news
HACKS OF TODAY 22/11/2023
Today’s HOT includes 23 ransomware victims by the notorious ALPHV/BlackCat, 8Base, Hunters International, Medusa, Snatch, Rhysida, Cactus, ThreeAM and LockBit 3.0 gangs.
The average Cyber Risk Factor is 3.9.
Read below the full list.
Disclaimer:
Data are collected from public info published on Dark Web.
The Cyber Risk factor is calculated on cyber attacks’ impact based on available data.
It shows the severity of an event: 1 = low, 5 = critical
CRYSTAL LAKE HEALTH CENTER
Victim website: | crystallakehealthcenters.com |
Victim country: | USA |
Attacker name: | Hunters International |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | 137.6 GB |
Exfiltrated data type: | Patients’ data, employees’ data, contracts, financial data, insurance data, credit cards data. |
Leaked data: | / |
Ransom deadline: | 24th Nov 23 |
Cyber Risk Factor: | 5 |
Image: |
FLOYD SKEREN
Victim website: | floydskerenlaw.com |
Victim country: | USA |
Attacker name: | LockBit 3.0 |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | 890 GB |
Exfiltrated data type: | Client databases, cases containing confidential data, various legal documents, results of medical research of clients, judicial acts, many documents marked confidential, proposals on various cases, extensive mail correspondence discussing cases and confidential data, contracts, various requests, employee data including SSN, residential address, telephone, date of birth, contracts, I9 tax forms, license information, and other documents, financial documents such as balance sheets, budgets, tax forms, various financial statements, W9, 1099 tax forms, bank statements, transaction reports, and much more. |
Leaked data: | / |
Ransom deadline: | 22nd Nov 23 |
Cyber Risk Factor: | 5 |
Image: |
COMMUNITY HOSPITAL
Victim website: | chal.org |
Victim country: | USA |
Attacker name: | Medusa |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | $ 600,000 |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Miscellaneous and sensitive documents |
Leaked data: | Sample with screenshots of patients’ and employees’ data, financial documents, confidential and non-disclosure sheets, ID cards, invoices, etc. |
Ransom deadline: | 30th Nov 23 |
Cyber Risk Factor: | 5 |
Image: |
ALVIMEDICA
Victim website: | alvimedica.com |
Victim country: | Turkey |
Attacker name: | Snatch |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | N/A |
Leaked data: | / |
Ransom deadline: | N/A |
Cyber Risk Factor: | 3 |
Image: |
APVL INGÉNIERIE
Victim website: | apvl.com |
Victim country: | France |
Attacker name: | 8Base |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Invoice, receipts, accounting documents, personal data, certificates, employment contracts, a huge amount of confidential information, confidentiality agreements, personal files. |
Leaked data: | / |
Ransom deadline: | 28th Nov 23 |
Cyber Risk Factor: | 4 |
Image: |
COLD CAR SPA
Victim website: | coldcar.com |
Victim country: | Italy |
Attacker name: | 8Base |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Invoice, receipts, accounting documents, personal data, certificates, employment contracts, a huge amount of confidential information, confidentiality agreements, personal files. |
Leaked data: | / |
Ransom deadline: | 28th Nov 23 |
Cyber Risk Factor: | 4 |
Image: |
ST EDMUND’S COLLEGE & PREP SCHOOL
Victim website: | stedmundscollege.org |
Victim country: | United Kingdom |
Attacker name: | Rhysida |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | 5 BTC (~ $180,000) |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | N/A |
Leaked data: | / |
Ransom deadline: | 28th Nov 23 |
Cyber Risk Factor: | 4 |
Image: |
Q AUTOMOTIVE GROUP
Victim website: | qautomotive.com.au |
Victim country: | Australia |
Attacker name: | LockBit 3.0 |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | N/A |
Leaked data: | / |
Ransom deadline: | 25th Nov 23 |
Cyber Risk Factor: | 3 |
Image: |
MARTINIQUE BAR
Victim website: | martinique.no |
Victim country: | Norway |
Attacker name: | LockBit 3.0 |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | N/A |
Leaked data: | / |
Ransom deadline: | 25th Nov 23 |
Cyber Risk Factor: | 2 |
Image: |
PHI HYDRAULICS
Victim website: | phihydraulics.com |
Victim country: | USA |
Attacker name: | LockBit 3.0 |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | N/A |
Leaked data: | / |
Ransom deadline: | 29th Nov 23 |
Cyber Risk Factor: | 3 |
Image: |
PAUL STUART
Victim website: | paulstuart.com |
Victim country: | USA |
Attacker name: | Cactus |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | N/A |
Leaked data: | Sample with screenshots of non-disclosure agreements, financial data, employment agreements, personal data. |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
Image: |
PETERSEN HEALTH CARE
Victim website: | petersenhealthcare.net |
