news
HACKS OF TODAY 05/09/2023
Today’s HOT includes 23 ransomware victims by the notorious LockBit 3.0, NoEscape, Ransomed, Cactus, Play and Trigona gangs.
The average Cyber Risk Factor is 3.7.
Read below the full list.
Disclaimer:
Data are collected from public info published on Dark Web.
The Cyber Risk factor is calculated on cyber attacks’ impact based on available data.
It shows the severity of an event: 1 = low, 5 = critical
NORTHWAVE
Victim website: | northwave.it |
Victim country: | Italy |
Attacker name: | NoEscape |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | 248 GB |
Exfiltrated data type: | 230GB Outlook Data, LogData from 1998 to 2023, Over 10,000 file Order Confirmation, Over 50,000 file Transport Documents, Over 90,000 file Credit Note & Invoice, Over 50,000 file Shipping order, Over 1,500 file Weekly report, Over 800 file Customer account statement, And many other important and confidential company documents. |
Leaked data: | / |
Ransom deadline: | 14th Sep 23 |
Cyber Risk Factor: | 5 |
CYBERPORT
Victim website: | cyberport.hk |
Victim country: | Hong Kong |
Attacker name: | Trigona |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | $ 300,000 |
Exfiltrated data amount: | 400 GB |
Exfiltrated data type: | Projects, HR, Financial data, PII documents etc |
Leaked data: | Sample with proof of the exfiltrated data |
Ransom deadline: | 28th Sep 23 |
Cyber Risk Factor: | 5 |
UNIMED
Victim website: | unimed.coop.br |
Victim country: | Brazil |
Attacker name: | Trigona |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | $ 500,000 |
Exfiltrated data amount: | 12 GB |
Exfiltrated data type: | Miscellaneous including financial data |
Leaked data: | Sample with proof of the exfiltrated data |
Ransom deadline: | N/A |
Cyber Risk Factor: | 5 |
SWIPE
Victim website: | swipe.bg |
Victim country: | Bulgaria |
Attacker name: | Ransomed |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | $ 50,000 |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | User data, Customers, chats, SSNs, Numbers, Addresses and more |
Leaked data: | / |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
BALMIT BULGARIA
Victim website: | baumit.com. |
Victim country: | Bulgaria |
Attacker name: | Ransomed |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | $ 80,000 |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Miscellaneous data, source, private data from their servers |
Leaked data: | / |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
BARCO UNIFORMS
Victim website: | barcouniforms.com |
Victim country: | USA |
Attacker name: | Cactus |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Miscellaneous including non-disclosure documents and financial data |
Leaked data: | Sample with proof of the exfiltrated data |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
BALCAN
Victim website: | balcan.com |
Victim country: | Canada |
Attacker name: | Cactus |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Miscellaneous including PII documents, confidential documents, financial data etc. |
Leaked data: | Sample with proof of the exfiltrated data |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
HBME LLC
Victim website: | hbme.com |
Victim country: | USA |
Attacker name: | NoEscape |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | 25 GB |
Exfiltrated data type: | Personal data of clients (name, adress, dob, cellphone), Personal and Consolidated Financial Statements, Agreement, access, invoices, banking, accounting, financial indicators, payments, insurance, thousands of tax documents, backup data, certificate, etc. |
Leaked data: | / |
Ransom deadline: | 14th Sep 23 |
Cyber Risk Factor: | 4 |
MULKAY CARDIOLOGY CONSULTANTS
Victim website: | mulkaycardiology.com |
Victim country: | USA |
Attacker name: | NoEscape |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | 60 GB |
Exfiltrated data type: | Confidential and personal data on more than 30,000 patients, scans, doctor’s conclusions about patients and many other confidential information |
Leaked data: | / |
Ransom deadline: | 11th Sep 23 |
Cyber Risk Factor: | 4 |
MEDCENTER TAMBOV
Victim website: | medcenter-tambov.ru |
Victim country: | Russia |
Attacker name: | Ransomed |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | $ 25,000 |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Database, and other non-public documents |
Leaked data: | / |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
EASY DENTAL CARE
Victim website: | easydentalcare.us |
Victim country: | USA |
Attacker name: | Ransomed |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | $ 18,000 |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Miscellaneous documents |
Leaked data: | / |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
FIRMDALE HOTELS
Victim website: | firmdalehotels.com |
Victim country: | United Kingdom |
Attacker name: | Play |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | At least 5 GB |
Exfiltrated data type: | Private and personal confidential data, clients and employee documents, contracts, IDs, passports, clients’ scans, HR, finance information and etc. |
Leaked data: | Partially leaked (5 GB) |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
FORONI S.p.A.
