news

HACKS OF TODAY 10/10/2023

Today’s HOT includes 23 ransomware victims by the notorious LockBit 3.0, ALPHV/BlackCat, Knight, Cuba, Qilin, Play, RansomHouse, 8Base, Monti and NoEscape gangs.

The average Cyber Risk Factor is 4.1.

Read below the full list.

Disclaimer:

Data are collected from public info published on Dark Web.
The Cyber Risk factor is calculated on cyber attacks’ impact based on available data.
It shows the severity of an event: 1 = low, 5 = critical

FIRST JUDICIAL CIRCUIT

Victim website:	firstjudicialcircuit.org
Victim country:	USA
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	2 TB
Exfiltrated data type:	Employees’ details, sensitive data, etc.
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	5

CENTRE DU SABLON

Victim website:	centredusablon.com
Victim country:	Canada
Attacker name:	NoEscape
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	86 GB
Exfiltrated data type:	Passports and insurance cards, databases, backup data, user data, finance, budget from 2016 to 2024, banking, taxes, accounting, analytics, personal data of clients and employees including personal contacts and company management data, HR, management data, report, project, legal doc, and thousands of other critical and confidential data
Leaked data:	/
Ransom deadline:	17^th Oct 23
Cyber Risk Factor:	5

ORDINE DEGLI PSICOLOGI DELLA LOMBARDIA

Victim website:	opl.it
Victim country:	Italy
Attacker name:	NoEscape
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	7 GB
Exfiltrated data type:	Hundreds of passports and ID cards, confidential agreements and contracts, banking, legal documents, client data, reports, finances, letters and thousands of other important documents
Leaked data:	/
Ransom deadline:	17^th Oct 23
Cyber Risk Factor:	5

NATIONAL HEALTH MISSION

Victim website:	upnrhm.gov.in
Victim country:	India
Attacker name:	Knight
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	Sample with proof of access to the online platform
Ransom deadline:	N/A
Cyber Risk Factor:	5

MOUNT ST MARY’S

Victim website:	mountstmarys.org
Victim country:	USA
Attacker name:	Cuba
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Financial documents, correspondence with bank employees, account movements, balance sheets, tax documents, compensation, source code
Leaked data:	100% of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	5

DOTHANH AUTO

Victim website:	dothanhauto.com
Victim country:	Vietnam
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	100 GB
Exfiltrated data type:	Miscellaneous including financial documents, etc.
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	10^th Oct 23
Cyber Risk Factor:	4

TIRUS US

Victim website:	vsmpo-tirus.com
Victim country:	USA
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Business plans, confidential documents, customers’ details etc.
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	23^rd Oct 23
Cyber Risk Factor:	4

WT PARTNERSHIP ASIA

Victim website:	wtpartnership.asia
Victim country:	Hong Kong
Attacker name:	Qilin
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous including confidential agreements, projects, customers’ information, etc.
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

WYNDEMERE SENIOR CARE

Victim website:	wyndemerelcs.com
Victim country:	USA
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	59.2 GB
Exfiltrated data type:	Confidential data, data of employees, customers, partners, etc.
Leaked data:	100% of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

PENFIELD FIRE

Victim website:	penfieldfire.org
Victim country:	USA
Attacker name:	NoEscape
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Purchase contract and agreement, personal data of employees and citizens, including personal contacts and place of residence, tax, finance, budget, insurance, report, legal doc, PFD Commission data, scan, layout of Pinfield School and other buildings, letters and many other important documents
Leaked data:	/
Ransom deadline:	17^th Oct 23
Cyber Risk Factor:	4

HUGHES GILL COCHRANE TINETTI

Victim website:	hughes-gill.com
Victim country:	USA
Attacker name:	Play
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Private and personal confidential data, clients documents, contracts, HR, tax, finance information and etc
Leaked data:	/
Ransom deadline:	14^th Oct 23
Cyber Risk Factor:	4

CENTEK INDUSTRIES

Victim website:	centekindustries.com
Victim country:	USA
Attacker name:	Play
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Private and personal confidential data, clients documents, contracts, IDs, passports, payroll, tax, finance information and etc
Leaked data:	/
Ransom deadline:	13^th Oct 23
Cyber Risk Factor:	4

