news
HACKS OF TODAY 05/07/2023
Today’s HOT includes 18 victims:
5 ransomware by the notorious LockBit 3.0, Medusa, MedusaLocker gangs, 2 data leak and 11 zero-day exploit by Cl0p.
The average Cyber Risk Factor is 3.9.
Read below the full list.
Disclaimer:
Data are collected from public info published on Dark Web.
The Cyber Risk factor is calculated on cyber attacks’ impact based on available data.
It shows the severity of an event: 1 = low, 5 = critical
YUNUS EMRE INSTITUTE
Victim website: |
turkce.yee.org.tr |
Victim country: |
Turkey |
Attacker name: |
Medusa |
Attacker class: |
Cybercrime |
Attack technique: |
Ransomware |
Ransom demand: |
$ 1,000,000 |
Exfiltrated data amount: |
1,1 TB |
Exfiltrated data type: |
Miscellaneous including financial and PII documents |
Leaked data: |
Sample with proof of the exfiltrated data |
Ransom deadline: |
12th Jul 23 |
Cyber Risk Factor: |
5 |
EURO SUPPORT
Victim website: |
eurosupport.com |
Victim country: |
Netherlands |
Attacker name: |
LockBit 3.0 |
Attacker class: |
Cybercrime |
Attack technique: |
Ransomware |
Ransom demand: |
$ 699,000 |
Exfiltrated data amount: |
N/A |
Exfiltrated data type: |
Miscellaneous including invoices and financial documents |
Leaked data: |
Sample with proof of the exfiltrated data |
Ransom deadline: |
19th Jul 23 |
Cyber Risk Factor: |
5 |
TDECU
Victim website: |
tdecu.org |
Victim country: |
USA |
Attacker name: |
Cl0p |
Attacker class: |
Cybercrime |
Attack technique: |
Zero-Day Vulnerability in MOVEit (CVE-2023-34362) |
Ransom demand: |
N/A |
Exfiltrated data amount: |
N/A |
Exfiltrated data type: |
N/A |
Leaked data: |
/ |
Ransom deadline: |
N/A |
Cyber Risk Factor: |
5 |
UNITED REGIONAL
Victim website: |
unitedregional.org |
Victim country: |
USA |
Attacker name: |
Cl0p |
Attacker class: |
Cybercrime |
Attack technique: |
Zero-Day Vulnerability in MOVEit (CVE-2023-34362) |
Ransom demand: |
N/A |
Exfiltrated data amount: |
N/A |
Exfiltrated data type: |
N/A |
Leaked data: |
/ |
Ransom deadline: |
N/A |
Cyber Risk Factor: |
5 |
HOOSIER EQUIPMENT COMPANY
Victim website: |
hoosierequipment.com |
Victim country: |
USA |
Attacker name: |
MedusaLocker |
Attacker class: |
Cybercrime |
Attack technique: |
Ransomware |
Ransom demand: |
$ 60,000 |
Exfiltrated data amount: |
N/A |
Exfiltrated data type: |
Agreement, email(.msg) and other documents |
Leaked data: |
Sample with proof of the exfiltrated data |
Ransom deadline: |
N/A |
Cyber Risk Factor: |
4 |
RECAM LASER
Victim website: |
recamlaser.com |
Victim country: |
Spain |
Attacker name: |
LockBit 3.0 |
Attacker class: |
Cybercrime |
Attack technique: |
Ransomware |
Ransom demand: |
$ 349,999 |
Exfiltrated data amount: |
N/A |
Exfiltrated data type: |
Miscellaneous including invoices and email correspondence |
Leaked data: |
Sample with proof of the exfiltrated data |
Ransom deadline: |
19th Jul 23 |
Cyber Risk Factor: |
4 |
DÜRR SYSTEMS
Victim website: |
durr.com |
Victim country: |
Germany |
Attacker name: |
Cl0p |
Attacker class: |
Cybercrime |
Attack technique: |
Zero-Day Vulnerability in MOVEit (CVE-2023-34362) |
Ransom demand: |
N/A |
Exfiltrated data amount: |
283,31 GB |
Exfiltrated data type: |
N/A |
Leaked data: |
/ |
Ransom deadline: |
N/A |
Cyber Risk Factor: |
4 |
BARRICK GOLD CORPORATION
Victim website: |
barrick.com |
Victim country: |
Canada |
Attacker name: |
Cl0p |
Attacker class: |
Cybercrime |
Attack technique: |
Zero-Day Vulnerability in MOVEit (CVE-2023-34362) |
Ransom demand: |
N/A |
Exfiltrated data amount: |
N/A |
Exfiltrated data type: |
N/A |
Leaked data: |
/ |
Ransom deadline: |
N/A |
Cyber Risk Factor: |
4 |
BRADY CORPORATION
Victim website: |
bradyid.com |
Victim country: |
USA |
Attacker name: |
Cl0p |
Attacker class: |
Cybercrime |
Attack technique: |
Zero-Day Vulnerability in MOVEit (CVE-2023-34362) |
Ransom demand: |
N/A |
Exfiltrated data amount: |
N/A |
Exfiltrated data type: |
N/A |
Leaked data: |
/ |
Ransom deadline: |
N/A |
Cyber Risk Factor: |
4 |
DRUCKEREI KYBURZ
Victim website: |