Victim website: | foroni.com |
Victim country: | Italy |
Attacker name: | Cactus |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Confidentiality agreements, passports, financial documents, email correspondence and related attachments etc. |
Leaked data: | Sample with proof of the exfiltrated data |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
LAGARDE MEREGNANI
Victim website: | lagardemeregnani.fr |
Victim country: | France |
Attacker name: | Cactus |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Passports, confidential documents, agreements etc. |
Leaked data: | Sample with proof of the exfiltrated data |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
WANTAGER
Victim website: | wantager.com |
Victim country: | Ukraine |
Attacker name: | Ransomed |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | $ 10,000 |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | the Database, Customers Chats, Bank Transfer Documents |
Leaked data: | / |
Ransom deadline: | N/A |
Cyber Risk Factor: | 3 |
NUCLEUS
Victim website: | nucleus.live |
Victim country: | South Africa |
Attacker name: | Ransomed |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | $ 18,000 |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Database, Customers Chats, Bank Transfer Documents |
Leaked data: | / |
Ransom deadline: | N/A |
Cyber Risk Factor: | 3 |
MAKFLIX
Victim website: | makflix.eu |
Victim country: | N/A |
Attacker name: | Ransomed |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | $ 9,000 |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Database, Customers Chats, and other non-public documents. |
Leaked data: | / |
Ransom deadline: | N/A |
Cyber Risk Factor: | 3 |
LAA SR
Victim website: | laasr.eu |
Victim country: | Slovenia |
Attacker name: | Ransomed |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | $ 10,000 |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Database, and other non-public documents |
Leaked data: | / |
Ransom deadline: | N/A |
Cyber Risk Factor: | 3 |
QUANTINUUM
Victim website: | quantinuum.com |
Victim country: | USA |
Attacker name: | Ransomed |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Database, and other non-public documents |
Leaked data: | / |
Ransom deadline: | N/A |
Cyber Risk Factor: | 3 |
GODBEY LAW
Victim website: | godbeylaw.com |
Victim country: | USA |
Attacker name: | LockBit 3.0 |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | N/A |
Leaked data: | / |
Ransom deadline: | 26th Sep 23 |
Cyber Risk Factor: | 3 |
SIMMONS PERRINE MOYER BERGMAN
Victim website: | spmblaw.com |
Victim country: | USA |
Attacker name: | LockBit 3.0 |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | N/A |
Leaked data: | / |
Ransom deadline: | 06th Sep 23 |
Cyber Risk Factor: | 3 |
BARSCO
Victim website: | barsco.com |
Victim country: | USA |
Attacker name: | Cactus |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Financial data, employees’ information etc. |
Leaked data: | Sample with proof of the exfiltrated data |
Ransom deadline: | N/A |
Cyber Risk Factor: | 3 |
HORNSYLD KØBMANDSGAARD
Victim website: | hk-hornsyld.dk |
Victim country: | Denmark |
Attacker name: | Cactus |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Passports, agreements, financial data, etc. |
Leaked data: | Sample with proof of the exfiltrated data |
Ransom deadline: | N/A |
Cyber Risk Factor: | 3 |
Stay safe!
Hackmanac Team
Latest news
HACKS OF TODAY 16 to 20/05/2024
Today's HOT includes 61 victims by the notorious LockBit 3.0, ThreeAM, Qilin, RansomHub, Snatch, Cactus, Kill Security, DragonForce, Money Message, Hunters International, Cloak, RansomHouse. INC...
Read MoreHACKS OF TODAY 11-12-13-14-15/05/2024
Today's HOT includes 94 victims by the notorious Hunters International, Rhysida, BianLIan, dAn0n, Qilin, Embargo, Everest, INC Ransom, Black Suit, Monti, Akira, RansomHub, Zero Tolerance...
Read MoreHACKS OF TODAY 09-10/05/2024
Today's HOT includes 94 victims by the notorious Hunters International, Rhysida, BianLIan, dAn0n, Qilin, Embargo, Everest, INC Ransom, Black Suit, Monti, Akira, RansomHub, Zero Tolerance...
Read More