Month: June 2023

HACKS OF TODAY 30/06/2023

Post author By Stefano Favarato
Post date 30/06/2023

HM Hacks Of Today

news

HACKS OF TODAY 30/06/2023

Today’s HOT includes 13 victims:
1 ransomware by the notorious ALPHV/BlackCat gang and 12 zero-day exploit by Cl0p.

The average Cyber Risk Factor is 4.5.

Read below the full list.

Disclaimer:

Data are collected from public info published on Dark Web.
The Cyber Risk factor is calculated on cyber attacks’ impact based on available data.
It shows the severity of an event: 1 = low, 5 = critical

CITY NATIONAL BANK OF FLORIDA

Victim website:	citynational.com
Victim country:	USA
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	5

TRELLISWARE TECHNOLOGIES

Victim website:	trellisware.com
Victim country:	USA
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	5

RHENUS LOGISTICS

Victim website:	rhenus.group
Victim country:	Germany
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	5

FIS

Victim website:	fisglobal.com
Victim country:	USA
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	5

HORNBECK OFFSHORE

Victim website:	hornbeckoffshore.com
Victim country:	USA
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	5

ENCORE CAPITAL GROUP

Victim website:	encorecapital.com
Victim country:	USA
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	5

BARTS HEALTH NHS TRUST

Victim website:	bartshealth.nhs.uk
Victim country:	United Kingdom
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	7 TB
Exfiltrated data type:	– Internal Company Data (Employees personal data, CV’s, DL’s, ID’s, SSN’s, Financial reports, Accounting data, Loans data, Insurance, Agreements and much more); of course it include absolutely and highly confidential data. – Clients’ documentation (DL’s, ID’s, SSN’s, Financial data, Credit cards information, Loans data, Agreements and much more); – Database include other commercial confidential data.
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	03^rd Jul 23
Cyber Risk Factor:	5

HARRINGTON COMPANY

Victim website:	harringtoncompany.com
Victim country:	USA
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

CLICKS GROUP

Victim website:	clicksgroup.co.za
Victim country:	South Africa
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

SOVOS

Victim website:	sovos.com
Victim country:	USA
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

VERICAST

Victim website:	vericast.com
Victim country:	USA
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

IRON BOW TECHNOLOGIES

Victim website:	ironbow.com
Victim country:	USA
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

XAPIEN

Victim website:	digital-insight.com
Victim country:	United Kingdom
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

Stay safe!

Hackmanac Team

Latest news

HACKS OF TODAY 25/04/2024

Today's HOT includes 8 ransomware victims by the notorious RansomHub, Hunters International, Black Suit, Qiulong, DarkVault, RansomHouse, Qilin and MyData gangs. The average Cyber Risk Factor is 4.0....

HACKS OF TODAY 24/04/2024

Today's HOT includes 10 ransomware victims by the notorious RansomHouse, Black Suit, Rhysida, BianLian, RansomHub, BlackBasta, Eraleig and Qiulong gangs. The average Cyber Risk Factor is 4.4. Read...

HACKS OF TODAY 23/04/2024

Today's HOT includes 12 ransomware victims by the notorious Medusa, Abyss, RansomHouse, Cactus, RansomHub, BianLian, Qilin and Qiulong gangs. The average Cyber Risk Factor is 4.5. Read below...

Tags 0-DAY, CYBER ATTACKS, CYBER SECURITY, CYBERCRIME, DARKWEB, DATA BREACH, DATA LEAK, HACKMANAC, MALWARE, RANSOMWARE

2023 HOT News-EN

HACKS OF TODAY 29/06/2023

Post author By Stefano Favarato
Post date 29/06/2023

HM Hacks Of Today

news

HACKS OF TODAY 29/06/2023

Today’s HOT includes 8 victims:
7 ransomware by the notorious Ra Group, Akira, Rhysida, LockBit 3.0 gangs and 1 zero-day exploit by Cl0p.

The average Cyber Risk Factor is 4.1.

Read below the full list.

