Month: September 2023

HACKS OF TODAY 26/09/2023

Post author By Stefano Favarato
Post date 26/09/2023

HM Hacks Of Today

news

HACKS OF TODAY 26/09/2023

Today’s HOT includes 17 ransomware victims by the notorious Rhysida, Ransomed, ALPHV/BlackCat, Knight, 8Base, NoEscape and BianLian gangs.

The average Cyber Risk Factor is 4.1.

Read below the full list.

Disclaimer:

Data are collected from public info published on Dark Web.
The Cyber Risk factor is calculated on cyber attacks’ impact based on available data.
It shows the severity of an event: 1 = low, 5 = critical

KUWAIT MINISTRY OF FINANCE

Victim website:	mof.gov.kw
Victim country:	Kuwait
Attacker name:	Rhysida
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	$ 370,000
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous including PII documents and financial data
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	02^nd Oct 23
Cyber Risk Factor:	5

NTT DOCOMO

Victim website:	docomo.ne.jp
Victim country:	Japan
Attacker name:	Ransomed
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	$ 1,015,000
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	5

SAINT MARK CATHOLIC CHURCH

Victim website:	stmarknc.org
Victim country:	USA
Attacker name:	BianLIan
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	1.3 TB
Exfiltrated data type:	Finance data, Students’ and their parents’ confidential data, Internal email correspondence, Employees personal data
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	5

PRESTIGE CARE

Victim website:	prestigecare.com
Victim country:	USA
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	2 TB
Exfiltrated data type:	Personal data, finance, HR, Sharepoint, marketing, etc.
Leaked data:	260 GB of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	5

NUSMILES HOSPITAL

Victim website:	nusmiles.com
Victim country:	USA
Attacker name:	Knight
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

WEBBER RESTAURANT GROUP

Victim website:	webberrestaurantgroup.com
Victim country:	USA
Attacker name:	8Base
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Invoice, receipts, accounting documents, personal data, certificates, employment contracts, a huge amount of confidential information, confidentiality agreements, personal files
Leaked data:	/
Ransom deadline:	03^rd Oct 23
Cyber Risk Factor:	4

ZZCOLDSTORES

Victim website:	zzcoldstores.com
Victim country:	Netherlands
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	3

POND SECURITY

Victim website:	pond-security.com
Victim country:	Germany
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	28^th Sep 23
Cyber Risk Factor:	3

SUD TRADING COMPANY

Victim website:	stcpro.fr
Victim country:	France
Attacker name:	8Base
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Invoice, receipts, accounting documents, personal data, certificates, employment contracts
Leaked data:	/
Ransom deadline:	03^rd Oct 23
Cyber Risk Factor:	3

POWERHOUSE RETAIL SERVICES

Victim website:	powerhousenow.com
Victim country:	USA
Attacker name:	NoEscape
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	20 GB
Exfiltrated data type:	Agreement and contracts, full project list and project, thousands of legal documents, banking, tax, budget and finance sector, confidential information about employee, customer, vendor and management, DL ID card etc, report and audit, payments, invoice, check, insurance, license, incident report, ATM circuit and blueprints, SVW docs and tens of thousands of other critical and sensitive company data
Leaked data:	/
Ransom deadline:	30^th Sep 23
Cyber Risk Factor:	4

WATERLOO MEDIA

Victim website:	waterloomedia.com
Victim country:	USA
Attacker name:	NoEscape
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	50 GB
Exfiltrated data type:	Agreements, personal data of employees and customers, hundreds of resumes, taxes, accounting, HR, sales, reports, engineering and tens of thousands of other documents
Leaked data:	/
Ransom deadline:	06^th Oct 23
Cyber Risk Factor:	4

LUTHERAN CHURCH AND PRESCHOOL

Victim website:	lcoor.org
Victim country:	USA
Attacker name:	BianLIan
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	200 GB
Exfiltrated data type:	Finance data, HR data, Students’ personal data, SQL databases
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

KRAMER TREE SPECIALISTS

Victim website:	kramertree.com
Victim country:	USA
Attacker name:	BianLIan
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	450 GB
Exfiltrated data type:	Personal data employees, Customer information, Financial documents
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

ISTITUTO PROSPERIUS

Victim website:	prosperius.it
Victim country:	Italy
Attacker name:	Rhysida
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	$ 130,000
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous including insurance documents
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	03^rd Oct 23
Cyber Risk Factor:	4

BESTPACK PACKAGING

Victim website:	bestpack.com
Victim country:	USA
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	22 GB
Exfiltrated data type:	HR documents, engineering, finance, etc.
Leaked data:	100% of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

WOODY ANDERSON FORD

Victim website:	woodyandersonford.com
Victim country:	USA
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	0.6 GB
Exfiltrated data type:	DC-DUMP, DNS, passwords, webscan, other IT
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

NORDIC SECURITY SERVICES

Victim website:	nordicsec.com
Victim country:	USA
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	Data has been sold
Ransom deadline:	N/A
Cyber Risk Factor:	4

Stay safe!

