news

HACKS OF THE DAY 23/02/2023

Today’s HOTD includes 15 ransomware victims of the notorious LockBit 3.0, BlackCat/ALPHV, Royal Ransomware, RansomHouse, RansomEXX, Ragnar Locker, Mallox and Medusa gangs.

The average Cyber Risk Factor of the day is 3.5.

Read below the full list.

Disclaimer:

Data are collected from public info published on Dark Web.
The Cyber Risk factor is calculated on cyber attacks’ impact based on available data.
It shows the severity of an event: 1 = low, 5 = critical

RAYAB CONSULTING ENGINEERS

Victim website:	rayabco.com
Victim country:	Iran
Attacker name:	Medusa
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	$ 800,000
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous, financial documents
Leaked data:	Sample with screenshots of miscellaneous financial documents
Ransom deadline:	05^th Mar 23
Cyber Risk Factor:	5

AESCULAPIUS FARMACEUTICI

Victim website:	aesculapius.it
Victim country:	Italy
Attacker name:	RansomHouse
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	60 GB
Exfiltrated data type:	Miscellaneous, clients, contractors, and confidential documents
Leaked data:	Evidence packs with several downloadable folders
Ransom deadline:	N/A
Cyber Risk Factor:	4

MOOSE, MARTIN, HAYNES & LUNDY

Victim website:	mmhlcpa.com
Victim country:	USA
Attacker name:	Medusa
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	$ 100,000
Exfiltrated data amount:	Large amount of files (at least 100 GB)
Exfiltrated data type:	Miscellaneous, financial, contracts and confidential documents
Leaked data:	Sample with screenshots of miscellaneous documents and the file tree
Ransom deadline:	04^th Mar 23
Cyber Risk Factor:	4

BOND IT

Victim website:	bond-it.co.uk
Victim country:	United Kingdom
Attacker name:	RansomHouse
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	700 GB
Exfiltrated data type:	Miscellaneous, contractors’ documents
Leaked data:	Evidence packs with several downloadable folders
Ransom deadline:	N/A
Cyber Risk Factor:	4

SIQUEIRACASTRO

Victim website:	siqueiracastro.com.br
Victim country:	Brazil
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	470 GB
Exfiltrated data type:	Finance, accounts, reports, contracts
Leaked data:	Sample with screenshots of miscellaneous documents
Ransom deadline:	15^th Mar 23
Cyber Risk Factor:	4

EDEESTE

Victim website:	edeeste.com.do
Victim country:	Dominican Republic
Attacker name:	BlackCat/ALPHV
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	420 GB
Exfiltrated data type:	Miscellaneous, projects, financial and contracts docments
Leaked data:	File tree with several downloadable folders
Ransom deadline:	N/A
Cyber Risk Factor:	4

KENDALL HUNT PUBLISHING

Victim website:	kendallhunt.com
Victim country:	USA
Attacker name:	BlackCat/ALPHV
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	84,9 GB
Exfiltrated data type:	Miscellaneous documents
Leaked data:	100% of the exfiltrated data
Ransom deadline:	Expired
Cyber Risk Factor:	4

BULOG

Victim website:	bulog.co.id
Victim country:	Indonesia
Attacker name:	RansomEXX
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	12,78 GB
Exfiltrated data type:	Miscellaneous documents
Leaked data:	100% of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	3

SKYLINE TRISOURCE EXHIBITS

Victim website:	skylinetrisource.com
Victim country:	USA
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous documents
Leaked data:	Sample with screenshots of miscellaneous documents
Ransom deadline:	09^th Mar 23
Cyber Risk Factor:	3

FOSTER FARMS

Victim website:	fosterfarms.com
Victim country:	USA
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous documents
Leaked data:	Sample with screenshots of miscellaneous documents
Ransom deadline:	07^th Mar 23
Cyber Risk Factor:	3

NOUGAT-CARLIER

Victim website:	nougat-carlier.be
Victim country:	Belgium
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	34,7 GB
Exfiltrated data type:	Miscellaneous documents
Leaked data:	Sample with screenshots of miscellaneous documents
Ransom deadline:	15^th Mar 23
Cyber Risk Factor:	3

AASP

Victim website:	aasp.org.br
Victim country:	Brazil
Attacker name:	Ragnar Locker
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	/
Exfiltrated data type:	Miscellaneous sensitive documents of customers and partners
Leaked data:	Sample with screenshots of miscellaneous documents
Ransom deadline:	25^th Feb 23
Cyber Risk Factor:	3

PRESTIGE MAINTENANCE

Victim website:	prestigeusa.net
Victim country:	USA
Attacker name:	BlackCat/ALPHV
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Contracts with various levels of customers (with all related documents) – NDA contracts with various levels of customers (including Apple and Coca-Cola) – Operating principles and business standards of the company (information useful for competitors) – Personal information (such data leakage that makes it possible to monetize it on the black market) – Financial and analytical information (over a long period of time, including accounting and tax records) – Internal corporate documents (providing an understanding of all the processes taking place in the company). – Databases and customer bases (data that can be sold) – Internal corporate information about the company’s customers (allowing you to understand work patterns, facilities, schedules and principles of penetration into their offices) And other sensitive data.
Leaked data:	Sample with downloadable folders
Ransom deadline:	26^th Feb 23
Cyber Risk Factor:	3

FICCI

Victim website:	ficci.in
Victim country:	India
Attacker name:	Mallox
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	1,28 GB
Exfiltrated data type:	Miscellaneous documents
Leaked data:	100% of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	3

STONE AND ELECTRICAL CONTRACTORS

Victim website:	stoneandsons.com
Victim country:	USA
Attacker name:	Royal Ransomware
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	2

Stay safe!

Hackmanac Team

Latest news

HACKS OF TODAY 30/04/2024 – 01/05/2024

Today's HOT includes 29 victims by the notorious LockBit 3.0, BlackBasta, Embargo, Medusa, Akira, Play, Snatch, Everest, Qilin, Cl0p and RansomHub gangs. The average Cyber...

HACKS OF TODAY 27-28-29/04/2024

Today's HOT includes 30 ransomware victims by the notorious Apos, Play, LockBit 3.0, RansomHub, INC Ransom, Black Suit, Eraleig, Qiulong, Hunters International, 8Base, BlackBasta and Space Bears...

HACKS OF TODAY 26/04/2024

Today's HOT includes 19 victims by the notorious Rhysida, Everest, RansomHouse, DarkVault, RansomHub, Medusa, Hunters International, Cactus and dAn0n gangs. The average Cyber Risk Factor is 4.2. Read...