news
HACKS OF TODAY 28/11/2023
Today’s HOT includes 25 ransomware victims by the notorious RansomHouse, LockBit 3.0, Daixin, Cl0p, Cactus, Metaencryptor, ALPHV/BlackCat and Play gangs.
The average Cyber Risk Factor is 3.8.
Read below the full list.
Disclaimer:
Data are collected from public info published on Dark Web.
The Cyber Risk factor is calculated on cyber attacks’ impact based on available data.
It shows the severity of an event: 1 = low, 5 = critical
FIRST FINANCIAL SECURITY
Victim website: | firstfinancialsecurity.com |
Victim country: | USA |
Attacker name: | RansomHouse |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | 300 GB |
Exfiltrated data type: | N/A |
Leaked data: | / |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
Image: |
|
NORTH TEXAS MUNICIPAL WATER DISTRICT
Victim website: | ntmwd.com |
Victim country: | USA |
Attacker name: | Daixin |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | 33,844 files |
Exfiltrated data type: | N/A |
Leaked data: | Sample with proof of the exfiltrated data |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
Image: |
|
NORTH CAROLINA CENTRAL UNIVERSITY
Victim website: | nccu.edu |
Victim country: | USA |
Attacker name: | Cl0p |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | N/A |
Leaked data: | / |
Ransom deadline: | N/A |
Cyber Risk Factor: | 3 |
Image: |
|
ODALYS VACANCES
Victim website: | odalys-vacances.com |
Victim country: | France |
Attacker name: | Cactus |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Miscellaneous including ID cards |
Leaked data: | Sample with proof of the exfiltrated data |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
Image: |
|
MEDI-MARKET
Victim website: | medi-market.be |
Victim country: | Belgium |
Attacker name: | Cactus |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Miscellaneous including ID cards |
Leaked data: | Sample with proof of the exfiltrated data |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
Image: |
|
AXIOM CONSTRUCTION & CONSULTING
Victim website: | axiomconstruction.net |
Victim country: | USA |
Attacker name: | Cactus |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Miscellaneous including ID cards, agreements, etc. |
Leaked data: | Sample with proof of the exfiltrated data |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
Image: |
|
FYIDOCTORS
Victim website: | fyidoctors.com |
Victim country: | USA |
Attacker name: | Cactus |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Miscellaneous documents |
Leaked data: | Sample with proof of the exfiltrated data |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
Image: |
|
SPRINTER
Victim website: | sprintersports.com |
Victim country: | Spain |
Attacker name: | Metaencryptor |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | 1 TB |
Exfiltrated data type: | N/A |
Leaked data: | / |
Ransom deadline: | Expired |
Cyber Risk Factor: | 5 |
Image: |
|
FIRST HOUSING DEVELOPMENT
Victim website: | firsthousingfl.com |
Victim country: | USA |
Attacker name: | Hunters International |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | 17.9 GB (11,280 files) |
Exfiltrated data type: | N/A |
Leaked data: | / |
Ransom deadline: | 29th Nov 23 |
Cyber Risk Factor: | 4 |
Image: |
|
SINGLEPOINT OUTSOURCING
Victim website: | single-point.com |
Victim country: | USA |
Attacker name: | Play |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | private and personal confidential information, clients’ documents, budget details, HR information, IDs, tax and finance information, etc. |
Leaked data: | / |
Ransom deadline: | 04th Dec 23 |
Cyber Risk Factor: | 4 |
Image: |
|
CHINA PETROCHEMICAL DEVELOPMENT
Victim website: | cpdc.com.tw |
Victim country: | Taiwan |
Attacker name: | ALPHV/BlackCat |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | 41.9 GB |
Exfiltrated data type: | N/A |
Leaked data: | / |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
Image: |
|
THILLENS
Victim website: | thillens.com |
Victim country: | USA |
Attacker name: | Play |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Private and personal confidential information, clients’ documents, budget, HR information, scans, tax, finance information, etc. |
Leaked data: | / |
Ransom deadline: | 04th Dec 23 |
Cyber Risk Factor: | 4 |
Image: |
|
ELSTON-NATIONWIDE CARRIERS
Victim website: | elstonnationwide.com |
Victim country: | USA |
Attacker name: | Play |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Private and personal confidential data, including clients’ documents, budget, HR, tax, and finance information. |
Leaked data: | / |
Ransom deadline: | 04th Dec 23 |
Cyber Risk Factor: | 4 |
Image: |
|
AMERICAN INSULATED GLASS
Victim website: | aiglass.com |
Victim country: | USA |
Attacker name: | Play |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Private and personal confidential data, including clients’ documents, IDs, budget, HR, tax, and finance information |
