Tag: 0-DAY

HACKS OF TODAY 23/06/2023

Post author By Stefano Favarato
Post date 23/06/2023

HM Hacks Of Today

news

HACKS OF TODAY 23/06/2023

Today’s HOT includes 8 ransomware victims by the notorious Qilin, Akira, ALPHV/BlackCat, BlackBasta and Play gangs and 5 zero-day exploit by Cl0p.

The average Cyber Risk Factor is 4.2.

Read below the full list.

Disclaimer:

Data are collected from public info published on Dark Web.
The Cyber Risk factor is calculated on cyber attacks’ impact based on available data.
It shows the severity of an event: 1 = low, 5 = critical

LONDON AND CAPITAL GROUP

Victim website:	londonandcapital.com
Victim country:	United Kingdom
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	600 GB
Exfiltrated data type:	Internal Company Data (Employees personal data, CV’s, DL’s, ID’s, SSN’s, Financial reports, Accounting data, Loans data, Insurance, Agreements and much more),Clients documentation (DL’s, ID’s, SSN’s, Financial data, Credit cards information, Loans data, Agreements, etc.), Database include other commercial confidential data.
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	5

NATIONAL INSTITUTIONAL FACILITATION TECHNOLOGIES

Victim website:	nift.pk
Victim country:	Pakistan
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	Several terabytes of data
Exfiltrated data type:	Miscellaneous including database, source code of EPAY project, confidential data, PII documents
Leaked data:	Sample with proof of exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	5

DAIWA HOUSE INDUSTRY

Victim website:	medexs.com
Victim country:	Japan
Attacker name:	Qilin
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	611,7 GB
Exfiltrated data type:	Miscellaneous documents
Leaked data:	100% of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	5

ANDESA

Victim website:	andesaservices.com
Victim country:	USA
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	5

SONY

Victim website:	sony.com
Victim country:	Japan
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	5

PWC

Victim website:	pwc.com
Victim country:	United Kingdom
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	5

GUS CANADA

Victim website:	guscanada.com
Victim country:	Canada
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	5

HILL INTERNATIONAL

Victim website:	hillintl.com
Victim country:	USA
Attacker name:	Play
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Private and personal confidential data, clients and employee documents, finance, technical documentation, passports, IDs, taxes, finance information and etc.
Leaked data:	/
Ransom deadline:	26^th Jun 23
Cyber Risk Factor:	4

EY GLOBAL

Victim website:	ey.com
Victim country:	United Kingdom
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	3Gb + archives
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

DANCIE PERUGINI WARE PUBLIC RELATIONS

Victim website:	dpwpr.com
Victim country:	USA
Attacker name:	Play
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Private and personal confidential data, clients and employee documents, passports, finance, tax and etc.
Leaked data:	/
Ransom deadline:	27^th Jun 23
Cyber Risk Factor:	3

GC&E

Victim website:	gcesg.com
Victim country:	USA
Attacker name:	Akira
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	3

DEVELOPMENT BANK OF SOUTHERN AFRICA

Victim website:	dbsa.org
Victim country:	South Africa
Attacker name:	Akira
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	3

M&M INDUSTRIES

Victim website:	ultimatepail.com
Victim country:	USA
Attacker name:	BlackBasta
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous including financial documents
Leaked data:	9% of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	3

Stay safe!

Hackmanac Team

Latest news

HACKS OF TODAY 11-12-13-14-15/05/2024

Today's HOT includes 94 victims by the notorious Hunters International, Rhysida, BianLIan, dAn0n, Qilin, Embargo, Everest, INC Ransom, Black Suit, Monti, Akira, RansomHub, Zero Tolerance...

HACKS OF TODAY 09-10/05/2024

Today's HOT includes 94 victims by the notorious Hunters International, Rhysida, BianLIan, dAn0n, Qilin, Embargo, Everest, INC Ransom, Black Suit, Monti, Akira, RansomHub, Zero Tolerance...

OPERATION CRONOS AND THE MAGNITUDE OF THE LOCKBIT REACTION: 119 PREVIOUSLY UNCLAIMED VICTIMS WORLDWIDE

In recent days, following the events involving the LockBit criminal group and law enforcement with Operation Cronos, the hacker group decided to go all in...

