news

HACKS OF TODAY 06/06/2023

Today’s HOT includes 16 victims:

15 ransomware by the notorious LockBit 3.0, Darkrace, BlackCat/ALPHV, KaraKurt, BlackBasta, 8Base, Akira and Medusa gangs and 1 data breach.

The average Cyber Risk Factor is 3.9.

Read below the full list.

Disclaimer:

Data are collected from public info published on Dark Web.
The Cyber Risk factor is calculated on cyber attacks’ impact based on available data.
It shows the severity of an event: 1 = low, 5 = critical

EXPEDITUS TRANSPORT

Victim website:	etships.com
Victim country:	USA
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	$ 1,000,000
Exfiltrated data amount:	Large amount of data
Exfiltrated data type:	Miscellaneous including contracts, financial and confidential documents
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	12^th Jun 23
Cyber Risk Factor:	5

NORTH WEST PAVING

Victim website:	northwestpaving.com
Victim country:	Canada
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous including contracts, employees, passwords, encryption keys, cyber incident response plan, confidential documents etc.
Leaked data:	Several downloadable sensitive documents
Ransom deadline:	N/A
Cyber Risk Factor:	5

BEACON ABA SERVICES

Victim website:	beaconservices.org
Victim country:	USA
Attacker name:	KaraKurt
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	80 GB
Exfiltrated data type:	Finance and accounting information. Numerous contracts, client data, full employees information.
Leaked data:	/
Ransom deadline:	10^th Jun 23
Cyber Risk Factor:	4

MALT PRODUCTS

Victim website:	maltproducts.com
Victim country:	USA
Attacker name:	Akira
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	Large amount of data
Exfiltrated data type:	accounting, financial and operational documentation, lots of passports, driver licenses and other personal information
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

BOBST

Victim website:	bobst.com
Victim country:	Switzerland
Attacker name:	BlackBasta
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous documents including invoices, PII, contracts, financial, customers’ information, confidential documents etc.
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

ROBISON ENGINEERING

Victim website:	robisonengineering.com
Victim country:	USA
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	240 GB
Exfiltrated data type:	Documents, files, spreadsheets, emails, etc. This includes a lot of construction plans, building plans, projects, blueprints.
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

STYLISH FABRIC

Victim website:	shakeys.com
Victim country:	USA
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous including invoices and financial documents
Leaked data:	Sample of 7,23 GB as a proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

FARMACIAS LOS HIDALGOS

Victim website:	dkgroup.com
Victim country:	Dominican Republic
Attacker name:	Medusa
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	$ 100,000
Exfiltrated data amount:	Large amount of data
Exfiltrated data type:	Miscellaneous including financial and employees documents
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	13^th Jun 23
Cyber Risk Factor:	4

CONCREMAT CONSTRUCTIONS

Victim website:	concremat.com.br
Victim country:	Brazil
Attacker name:	Medusa
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	$ 300,000
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous documents including confidential information
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	13^th Jun 23
Cyber Risk Factor:	4

BIBLIOTHEEK GOUDA

Victim website:	bibliotheekgouda.nl
Victim country:	Netherlands
Attacker name:	8Base
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	30 GB
Exfiltrated data type:	Confidential data of employees and customers, including passport data.
Leaked data:	/
Ransom deadline:	11^th Jun 23
Cyber Risk Factor:	4

TISHBI LAW FIRM

Victim website:	tishbilaw.com
Victim country:	USA
Attacker name:	8Base
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous documents data related to accidents, photos of accidents, customer driver’s licenses and correspondence.
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

JD GROUP

Victim website:	jdgroup.co.za
Victim country:	South Africa
Attacker name:	/
Attacker class:	Cybercrime
Attack technique:	Data breach
Ransom demand:	N/A
Exfiltrated data amount:	521,878 accounts
Exfiltrated data type:	Email addresses, Government issued IDs, Names, Phone numbers, Physical addresses
Leaked data:	100% of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

PICTURES PLUS AND O’ROKE PHOTOGRAPHY

Victim website:	picplus.com
Victim country:	USA
Attacker name:	Darkrace
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	87 GB
Exfiltrated data type:	Miscellaneous including financial, contracts, invoices and photos
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

D&K GROUP

Victim website:	dkgroup.com
Victim country:	USA
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Documents, contracts, spreadsheets, reports, agreements, emails, and so on.
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	3

RHINO BUILDING & DIY SUPPLIES

Victim website:	rhinobds.co.uk
Victim country:	United Kingdom
Attacker name:	8Base
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Internal documents of the company and various data of employees and customers
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	3

ADSTRA

Victim website:	adstradata.com
Victim country:	USA
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	25^th Jun 23
Cyber Risk Factor:	2

Stay safe!

Hackmanac Team

Latest news

CORRECTION ON MALASLOCKER ACTIVITIES

Following further information provided to us directly by the Italian company BeeVoip, it is necessary to correct a detail from our previous post regarding the...

HACKS OF TODAY 28/09/2023

Today's HOT includes 7 ransomware victims by the notorious Akira, NoEscape, ALPHV/BlackCat, ThreeAM, 8Base and Cactus gangs. The average Cyber Risk Factor is 3.7. Read below the...

HACKS OF TODAY 27/09/2023

Today's HOT includes 13 ransomware victims by the notorious Dunghill Leak, ALPHV/BlackCat, NoEscape, Medusa, Akira, Qilin, 8Base and Cactus gangs. The average Cyber Risk Factor is 4.1....