kyburzdruck.ch |
Victim country: |
Switzerland |
Attacker name: |
Cl0p |
Attacker class: |
Cybercrime |
Attack technique: |
Zero-Day Vulnerability in MOVEit (CVE-2023-34362) |
Ransom demand: |
N/A |
Exfiltrated data amount: |
N/A |
Exfiltrated data type: |
N/A |
Leaked data: |
/ |
Ransom deadline: |
N/A |
Cyber Risk Factor: |
4 |
CIENA
Victim website: |
ciena.com |
Victim country: |
USA |
Attacker name: |
Cl0p |
Attacker class: |
Cybercrime |
Attack technique: |
Zero-Day Vulnerability in MOVEit (CVE-2023-34362) |
Ransom demand: |
N/A |
Exfiltrated data amount: |
N/A |
Exfiltrated data type: |
N/A |
Leaked data: |
/ |
Ransom deadline: |
N/A |
Cyber Risk Factor: |
4 |
NORGREN
Victim website: |
norgren.com |
Victim country: |
USA |
Attacker name: |
Cl0p |
Attacker class: |
Cybercrime |
Attack technique: |
Zero-Day Vulnerability in MOVEit (CVE-2023-34362) |
Ransom demand: |
N/A |
Exfiltrated data amount: |
N/A |
Exfiltrated data type: |
N/A |
Leaked data: |
/ |
Ransom deadline: |
N/A |
Cyber Risk Factor: |
4 |
MERATIVE
Victim website: |
merative.com |
Victim country: |
USA |
Attacker name: |
Cl0p |
Attacker class: |
Cybercrime |
Attack technique: |
Zero-Day Vulnerability in MOVEit (CVE-2023-34362) |
Ransom demand: |
N/A |
Exfiltrated data amount: |
N/A |
Exfiltrated data type: |
N/A |
Leaked data: |
/ |
Ransom deadline: |
N/A |
Cyber Risk Factor: |
4 |
QUORUM
Victim website: |
quorumfcu.org |
Victim country: |
USA |
Attacker name: |
Cl0p |
Attacker class: |
Cybercrime |
Attack technique: |
Zero-Day Vulnerability in MOVEit (CVE-2023-34362) |
Ransom demand: |
N/A |
Exfiltrated data amount: |
N/A |
Exfiltrated data type: |
N/A |
Leaked data: |
/ |
Ransom deadline: |
N/A |
Cyber Risk Factor: |
4 |
TRANSPERFECT
Victim website: |
transperfect.com |
Victim country: |
USA |
Attacker name: |
Cl0p |
Attacker class: |
Cybercrime |
Attack technique: |
Zero-Day Vulnerability in MOVEit (CVE-2023-34362) |
Ransom demand: |
N/A |
Exfiltrated data amount: |
N/A |
Exfiltrated data type: |
N/A |
Leaked data: |
/ |
Ransom deadline: |
N/A |
Cyber Risk Factor: |
4 |
CONDOR AIRLINES
Victim website: |
condor.com |
Victim country: |
Germany |
Attacker name: |
/ |
Attacker class: |
Cybercrime |
Attack technique: |
Data leak |
Ransom demand: |
N/A |
Exfiltrated data amount: |
600 MB |
Exfiltrated data type: |
Admin panels, ftp access, server log files and etc. |
Leaked data: |
100% of the exfiltrated data |
Ransom deadline: |
N/A |
Cyber Risk Factor: |
3 |
MITR
Victim website: |
mitr.com |
Victim country: |
Thailand |
Attacker name: |
LockBit 3.0 |
Attacker class: |
Cybercrime |
Attack technique: |
Ransomware |
Ransom demand: |
N/A |
Exfiltrated data amount: |
N/A |
Exfiltrated data type: |
N/A |
Leaked data: |
/ |
Ransom deadline: |
05th Jul 23 |
Cyber Risk Factor: |
2 |
LE PIPE
Victim website: |
Lepipe.it |
Victim country: |
Italy |
Attacker name: |
/ |
Attacker class: |
Cybercrime |
Attack technique: |
Data leak |
Ransom demand: |
N/A |
Exfiltrated data amount: |
8575 compromised accounts |
Exfiltrated data type: |
Database including Last name, First name, Email, Amounts, Customer, Street, House number, ZIP code, City, Province, State, Phone, Tax identification number, VAT number, Password, Reseller, etc. |
Leaked data: |
100% of the exfiltrated data |
Ransom deadline: |
N/A |
Cyber Risk Factor: |
2 |
Stay safe!
Hackmanac Team
Latest news
HACKS OF TODAY 08/05/2024
Today's HOT includes 20 ransomware victims by the notorious Metaencryptor, Qilin, LockBit 3.0, Hunters International, INC Ransom, RansomHub, Medusa, Black Suit, APT73 and dAn0n gangs....
Read MoreHACKS OF TODAY 07/05/2024
Today's HOT includes 66 victims by the notorious Black Suit, Akira, BianLian, DarkVault, Play, RansomHub, INC Ransom, Qilin, Abyss and LockBit 3.0 gangs. The average...
Read MoreHACKS OF TODAY 03-04-05-06/05/2024
Today's HOT includes 22 victims by the notorious BianLian, Ra World, RansomHub, INC Ransom, Ransomware Blog, Rhysida, Akira and Underground Team gangs. The average Cyber...
Read More