Tags 0-DAY, CYBER ATTACKS, CYBER SECURITY, CYBERCRIME, DARKWEB, DATA BREACH, DATA LEAK, HACKMANAC, MALWARE, RANSOMWARE

2023 HOT News-EN

HACKS OF TODAY 20/06/2023

Post author By Stefano Favarato
Post date 20/06/2023

HM Hacks Of Today

news

HACKS OF TODAY 20/06/2023

Today’s HOT includes 28 victims:

17 ransomware by the notorious LockBit 3.0, ALPHV/BlackCat, Snatch, NoEscape, Qilin and 8Base gangs and 11 zero-day exploit by Cl0p.

The average Cyber Risk Factor is 3.6.

Read below the full list.

Disclaimer:

NORTONLIFELOCK

Victim website:	nortonlifelock.com
Victim country:	USA
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	5

GESA CREDIT UNION

Victim website:	gesa.com
Victim country:	USA
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	42 GB
Exfiltrated data type:	N/A
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	5

ASCENDUM MACHINERY

Victim website:	ascendummachinery.com
Victim country:	USA
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	445 GB
Exfiltrated data type:	Miscellaneous documents PII documents
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

BLUE SAGE

Victim website:	bluesage.com
Victim country:	USA
Attacker name:	8Base
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	Large amount of data
Exfiltrated data type:	Insurance policies, Financial documents, Internal documents, Loan and collateral agreements, Contracts, Invoices, Certificates, Employment contracts, Receipts, Revenue, Financial expertise, The company’s portfolio, Fund estimates, Financial indicators, Database of numbers, Other
Leaked data:	/
Ransom deadline:	26^th Jun 23
Cyber Risk Factor:	4

ONSUPPORT CORPORATION

Victim website:	onsupport.com
Victim country:	USA
Attacker name:	8Base
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	Large amount of data
Exfiltrated data type:	Receipts, Financial documents, Contracts, Forms W9, Internal documents, Personal data, Other
Leaked data:	/
Ransom deadline:	26^th Jun 23
Cyber Risk Factor:	4

TEXAS HOTEL AND LODGING ASSOCIATION

Victim website:	texaslodging.com
Victim country:	USA
Attacker name:	8Base
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	Large amount of data
Exfiltrated data type:	Financial documents, Confirmed budgets, Receipts, Invoices, Databases of numbers/email, Other
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	26^th Jun 23
Cyber Risk Factor:	4

TARLE LAW

Victim website:	tarlelaw.com
Victim country:	USA
Attacker name:	8Base
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	Large amount of data
Exfiltrated data type:	Dossiers and photos to them, Agreements, A huge number of correspondence and personal data, Receipts, Medical records, Recordings of readings, Personal affairs, Financial documents, Recorded audio conversations, Insurance certificates, Witness statements, Internal documents, Confidential information, Other
Leaked data:	/
Ransom deadline:	26^th Jun 23
Cyber Risk Factor:	4

THE AKIN LAW

Victim website:	theakinfirm.com
Victim country:	USA
Attacker name:	8Base
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	Large amount of data
Exfiltrated data type:	Contracts, Appraisals of clients’ real estate, Schemes, Insurance documents, Guarantees, Personal data, Financial documents, Purchase and sale agreements, Other
Leaked data:	/
Ransom deadline:	26^th Jun 23
Cyber Risk Factor:	4

MAXIMUM PRIME ALIMENTOS EIRELI

Victim website:	cnpj.biz/35535360000172
Victim country:	Brazil
Attacker name:	8Base
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	Large amount of data
Exfiltrated data type:	Driver’s license, CPF in documents, Cadastral documents, Annual Report, Contract with a partner, Phone numbers and CNPJ, CNPJ and email, CPF data
Leaked data:	100% of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

MAMMOTH ENERGY

Victim website:	mammothenergy.com
Victim country:	USA
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Databases and Dynamics GP were also stolen, along with private files
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

CREE LIGHTING

Victim website:	creelighting.com
Victim country:	USA
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

SKILLSOFT

Victim website:	skillsoft.com
Victim country:	USA
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

SANTA CLARA UNIVERSITY

Victim website:	scu.edu
Victim country:	USA
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

ZURICH

Victim website:	zurich.com.br
Victim country:	Brazil
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

CBE SERVICES

Victim website:	cbeservices.com
Victim country:	Australia
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

EMSS

Victim website:	emsshi.com
Victim country:	USA
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

BAESMAN

Victim website:	baesman.com
Victim country:	USA
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

STOCKMAN BANK

Victim website:	stockmanbank.com
Victim country:	USA
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