Hackmanac Team

Latest news

HACKS OF TODAY 11-12-13-14-15/05/2024

Today's HOT includes 94 victims by the notorious Hunters International, Rhysida, BianLIan, dAn0n, Qilin, Embargo, Everest, INC Ransom, Black Suit, Monti, Akira, RansomHub, Zero Tolerance...

HACKS OF TODAY 09-10/05/2024

Today's HOT includes 94 victims by the notorious Hunters International, Rhysida, BianLIan, dAn0n, Qilin, Embargo, Everest, INC Ransom, Black Suit, Monti, Akira, RansomHub, Zero Tolerance...

OPERATION CRONOS AND THE MAGNITUDE OF THE LOCKBIT REACTION: 119 PREVIOUSLY UNCLAIMED VICTIMS WORLDWIDE

In recent days, following the events involving the LockBit criminal group and law enforcement with Operation Cronos, the hacker group decided to go all in...

Tags CYBER ATTACKS, CYBER SECURITY, CYBERCRIME, DARKWEB, DATA LEAK, HACKMANAC, MALWARE, RANSOMWARE

2023 HOT News-EN

HACKS OF TODAY 23-24-25/09/2023

Post author By Stefano Favarato
Post date 25/09/2023

HM Hacks Of Today

news

HACKS OF TODAY 23-24-25/09/2023

Today’s HOT includes 44 victims:

43 ransomware and 1 data breach by the notorious KaraKurt, ALPHV/BlackCat, Medusa, LockBit 3.0, Akira, Cl0p, Rhysida, 8Base, Ransomed, NoEscape, Stormous, Ragnar Locker and BianLian gangs.

The average Cyber Risk Factor is 3.4.

Read below the full list.

Disclaimer:

YAKIMA VALLEY RADIOLOGY

Victim website:	yakrad.com
Victim country:	USA
Attacker name:	KaraKurt
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	9.31 GB
Exfiltrated data type:	Financial reports, client lists with contacts, list of patients for 15 years (212579 rows), a database of social security numbers (including staff, doctors) with 766000 rows
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	5

PROGRESSIVE LEASING

Victim website:	progleasing.com
Victim country:	USA
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	18 TB
Exfiltrated data type:	Full Company Data (Internal file shares, Software sources of Leasing Systems ), 40 million customer records with full information, including their sensitive banking data
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	5

F.HINDS

Victim website:	fhinds.co.uk
Victim country:	United Kingdom
Attacker name:	BianLian
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	600 GB
Exfiltrated data type:	Network users folders, fileserver data, business files, data of company’s stores, files from company software, information concerning company suppliers and vendors
Leaked data:	100% of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	5

PHILIPPINE HEALTH INSURANCE

Victim website:	philhealth.gov.ph
Victim country:	Philippines
Attacker name:	Medusa
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	$ 300,000
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous including patient and doctor records
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	03^rd Oct 23
Cyber Risk Factor:	5

MNGI DIGESTIVE HEALTH

Victim website:	mngastro.com
Victim country:	USA
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	2 TB
Exfiltrated data type:	Miscellaneous including patient data and photos
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	26^th Sep 23
Cyber Risk Factor:	5

PRETZEL-STOUFFER

Victim website:	pretzel-stouffer.com
Victim country:	USA
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	736 GB
Exfiltrated data type:	Internal Company Data (Employees personal data, CV’s, DL’s, ID’s, SSN’s, Financial reports, Accounting data, Loans data, Insurance, Agreements and much more), of course it includes absolutely and highly confidential data, Clients documentation (DL’s, ID’s, SSN’s, Financial data, Credit cards information, Loans data, Agreements and much more), Database includes other commercial confidential data
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	28^th Sep 23
Cyber Risk Factor:	5

HOSPICE OF HUNTINGTON

Victim website:	hospiceofhuntington.org
Victim country:	USA
Attacker name:	KaraKurt
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	19.6
Exfiltrated data type:	Financial and operating files, HR information, medical records, PI of volunteers, information of donations, etc.
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