Disclaimer:

THAIRE

Victim website:	thaire.co.th
Victim country:	Thailand
Attacker name:	Ra Group
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	900 GB
Exfiltrated data type:	Compliance, account info, special projects, claim file, finance, bank, internal audit, investment, reinsurance, TPA info.
Leaked data:	100% of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	5

HOSPITALITY STAFFING SOLUTIONS

Victim website:	hssstaffing.com
Victim country:	USA
Attacker name:	Akira
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	1,31 TB
Exfiltrated data type:	Personal documents and business secrets, detailed employee and customer data
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	5

TSMC

Victim website:	tsmc.com
Victim country:	Taiwan
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	$ 70,000,000
Exfiltrated data amount:	N/A
Exfiltrated data type:	Points of entry into the network and passwords and logins
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	06^th Aug 23
Cyber Risk Factor:	5

K&L GATES

Victim website:	klgates.com
Victim country:	USA
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Confidential details and non-disclosure agreements
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

NYCON

Victim website:	nycon.com
Victim country:	USA
Attacker name:	Akira
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	SSNs, home addresses, mail addresses, other companies private information and much more
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

AME

Victim website:	amepl.com.au
Victim country:	Australia
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	100% of the exfiltrated data
Ransom deadline:	29^th Jul 23
Cyber Risk Factor:	4

WESTERN NATIONAL GROUP

Victim website:	wng.com
Victim country:	USA
Attacker name:	Rhysida
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous documents including passports, financial details etc
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	05^th Jul 23
Cyber Risk Factor:	3

ENFIELD GRAMMAR SCHOOL

Victim website:	enfieldgrammar.org
Victim country:	United Kingdom
Attacker name:	Rhysida
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	18 GB
Exfiltrated data type:	Miscellaneous documents drivers license and passports
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	3

Stay safe!

Hackmanac Team

Latest news

HACKS OF TODAY 25/04/2024

HACKS OF TODAY 24/04/2024

Today's HOT includes 10 ransomware victims by the notorious RansomHouse, Black Suit, Rhysida, BianLian, RansomHub, BlackBasta, Eraleig and Qiulong gangs. The average Cyber Risk Factor is 4.4. Read...

HACKS OF TODAY 23/04/2024

Today's HOT includes 12 ransomware victims by the notorious Medusa, Abyss, RansomHouse, Cactus, RansomHub, BianLian, Qilin and Qiulong gangs. The average Cyber Risk Factor is 4.5. Read below...

Tags 0-DAY, CYBER ATTACKS, CYBER SECURITY, CYBERCRIME, DARKWEB, DATA BREACH, DATA LEAK, HACKMANAC, MALWARE, RANSOMWARE

2023 HOT News-EN

HACKS OF TODAY 28/06/2023

Post author By Stefano Favarato
Post date 28/06/2023

HM Hacks Of Today

news

HACKS OF TODAY 28/06/2023

Today’s HOT includes 22 victims:
20 ransomware by the notorious BianLian, Play, BlackBasta and ALPHV/BlackCat, Mallox, 8Base, Medusa, Akira, KaraKurt, LockBit 3.0 gangs and 2 zero-day exploit by Cl0p.

The average Cyber Risk Factor is 3.9.

Read below the full list.

Disclaimer:

PIRAMAL GROUP

Victim website:	piramal.com
Victim country:	India
Attacker name:	BianLian
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	870 GB
Exfiltrated data type:	Financial data, accounting data of other companies, project data, technical data, personal data
Leaked data:	/
Ransom deadline:	10^th Jul 23
Cyber Risk Factor:	5

COACHELLA VALLEY COLLECTION SERVICE

Victim website:	cvcollection.com
Victim country:	USA
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	575 GB
Exfiltrated data type:	Internal Company Data (Employees personal data, CV’s, DL’s, ID’s, SSN’s, Financial reports, Accounting data, Loans data, Insurance, Agreements and much more); – Clients documentation (DL’s, ID’s, SSN’s, Financial data, Credit cards information, Loans data, Agreements and much more); – Complete network map including credentials for local and remote services
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	5

Cyber Risk Factor:

CAMBRIDGE GROUP OF CLUBS

Victim website:	cambridgegroupofclubs.com
Victim country:	Canada
Attacker name:	Play
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Private and personal confidential data, clients and employee documents, finance, passports, clients db, IDs, taxes, finance information and etc.
Leaked data:	/
Ransom deadline:	03^rd Jul 23
Cyber Risk Factor:	4

TEXAS HEAT TREATING

Victim website:	texasheattreating.com
Victim country:	USA
Attacker name:	Play
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Private and personal confidential data, clients and employee documents, IDs, passports, contracts, finance, projects, labs reports, a lot of technical documentation and etc.
Leaked data:	/
Ransom deadline:	03^rd Jul 23
Cyber Risk Factor:	4

MODERN INDUSTRIES

Victim website:	modernind.com
Victim country:	USA
Attacker name:	BlackBasta
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous documents including research materials confidential and non-disclosure documents
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

JBCC CORPORATION

Victim website:	jbcc.co.jp
Victim country:	Japan
Attacker name:	Mallox
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	61,2 GB
Exfiltrated data type:	100% of the exfiltrated data
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