Victim country: | USA |
Attacker name: | Cactus |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | N/A |
Leaked data: | Sample with scans of passports, driving licenses, etc. |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
Image: |
VERHELST GROUP
Victim website: | verhelst.be |
Victim country: | Belgium |
Attacker name: | Cactus |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | N/A |
Leaked data: | Sample with screenshots of financial data, ID cards |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
Image: |
BNP MEDIA
Victim website: | bnpmedia.com |
Victim country: | USA |
Attacker name: | LockBit 3.0 |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | N/A |
Leaked data: | / |
Ransom deadline: | 23rd Nov 23 |
Cyber Risk Factor: | 3 |
Image: |
IMPERIALI AG
Victim website: | imperiali.ch |
Victim country: | Switzerland |
Attacker name: | 8Base |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Invoice, receipts, accounting documents, personal data, certificates, employment contracts, a huge amount of confidential information, confidentiality agreements, personal files. |
Leaked data: | / |
Ransom deadline: | 28th Nov 23 |
Cyber Risk Factor: | 4 |
Image: |
BROWN’S BAY PACKING
Victim website: | brownsbaypacking.ca |
Victim country: | Canada |
Attacker name: | 8Base |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Invoice, receipts, accounting documents, personal data, certificates, employment contracts, a huge amount of confidential information, confidentiality agreements, personal files. |
Leaked data: | / |
Ransom deadline: | 28th Nov 23 |
Cyber Risk Factor: | 3 |
Image: |
HILLS LEGAL GROUP
Victim website: | hillslegal.com |
Victim country: | USA |
Attacker name: | 8Base |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Invoice, receipts, accounting documents, personal data, certificates, employment contracts, a huge amount of confidential information, confidentiality agreements, personal files. |
Leaked data: | / |
Ransom deadline: | 28th Nov 23 |
Cyber Risk Factor: | 4 |
Image: |
LA CONTABILE SPA
Victim website: | lacontabile.net |
Victim country: | Italy |
Attacker name: | 8Base |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Invoice, receipts, accounting documents, personal data, certificates, employment contracts, a huge amount of confidential information, confidentiality agreements, personal files. |
Leaked data: | / |
Ransom deadline: | 28th Nov 23 |
Cyber Risk Factor: | 4 |
Image: |
DMC LUXEMBOURG
Victim website: | dmc-luxembourg.lu |
Victim country: | Luxembourg |
Attacker name: | 8Base |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Invoice, receipts, accounting documents, personal data, certificates, employment contracts, a huge amount of confidential information, confidentiality agreements, personal files. |
Leaked data: | / |
Ransom deadline: | 28th Nov 23 |
Cyber Risk Factor: | 4 |
Image: |
DS GRANIT
Victim website: | ds-granit.fr |
Victim country: | France |
Attacker name: | ThreeAM |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | N/A |
Leaked data: | Sample with proof of the exfiltrated data showing files belonging to the service client. |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
Image: |
MERZ
Victim website: | merz-elektro.de |
Victim country: | Germany |
Attacker name: | LockBit 3.0 |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | N/A |
Leaked data: | Sample with screenshots of invoices |
Ransom deadline: | 04th Dec 23 |
Cyber Risk Factor: | 4 |
Image: |
ART-ECO S.r.l.
Victim website: | art-eco.it |
Victim country: | Italy |
Attacker name: | LockBit 3.0 |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | N/A |
Leaked data: | Sample with screenshots of financial documents |
Ransom deadline: | 28th Nov 23 |
Cyber Risk Factor: | 4 |
Image: |
|
THE ROBISON GROUP
Victim website: | therobisongroup.com |
Victim country: | USA |
Attacker name: | LockBit 3.0 |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | N/A |
Leaked data: | Sample with screenshots of employees’ data and miscellaneous sheets. |
Ransom deadline: | 28th Nov 23 |
Cyber Risk Factor: | 4 |
Image: |
Stay safe!
Hackmanac Team!
Latest news
HACKS OF TODAY 22-23-24-25/03/2024
Today's HOT includes 32 ransomware victims by the notorious Qilin, LockBit 3.0, Medusa, Kill Security, RansomHub, BlackBasta, BianLian, Cactus, Ra World, Cloak, ThreeAM, RansomEXX and INC Ransom...
Read MoreHACKS OF TODAY 21/03/2024
Today's HOT includes 9 ransomware victims by the notorious BlackBasta, Medusa, RansomHub, Ra World and Rhysida gangs. The average Cyber Risk Factor is 4.1. Read below the full...
Read MoreHACKS OF TODAY 19-20/03/2024
Today's HOT includes 22 ransomware victims by the notorious Hunters International, LockBit 3.0, DragonForce, Medusa, Trigona, Snatch, 8Base, Rhysida, BlackBasta and BianLian gangs. The average Cyber Risk...
Read More