YUSEN LOGISTICS

Victim website:	yusen-logistics.com
Victim country:	Japan
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	90 GB
Exfiltrated data type:	Wire transfers, transactions, payment, invoices, and cash receipts, NDA agreements, and confidential contracts, Internal & Clients databases, Employees & Clients personal data, internal applications, etc.
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

CARLO DITTA

Victim website:	carlodittainc.net
Victim country:	USA
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	100 GB
Exfiltrated data type:	N/A
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

PELMOREX

Victim website:	pelmorex.com
Victim country:	USA
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	5,5 GB
Exfiltrated data type:	Databases, SecretServer RDP connection sources
Leaked data:	100% of the exfiltrated data
Ransom deadline:	25^th Sep 23
Cyber Risk Factor:	4

PIK RITE

Victim website:	pikrite.com
Victim country:	USA
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	250 GB
Exfiltrated data type:	Miscellaneous documents
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

CLX LOGISTICS

Victim website:	clxlogistics.com
Victim country:	USA
Attacker name:	Akira
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	26 GB
Exfiltrated data type:	Tons of business information: clients, personal information, a few confidential docs
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

PRECISION PRACTICE MANAGEMENT

Victim website:	precisionpractice.com
Victim country:	USA
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	26th Sep 23
Cyber Risk Factor:	4

SHEN MILSOM & WILKE

Victim website:	smwllc.com
Victim country:	USA
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Agreements, PII documents, confidential documents, etc.
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

ORT HARMELIN COLLEGE OF ENGINEERING

Victim website:	hermelin.ort.org.il
Victim country:	Israel
Attacker name:	Rhysida
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	$ 26,000
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous including PII documents
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

THE ENVELOPE WORKS

Victim website:	envelopeworks.com
Victim country:	United Kingdom
Attacker name:	8Base
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Questionnaires, passports, personal data, customer databases, copies of correspondence with clients, accounts, budgets, contracts
Leaked data:	/
Ransom deadline:	30^th Sep 23
Cyber Risk Factor:	4

FABRICATE ENGINEERING

Victim website:	fabric-ate.com
Victim country:	Turkey
Attacker name:	8Base
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Invoice, receipts, accounting documents, personal data, certificates, employment contracts, a huge amount of confidential information, confidentiality agreements, personal files
Leaked data:	/
Ransom deadline:	30^th Sep 23
Cyber Risk Factor:	4

FRANKTRONICS

Victim website:	franktronics.net
Victim country:	USA
Attacker name:	Medusa
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	$ 100,000
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous including financial documents and passwords
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	01^st Oct 23
Cyber Risk Factor:	4

CLARION

Victim website:	clarion.com
Victim country:	Japan
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Confidential data about their business and their partners, engineering information of the company’s customers, etc.
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	25^th Sep 23
Cyber Risk Factor:	4

ARELION

Victim website:	arelion.com
Victim country:	Sweden
Attacker name:	Ransomed
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	$ 40,000
Exfiltrated data amount:	N/A
Exfiltrated data type:	Customer data
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

LEEKES

Victim website:	leekes.co.uk
Victim country:	United Kingdom
Attacker name:	NoEscape
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	130 GB
Exfiltrated data type:	Hundreds of passports, ID cards, driver’s licenses, personal information of employees, clients, management, customers, a complete package of data on working with customers, confidential agreements, contracts, reports, supplier profiles, hundreds of certificates etc, finance, taxes, analytics, budget, accounting, banking, including personal banking information, engineering, export and import, HR, declarations, thousands of scans, backup data and tens of thousands of other confidential and important data
Leaked data:	/
Ransom deadline:	04^th Oct 23
Cyber Risk Factor:	4

BPR PROPERTIES

Victim website:	bpr-properties.com
Victim country:	USA
Attacker name:	NoEscape
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	100 GB
Exfiltrated data type:	HR, accounting, reports, audits, confidential agreements and contracts, personal information of employees, development, legal doc, insurance, finance, tax, budget, and tens of thousands of other confidential and important documents
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	03^rd Oct 23
Cyber Risk Factor:	4

PUNTO

Victim website:	punto.bg
Victim country:	Bulgaria
Attacker name:	Ransomed
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	$ 30,000
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

EPSON

Victim website:	epson.es
Victim country:	Spain
Attacker name:	Stormous
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	228 GB
Exfiltrated data type:	N/A
Leaked data:	100% of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

ALTMAN PLANTS

Victim website:	altmanplants.com
Victim country:	USA
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous documents
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	28^th Sep 23
Cyber Risk Factor:	4