NACHTEXPRESS AUSTRIA

Victim website:	nox-nachtexpress.at
Victim country:	Austria
Attacker name:	Play
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Private and personal confidential data, clients documents, contracts, HR, IDs, passports, payroll, tax, finance information and etc
Leaked data:	/
Ransom deadline:	13^th Oct 23
Cyber Risk Factor:	4

WCM EUROPE

Victim website:	wcm.com
Victim country:	United Kingdom
Attacker name:	Play
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Private and personal confidential data, clients documents, contracts, HR, IDs, payroll, tax, finance information and etc
Leaked data:	/
Ransom deadline:	13^th Oct 23
Cyber Risk Factor:	4

STARR FINLEY

Victim website:	starrfinley.com
Victim country:	USA
Attacker name:	Play
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Private and personal confidential data, clients documents, contracts, HR, IDs, passports, payrolls , finance information and etc
Leaked data:	/
Ransom deadline:	13^th Oct 23
Cyber Risk Factor:	4

SALTIRE ENERGY

Victim website:	saltire-energy.com
Victim country:	United Kingdom
Attacker name:	Play
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Private and personal confidential data, clients documents, contracts, HR, IDs, passports, payrolls, tax, finance information and etc.
Leaked data:	/
Ransom deadline:	14^th Oct 23
Cyber Risk Factor:	4

GEACAM

Victim website:	geacam.es
Victim country:	Spain
Attacker name:	NoEscape
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	71 GB
Exfiltrated data type:	Confidential and sensitive company data
Leaked data:	/
Ransom deadline:	13^th Oct 23
Cyber Risk Factor:	4

ELBE-OBST FRUCHTVERARBEITUNG

Victim website:	fruchtverarbeitung.de
Victim country:	Germany
Attacker name:	NoEscape
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	30 GB
Exfiltrated data type:	Passports, ID cards, insurance cards, personal data of employees and clients, hiring short-term employees and documentation of employment, payments 2021-2023, certificates, resumes, reports, meeting documents, banking, agreements and contracts, payments, internal company documents, accesses and thousands of other confidential and sensitive company data
Leaked data:	/
Ransom deadline:	18^th Oct 23
Cyber Risk Factor:	4

VAN OIRSCHOT

Victim website:	vanoirschot.be
Victim country:	Belgium
Attacker name:	RansomHouse
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	250 GB
Exfiltrated data type:	N/A
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

EXDIONINSURANCE

Victim website:	exdioninsurance.com
Victim country:	USA
Attacker name:	8Base
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Invoice, receipts, accounting documents, personal data, certificates, employment contracts, a huge amount of confidential information, confidentiality agreements, personal files
Leaked data:	/
Ransom deadline:	17^th Oct 23
Cyber Risk Factor:	4

SUPERLINE

Victim website:	superlinewholesale.com
Victim country:	USA
Attacker name:	Monti
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	4 GB
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	19^th Oct 23
Cyber Risk Factor:	3

STARPLAST

Victim website:	starplast.fr
Victim country:	France
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	13^th Oct 23
Cyber Risk Factor:	3

ATLANTA TECHNICAL COLLEGE

Victim website:	atlantatech.edu
Victim country:	USA
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	14^th Oct 23
Cyber Risk Factor:	3

Stay safe!

Hackmanac Team

Latest news

HACKS OF TODAY 02/05/2024

Today's HOT includes 22 victims by the notorious BianLian, Ra World, RansomHub, INC Ransom, Ransomware Blog, Rhysida, Akira and Underground Team gangs. The average Cyber...

HACKS OF TODAY 30/04/2024 – 01/05/2024

Today's HOT includes 29 victims by the notorious LockBit 3.0, BlackBasta, Embargo, Medusa, Akira, Play, Snatch, Everest, Qilin, Cl0p and RansomHub gangs. The average Cyber...

HACKS OF TODAY 27-28-29/04/2024

Today's HOT includes 30 ransomware victims by the notorious Apos, Play, LockBit 3.0, RansomHub, INC Ransom, Black Suit, Eraleig, Qiulong, Hunters International, 8Base, BlackBasta and Space Bears...