ARAB SHIPBUILDING AND REPAIR YARD

Victim website:	asry.net
Victim country:	Bahrain
Attacker name:	BianLian
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	200 GB
Exfiltrated data type:	Clients’ data, ship and vessels plans (including navy ships), ship crew members personal data (international passports), business files, accounting data.
Leaked data:	100% of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

MISR LIFE INSURANCE

Victim website:	misrlife.com
Victim country:	Egypt
Attacker name:	BianLian
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	SQL backups, email archives, business files.
Leaked data:	100% of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

DARLING CONSULTING GROUP

Victim website:	darlingconsulting.com
Victim country:	USA
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

KIRKLAND & ELLIS

Victim website:	kirkland.com
Victim country:	USA
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

CON-STRUCT

Victim website:	constructiowa.com
Victim country:	USA
Attacker name:	8Base
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Construction schemes, various calculation tables, internal documents, data about objects and roads, projects, receipts, invoices, a huge number of accounting documents.
Leaked data:	/
Ransom deadline:	03^rd Jul 23
Cyber Risk Factor:	4

PORTER ROOFING

Victim website:	porter-roofing.com
Victim country:	USA
Attacker name:	Medusa
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Block diagrams, projects, data about objects and buildings, confidentiality and non-disclosure agreement, correspondence, seals, internal documentation, personal documents, licenses, contracts, passports, personal passwords, SSN databases.
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	03^rd Jul 23
Cyber Risk Factor:	4

WILCOM

Victim website:	wilcom.com
Victim country:	Australia
Attacker name:	Akira
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Lots of DLs, contracts, passports, non-disclosures and stuff.
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

PAN PACIFIC HOTELS GROUP

Victim website:	panpacific.com
Victim country:	Australia
Attacker name:	KaraKurt
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	46,6 GB
Exfiltrated data type:	Lots of corporate and personal documents. Contracts, ssns, passports, drivers’ licenses
Leaked data:	/
Ransom deadline:	01^st Jul 23
Cyber Risk Factor:	4

CENTROMED

Victim website:	centromedsa.com
Victim country:	USA
Attacker name:	KaraKurt
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	41,9 GB
Exfiltrated data type:	Several thousand ssns and other medical and health information. Accounting, financial, human resources data is also represented.
Leaked data:	/
Ransom deadline:	01^st Jul 23
Cyber Risk Factor:	4

IBA

Victim website:	ibafrance.fr
Victim country:	France
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	243 GB
Exfiltrated data type:	Miscellaneous including PII, financial documents
Leaked data:	100% of the exfiltrated data
Ransom deadline:	28^th Jun 23
Cyber Risk Factor:	4

ISPE CONNECTING PHARMACEUTICAL KNOWLEDGE

Victim website:	ispe.org
Victim country:	USA
Attacker name:	8Base
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Forms W9, receipts, invoices, financial documents, personal documents, seals, internal documents, driver’s license, card ID, workbooks with personal data, databases, correspondence, a huge number of forms I-9, many other files with personal data.
Leaked data:	/
Ransom deadline:	03^rd Jul 23
Cyber Risk Factor:	4

ALGOTECH

Victim website:	algotech.cz
Victim country:	Czech Republic
Attacker name:	Play
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Private and personal confidential data, clients and employee documents, IDs, passports, finance, taxes and etc.
Leaked data:	/
Ransom deadline:	03^rd Jul 23
Cyber Risk Factor:	3

INTOXIMETERS

Victim website:	intox.com
Victim country:	USA
Attacker name:	Play
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Private and personal confidential data, clients and employee documents, IDs, passports, contracts, finance, taxes and etc.
Leaked data:	/
Ransom deadline:	03^rd Jul 23
Cyber Risk Factor:	3

GRAPHTEC

Victim website:	graphtecinc.com
Victim country:	USA
Attacker name:	BlackBasta
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous documents including passports, credentials etc
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	3

GIAMBELLI

Victim website:	giambelli.it
Victim country:	Italy
Attacker name:	BlackBasta
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous documents including technical designs
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	3

STOUGHTON TRAILERS

Victim website:	stoughtontrailers.com
Victim country:	USA
Attacker name:	Akira
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Corporate papers including personal
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	3

Stay safe!

Hackmanac Team

Latest news

Tags 0-DAY, CYBER ATTACKS, CYBER SECURITY, CYBERCRIME, DARKWEB, DATA BREACH, DATA LEAK, HACKMANAC, MALWARE, RANSOMWARE