perfectly aware that small companies are less protected. In these cases, cyber attacks have more chances of going to successful or they will not be detected and appropriately blocked.

The complexity of the cyber scenario therefore makes it essential for everyone, including SMEs and freelancers, to adopt an effective strategy that includes technological and organizational solutions.

However, managed security service managers must get used to preparing flexible and scalable offers in order to be able to serve even companies with reduced budgets.

2023 promises to be a very interesting year, but hopefully less problematic than the previous one.

Happy New Year and Good Job!

Latest news

Tags 2023, COVID19, CYBER SECURITY, CYBER SECURITY STRATEGY, SME