news

HACKS OF TODAY 13/09/2023

Today’s HOT includes 14 ransomware victims by the notorious Akira, Play, Lorenz, ALPHV/BlackCat, Knight, INC Ransom, RansomHouse and LockBit 3.0 gangs.

The average Cyber Risk Factor is 4.0.

Read below the full list.

Disclaimer:

Data are collected from public info published on Dark Web.
The Cyber Risk factor is calculated on cyber attacks’ impact based on available data.
It shows the severity of an event: 1 = low, 5 = critical

ACCURIDE

Victim website:	accuridecorp.com
Victim country:	USA
Attacker name:	Akira
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	Terabytes of data
Exfiltrated data type:	Engineering drawings and photo for TESLA, Mirelli and other sound names. Besides that many confidential documents, personal information of employees with private photo and docs, medical information etc. And finally there is much info about clients and their orders and projects with detailed description (drawings, 3D models)
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	5

ELWEMA AUTOMOTIVE

Victim website:	elwema.de
Victim country:	Germany
Attacker name:	Play
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	1,3 TB
Exfiltrated data type:	Private and personal confidential data, clients and employee documents, contracts, IDs, passports, clients scans, HR, finance information and etc
Leaked data:	/
Ransom deadline:	18^th Sep 23
Cyber Risk Factor:	5

BF&S CIVIL ENGINEERS

Victim website:	bfsengr.com
Victim country:	USA
Attacker name:	Lorenz
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	149 GB
Exfiltrated data type:	Financial documents, confidential documents, passwords, etc.
Leaked data:	100% of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

DEE SIGN

Victim website:	deesign.com
Victim country:	USA
Attacker name:	Lorenz
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	10,6 GB
Exfiltrated data type:	Customer database
Leaked data:	100% of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

SINLOC

Victim website:	sinloc.com
Victim country:	Italy
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Internal documents, scans, customer information, etc.
Leaked data:	100% of the exfiltrated data
Ransom deadline:	12^th Sep 23
Cyber Risk Factor:	4

M-EXTEND

Victim website:	m-extend.com
Victim country:	France
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	550 GB
Exfiltrated data type:	Sensitive information like GitLab developments, technical drawings, passports, employees’ personal details, and numerous other documents
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

DECARIE MOTORS

Victim website:	decarie.com
Victim country:	Canada
Attacker name:	Knight
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	More than 35 GB
Exfiltrated data type:	Employee data, data and scans of cards, passports and other sensitive information
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	15^th Sep 23
Cyber Risk Factor:	4

MORGAN SMITH INDUSTRIES

Victim website:	morgansmithllc.com
Victim country:	USA
Attacker name:	Knight
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	300 GB
Exfiltrated data type:	Miscellaneous documents included engineering and technical drawings
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	15^th Sep 23
Cyber Risk Factor:	4

ABBEYFIELD

Victim website:	abbeyfieldatbraintree.co.uk
Victim country:	United Kingdom
Attacker name:	INC Ransom
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	80 GB
Exfiltrated data type:	Financial data, legal documents, etc.
Leaked data:	100% of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

SAC FINANCE

Victim website:	sacfinance.com
Victim country:	USA
Attacker name:	RansomHouse
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	500 GB
Exfiltrated data type:	Miscellaneous documents
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

DPC & S

Victim website:	dpconsulting.com
Victim country:	USA
Attacker name:	Play
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Private and personal confidential data, clients and employee documents, contracts, IDs, HR, projects, finance information and etc
Leaked data:	/
Ransom deadline:	18^th Sep 23
Cyber Risk Factor:	4

BENEFIT MANAGEMENT

Victim website:	gotobmi.com
Victim country:	USA
Attacker name:	Knight
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Sensitive information, backups, emails, client’s data (Name , Address , SSN , DL.), etc.
Leaked data:	/
Ransom deadline:	14^th Sep 23
Cyber Risk Factor:	4

CARPET ONE

Victim website:	stradwickscarpetonenorthbay.com
Victim country:	Canada
Attacker name:	Play
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Private and personal confidential data, clients and employee documents, contracts, IDs, finance information and etc
Leaked data:	/
Ransom deadline:	18^th Sep 23
Cyber Risk Factor:	3

TANACHIRA GROUP

Victim website:	tanachira.co.th
Victim country:	Thailand
Attacker name:	Knight
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	3

Stay safe!

Hackmanac Team

Latest news

CORRECTION ON MALASLOCKER ACTIVITIES

Following further information provided to us directly by the Italian company BeeVoip, it is necessary to correct a detail from our previous post regarding the...

HACKS OF TODAY 28/09/2023

Today's HOT includes 7 ransomware victims by the notorious Akira, NoEscape, ALPHV/BlackCat, ThreeAM, 8Base and Cactus gangs. The average Cyber Risk Factor is 3.7. Read below the...

HACKS OF TODAY 27/09/2023

Today's HOT includes 13 ransomware victims by the notorious Dunghill Leak, ALPHV/BlackCat, NoEscape, Medusa, Akira, Qilin, 8Base and Cactus gangs. The average Cyber Risk Factor is 4.1....