SONY

Victim website:	sony.com
Victim country:	Japan
Attacker name:	Ransomed
Attacker class:	Cybercrime
Attack technique:	Data breach
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Quality Control Division documents, java files, etc.
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

ARDES

Victim website:	ardes.bg
Victim country:	Bulgaria
Attacker name:	Ransomed
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	$ 50,000
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

ANDREWS

Victim website:	andrews.bg
Victim country:	Bulgaria
Attacker name:	Ransomed
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	$ 50,000
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

SPRINGER EUBANK

Victim website:	springeroil.com
Victim country:	USA
Attacker name:	8Base
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Invoice, receipts, accounting documents, personal data, certificates, employment contracts
Leaked data:	/
Ransom deadline:	02^nd Oct 23
Cyber Risk Factor:	4

PRAXIS ARNDT UND LANGER

Victim website:	praxis-arndt-langer.de
Victim country:	Germany
Attacker name:	8Base
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Invoice, receipts, accounting documents, personal data, certificates, employment contracts, a huge amount of confidential information, confidentiality agreements, personal files
Leaked data:	/
Ransom deadline:	02^nd Oct 23
Cyber Risk Factor:	4

PHIL-DATA

Victim website:	phildata.com
Victim country:	Philippines
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Clients’ networks, their sensitive data, their business-critical information, PII documents, etc
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	26^th Sep 23
Cyber Risk Factor:	4

SKATAX

Victim website:	skatax.co.uk
Victim country:	United Kingdom
Attacker name:	Ragnar Locker
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	3

COMECA

Victim website:	comeca-group.com
Victim country:	France
Attacker name:	Ragnar Locker
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	3

SAGAM GROUPE

Victim website:	linkedin.com/company/sagam-groupe
Victim country:	France
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous including customer’s database, invoices, etc.
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	3

INTEREP

Victim website:	interep.com.br
Victim country:	Brazil
Attacker name:	Stormous
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous documents
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	15^th Oct 23
Cyber Risk Factor:	3

BNM BULGARIA

Victim website:	bnm.bg
Victim country:	Bulgaria
Attacker name:	Ransomed
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	$ 14,000
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	3

FOOTSHOP

Victim website:	footshop.bg
Victim country:	Bulgaria
Attacker name:	Ransomed
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	$ 15,000
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	3

DISTRICTSHOES

Victim website:	districtshoes.bg
Victim country:	Bulgaria
Attacker name:	Ransomed
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	$ 15,000
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	3

ECCO

Victim website:	ecco.bg
Victim country:	Bulgaria
Attacker name:	Ransomed
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	$ 15,000
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	3

MYSHOES

Victim website:	myshoes.bg
Victim country:	Bulgaria
Attacker name:	Ransomed
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	$ 15,000
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	3

POPOLO

Victim website:	popolo.bg
Victim country:	Bulgaria
Attacker name:	Ransomed
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	$ 15,000
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	3

EBAG

Victim website:	ebag.bg
Victim country:	Bulgaria
Attacker name:	Ransomed
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	$ 15,000
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	3

MANGO

Victim website:	mango.bg
Victim country:	Bulgaria
Attacker name:	Ransomed
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	$ 15,000
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	3

J.T. CULLEN

Victim website:	jtcullenco.com
Victim country:	USA
Attacker name:	8Base
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Invoice, receipts, accounting documents, personal data, certificates, employment contracts
Leaked data:	/
Ransom deadline:	02^nd Oct 23
Cyber Risk Factor:	3

Stay safe!

Hackmanac Team

Latest news

HACKS OF TODAY 11-12-13-14-15/05/2024

Today's HOT includes 94 victims by the notorious Hunters International, Rhysida, BianLIan, dAn0n, Qilin, Embargo, Everest, INC Ransom, Black Suit, Monti, Akira, RansomHub, Zero Tolerance...

HACKS OF TODAY 09-10/05/2024

Today's HOT includes 94 victims by the notorious Hunters International, Rhysida, BianLIan, dAn0n, Qilin, Embargo, Everest, INC Ransom, Black Suit, Monti, Akira, RansomHub, Zero Tolerance...

OPERATION CRONOS AND THE MAGNITUDE OF THE LOCKBIT REACTION: 119 PREVIOUSLY UNCLAIMED VICTIMS WORLDWIDE

In recent days, following the events involving the LockBit criminal group and law enforcement with Operation Cronos, the hacker group decided to go all in...

