news

HACKS OF TODAY 02/11/2023

Today’s HOT includes 20 ransomware victims by the notorious Daixin, NoEscape, Medusa, 8Base, Rhysida, BlackBasta, ALPHV/BlackCat, Black Suit, Snatch and LockBit 3.0 gangs.

The average Cyber Risk Factor is 3.9.

Read below the full list.

Disclaimer:

Data are collected from public info published on Dark Web.
The Cyber Risk factor is calculated on cyber attacks’ impact based on available data.
It shows the severity of an event: 1 = low, 5 = critical

BLUEWATER HEALTH

Victim website:	bluewaterhealth.ca
Victim country:	Canada
Attacker name:	Daixin
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	160 GB
Exfiltrated data type:	5.6 million records containing PII and PHI information, 160 GB of sensitive documents, which include scanned copies of personal and health information.
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	5

R N WOOLER

Victim website:	rnwooler.co.uk
Victim country:	United Kingdom
Attacker name:	NoEscape
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	840 GB
Exfiltrated data type:	Almost a million documents of thousands of people
Leaked data:	/
Ransom deadline:	12^th Nov 23
Cyber Risk Factor:	5

SOFTWARE SYSTEMS

Victim website:	softwaresysinc.com
Victim country:	USA
Attacker name:	Medusa
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	$ 100,000
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous including financial documents
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	09^th Nov 23
Cyber Risk Factor:	4

IMPREX

Victim website:	imprex.es
Victim country:	Spain
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous including employees’ data, customers, marketing, financial, etc.
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	15^th Nov 23
Cyber Risk Factor:	4

KIT PROFESSIONALS

Victim website:	kitprofs.com
Victim country:	USA
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous including letters, confidential documents, technical designs, employees’ data, backups, etc.
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	15^th Nov 23
Cyber Risk Factor:	4

HBLFA RAUMBERG-GUMPENSTEIN

Victim website:	raumberg-gumpenstein.at
Victim country:	Austria
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous including financial data, invoices, customers’ documents, etc.
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	15^th Nov 23
Cyber Risk Factor:	4

DIVISION 5

Victim website:	steelofcarolina.com
Victim country:	USA
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous including employees’ details, backups, financial documents, accounting and insurance, certificates, technical designs, etc.
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	15^th Nov 23
Cyber Risk Factor:	4

VITA RESEARCH

Victim website:	vitaresearch.com
Victim country:	Italy
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Banking data, contracts, and a screenshot showing the exfiltration of administrative documents, legal papers, co-owned cards, and more.
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	15^th Nov 23
Cyber Risk Factor:	4

DE GREGORIS

Victim website:	degregoris.com
Victim country:	Italy
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Invoices, legal documents, login credentials for the Agenzia delle Entrate portal, customer information, banking data, and more.
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	15^th Nov 23
Cyber Risk Factor:	4

SCHWOB AG

Victim website:	schwob.swiss
Victim country:	Switzerland
Attacker name:	NoEscape
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	238 GB
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	07^th Nov 23
Cyber Risk Factor:	4

GROUPE FAUBOURG

Victim website:	groupe-faubourg.com
Victim country:	France
Attacker name:	8Base
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Invoices, receipts, accounting documents, personal data, certificates, employment contracts, confidentiality information, personal files etc.
Leaked data:	/
Ransom deadline:	08^th Nov 23
Cyber Risk Factor:	4

GO HANDELSSCHOOL AALST

Victim website:	handelsschoolaalst.be
Victim country:	Belgium
Attacker name:	Rhysida
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	114 GB
Exfiltrated data type:	N/A
Leaked data:	100% of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

EMPRESAS IMAN

Victim website:	imancorp.es
Victim country:	Spain
Attacker name:	BlackBasta
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous documents including passports
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

AF SUPPLY

Victim website:	afsupply.com
Victim country:	USA
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Financial, insurance, medical, court, and other documents.
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

HAL ALLERGY

Victim website:	hal-allergy.com
Victim country:	Netherlands
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	62.4 MB
Exfiltrated data type:	Invoices and EU Plans
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

CONTACT COTTRELL AND MCCULLOUGH

Victim website:	cottrelldental.com
Victim country:	US
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

HAWKEYE AREA COMMUNITY ACTION PROGRAM

Victim website:	hacap.org
Victim country:	USA
Attacker name:	Black Suit
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	3

SAN MIGUEL CORPORATION

Victim website:	sanmiguel.com.ph
Victim country:	Philippines
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	N/A
Ransom deadline:	15^th Nov 23
Cyber Risk Factor:	3

DETROIT SYMPHONY ORCHESTRA

Victim website:	dso.org
Victim country:	USA
Attacker name:	Snatch
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	3

PSMI (PRODUCTION SERVICES MANAGEMENT)

Victim website:	psmicorp.com
Victim country:	USA
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	22^nd Nov 23
Cyber Risk Factor:	3

Stay safe!

Hackmanac Team

Latest news

HACKS OF TODAY 09-10/05/2024

Today's HOT includes 94 victims by the notorious Hunters International, Rhysida, BianLIan, dAn0n, Qilin, Embargo, Everest, INC Ransom, Black Suit, Monti, Akira, RansomHub, Zero Tolerance...

OPERATION CRONOS AND THE MAGNITUDE OF THE LOCKBIT REACTION: 119 PREVIOUSLY UNCLAIMED VICTIMS WORLDWIDE

In recent days, following the events involving the LockBit criminal group and law enforcement with Operation Cronos, the hacker group decided to go all in...

HACKS OF TODAY 08/05/2024

Today's HOT includes 20 ransomware victims by the notorious Metaencryptor, Qilin, LockBit 3.0, Hunters International, INC Ransom, RansomHub, Medusa, Black Suit, APT73 and dAn0n gangs....