Leaked data: | / |
Ransom deadline: | 04th Dec 23 |
Cyber Risk Factor: | 3 |
Image: |
|
MOORECO
Victim website: | moorecoinc.com |
Victim country: | USA |
Attacker name: | Play |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Private and personal confidential data, including clients’ documents, IDs, budget, HR information, agreements, tax, and finance information |
Leaked data: | / |
Ransom deadline: | 04th Dec 23 |
Cyber Risk Factor: | 3 |
Image: |
|
CONTINENTAL SHIPPING LINE
Victim website: | cslusa.com |
Victim country: | USA |
Attacker name: | Play |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Private and personal confidential information, clients’ documents, budget, HR, tax, finance information, and more. |
Leaked data: | / |
Ransom deadline: | 04th Dec 23 |
Cyber Risk Factor: | 4 |
Image: |
|
SPAREX LIMITED
Victim website: | sparex.com |
Victim country: | United Kingdom |
Attacker name: | Play |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Clients’ documents, budget information, scans, IDs, HR records, tax and finance information, etc. |
Leaked data: | / |
Ransom deadline: | 04th Dec 23 |
Cyber Risk Factor: | 4 |
Image: |
|
RETAILER WEB SERVICES
Victim website: | retailerwebservices.com |
Victim country: | USA |
Attacker name: | Play |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Private and confidential data, including client documents, financial information, etc. |
Leaked data: | / |
Ransom deadline: | 04th Dec 23 |
Cyber Risk Factor: | 3 |
Image: |
|
BYFOD
Victim website: | byfod.com |
Victim country: | Netherlands |
Attacker name: | Play |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Private and personal confidential data, including clients’ documents, budget, HR, tax, finance information, etc. |
Leaked data: | / |
Ransom deadline: | 04th Dec 23 |
Cyber Risk Factor: | 4 |
Image: |
|
SURVTECH SOLUTIONS
Victim website: | survtechsolutions.com |
Victim country: | USA |
Attacker name: | Play |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Private and personal confidential data, including client documents, budget information, IDs, HR data, tax and finance information, etc. |
Leaked data: | / |
Ransom deadline: | 04th Dec 23 |
Cyber Risk Factor: | 4 |
Image: |
|
EDGE
Victim website: | edge-re.com |
Victim country: | USA |
Attacker name: | Play |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Private and personal confidential information, clients’ documents, budget details, IDs, HR information, tax and finance information, etc. |
Leaked data: | / |
Ransom deadline: | 04th Dec 23 |
Cyber Risk Factor: | 3 |
Image: |
|
HI SCHOOL PHARMACY
Victim website: | hi-schoolpharmacy.com |
Victim country: | USA |
Attacker name: | LockBit 3.0 |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | $ 790,000 |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Payroll documents, accounting, etc. |
Leaked data: | 100% of the exfiltrated data |
Ransom deadline: | 30th Nov 23 |
Cyber Risk Factor: | 5 |
Image: |
|
DAWNSONGROUP
Victim website: | dawsongroup.uk |
Victim country: | United Kingdom |
Attacker name: | LockBit 3.0 |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | 400 GB |
Exfiltrated data type: | Finance documents, clients and customers’ data, employees’ data, working documents, etc. |
Leaked data: | / |
Ransom deadline: | 01st Dec 23 |
Cyber Risk Factor: | 4 |
Image: |
|
NATIONAL AEROSPACE LABORATORIES
Victim website: | nal.res.in |
Victim country: | India |
Attacker name: | LockBit 3.0 |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Organization’s data, including personal information and identity cards |
Leaked data: | / |
Ransom deadline: | 18th Dec 23 |
Cyber Risk Factor: | 4 |
Image: |
|
NOBLE MOUNTAIN TREE FARM
Victim website: | noblemountain.com |
Victim country: | USA |
Attacker name: | Play |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Private and personal confidential data, including clients’ documents, budget information, IDs, HR data, tax and finance information |
Leaked data: | / |
Ransom deadline: | 04th Dec 23 |
Cyber Risk Factor: | 3 |
Image: |
|
Stay safe!
Hackmanac Team!
Latest news
HACKS OF TODAY 09-10/05/2024
Today's HOT includes 94 victims by the notorious Hunters International, Rhysida, BianLIan, dAn0n, Qilin, Embargo, Everest, INC Ransom, Black Suit, Monti, Akira, RansomHub, Zero Tolerance...
Read MoreOPERATION CRONOS AND THE MAGNITUDE OF THE LOCKBIT REACTION: 119 PREVIOUSLY UNCLAIMED VICTIMS WORLDWIDE
In recent days, following the events involving the LockBit criminal group and law enforcement with Operation Cronos, the hacker group decided to go all in...
Read MoreHACKS OF TODAY 08/05/2024
Today's HOT includes 20 ransomware victims by the notorious Metaencryptor, Qilin, LockBit 3.0, Hunters International, INC Ransom, RansomHub, Medusa, Black Suit, APT73 and dAn0n gangs....
Read More