Tags CYBER ATTACKS, CYBER SECURITY, CYBERCRIME, DARKWEB, DATA LEAK, HACKMANAC, MALWARE, RANSOMWARE

2023 HOT News-EN

HACKS OF TODAY 22/09/2023

Post author By Stefano Favarato
Post date 22/09/2023

HM Hacks Of Today

news

HACKS OF TODAY 22/09/2023

Today’s HOT includes 16 ransomware victims by the notorious ALPHV/BlackCat, Monti, Rhysida, ThreeAM, Ragnar Locker and BianLian gangs.

The average Cyber Risk Factor is 4.2.

Read below the full list.

Disclaimer:

SMARTFREN TELECOM

Victim website:	smartfren.com
Victim country:	Indonesia
Attacker name:	BianLian
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	1.2 TB
Exfiltrated data type:	Personal data, accounting, budget, financial data, technical data, contract data and NDA’s, accidents, files from CFO PC, operational and business files, email and msg archives
Leaked data:	100% of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	5

UNIQUE ENGINEERING

Victim website:	unique.co.th
Victim country:	Thailand
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Engineering information on all of the company’s projects, client and partner databases, financial, banking and insurance information, contracts and sensitive documentation, personal data and internal company information, including management correspondence
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	5

TAOGLAS

Victim website:	taoglas.com
Victim country:	Ireland
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	497 GB
Exfiltrated data type:	Engineering data, finance documents, project data, etc.
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	5

PAINCARE

Victim website:	paincareoregon.com
Victim country:	USA
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	150 GB
Exfiltrated data type:	Patient’s and employee’s medical records, social security numbers, employees ID’s, contracts, drug screens, payments and another sensitive info. In addition they have gained access to portals of federal medical regulation web-resources that allows managing of prescribed medicine and provides access to medical records of various individuals
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	26^th Sep 23
Cyber Risk Factor:	5

ROAD SAFETY

Victim website:	roadsafetyinc.net
Victim country:	USA
Attacker name:	BianLian
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	370 GB
Exfiltrated data type:	Personal data, accounting, budget, financial data, technical data, plan&strategy company, clients company info, files from top management PC, operational and business files, email and msg archives
Leaked data:	/
Ransom deadline:	09^th Dec 23
Cyber Risk Factor:	4

ARAIL

Victim website:	arail-sa.com
Victim country:	Saudi Arabia
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Database, financial documents, invoices, contracts, etc.
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

EMPRESA NACIONAL DE DISTRIBUIÇÃO DE ELETRICIDADE

Victim website:	ende.co.ao
Victim country:	Angola
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	PII documents, financial data, contracts, etc.
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

COMERCIO E SERVIÇOS DE ANGOLA

Victim website:	cosal.co.ao
Victim country:	Angola
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	PII documents and financial data of customers
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

RUKO

Victim website:	ruko.de
Victim country:	Germany
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous documents, including personal data and internal sensitive documents
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

MOLE VALLEY FARMERS

Victim website:	moleonline.com
Victim country:	United Kingdom
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	130 GB
Exfiltrated data type:	Miscellaneous documents including backups
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

AUCKLAND UNIVERSITY OF TECHNOLOGY

Victim website:	aut.ac.nz
Victim country:	New Zealand
Attacker name:	Monti
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	60 GB
Exfiltrated data type:	Contracts, legal documents, financial data, etc.
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	09^th Oct 23
Cyber Risk Factor:	4

HOLON INSTITUTE OF TECHNOLOGY

Victim website:	hit.ac.il
Victim country:	Israel
Attacker name:	Rhysida
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	$ 125,000
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous including PII documents
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	29^th Sep 23
Cyber Risk Factor:	4

NEURAXPHARM

Victim website:	neuraxpharm.com
Victim country:	Spain
Attacker name:	ThreeAM
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous including backups, photos, invoices, etc.
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

HACIENDA ZORITA WINE HOTEL & SPA

Victim website:	haciendazorita.com
Victim country:	Spain
Attacker name:	ThreeAM
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous including personal data and photos
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

FI-TECH

Victim website:	fi-tech.com
Victim country:	USA
Attacker name:	ThreeAM
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous including invoices and photos
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

STRATESYS TECHNOLOGY SOLUTIONS

Victim website:	stratesys-ts.com
Victim country:	Portugal
Attacker name:	Ragnar Locker
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	3

Stay safe!

Hackmanac Team

Latest news

Tags CYBER ATTACKS, CYBER SECURITY, CYBERCRIME, DARKWEB, DATA LEAK, HACKMANAC, MALWARE, RANSOMWARE