TISCHLER TILG

Victim website:	tilg.at
Victim country:	Austria
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous documents
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	29^th Jun 23
Cyber Risk Factor:	3

BOUND BROOK SCHOOL DISTRICT

Victim website:	bbrook.org
Victim country:	USA
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	02^nd Jul 23
Cyber Risk Factor:	3

VALLEY OAKS HEALTH

Victim website:	valleyoaks.org
Victim country:	USA
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	09^th Jul 23
Cyber Risk Factor:	3

PROMOTION FULFILLMENT CENTER

Victim website:	pfcfulfills.com
Victim country:	USA
Attacker name:	NoEscape
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	21,1 GB
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	27^th Jun 23
Cyber Risk Factor:	3

UNIVERSITY OF HAWAII

Victim website:	hawaii.edu
Victim country:	USA
Attacker name:	NoEscape
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Personal documents of the company as well as the data of their students
Leaked data:	/
Ransom deadline:	27^th Jun 23
Cyber Risk Factor:	3

TELOS CORPORATION

Victim website:	telos.com
Victim country:	USA
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	Data deleted
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	3

PRINTMARK SOLUTION

Victim website:	printmarksolution.com
Victim country:	Thailand
Attacker name:	Qilin
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	2

ABSOLUTE CALIBRATION

Victim website:	absolutecal.co.uk
Victim country:	United Kingdom
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	03^rd Jul 23
Cyber Risk Factor:	2

TELCOSET

Victim website:	telcoset.com.tr
Victim country:	Turkey
Attacker name:	Snatch
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	2

CORNU

Victim website:	cornu.ch
Victim country:	Switzerland
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	07^th Jul 23
Cyber Risk Factor:	2

Stay safe!

Hackmanac Team

Latest news

HACKS OF TODAY 11-12-13-14-15/05/2024

Today's HOT includes 94 victims by the notorious Hunters International, Rhysida, BianLIan, dAn0n, Qilin, Embargo, Everest, INC Ransom, Black Suit, Monti, Akira, RansomHub, Zero Tolerance...

HACKS OF TODAY 09-10/05/2024

Today's HOT includes 94 victims by the notorious Hunters International, Rhysida, BianLIan, dAn0n, Qilin, Embargo, Everest, INC Ransom, Black Suit, Monti, Akira, RansomHub, Zero Tolerance...

OPERATION CRONOS AND THE MAGNITUDE OF THE LOCKBIT REACTION: 119 PREVIOUSLY UNCLAIMED VICTIMS WORLDWIDE

In recent days, following the events involving the LockBit criminal group and law enforcement with Operation Cronos, the hacker group decided to go all in...

Tags 0-DAY, CYBER ATTACKS, CYBER SECURITY, CYBERCRIME, DARKWEB, DATA BREACH, DATA LEAK, HACKMANAC, MALWARE, RANSOMWARE

2023 HOT News-EN

HACKS OF TODAY 17-18-19/06/2023

Post author By Stefano Favarato
Post date 19/06/2023

HM Hacks Of Today

news

HACKS OF TODAY 17-18-19/06/2023

Today’s HOT includes 29 victims:

13 ransomware by the notorious LockBit 3.0, ALPHV/BlackCat, Rhysida, Mallox, Medusa and 8Base gangs, 13 zero-day exploit by Cl0p, 1 data breach and 2 supply chain attacks.

The average Cyber Risk Factor is 4.0.

Read below the full list.

Disclaimer:

CONCELLO DE CANGAS

Victim website:	cangas.gal
Victim country:	Spain
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	Large amount of data
Exfiltrated data type:	Miscellaneous documents including personal data, finance and accounting, police data
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	23^rd Jun 23
Cyber Risk Factor:	5

THE BOSTON GLOBE

Victim website:	bostonglobe.com
Victim country:	USA
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	5

Victim website:	reddit.com
Victim country:	USA
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Data breach
Ransom demand:	$ 4,500,000
Exfiltrated data amount:	80 GB (zipped)
Exfiltrated data type:	Confidential data
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	5

LOONGSON TECHNOLOGY

Victim website:	loongson.cn
Victim country:	China
Attacker name:	8Base
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	120 GB
Exfiltrated data type:	Files, projects, tests, chips, patents, financing and a huge amount of other information, intellectual property
Leaked data:	/
Ransom deadline:	26^th Jun 23
Cyber Risk Factor:	5

PRA GROUP

Victim website:	pragroup.no
Victim country:	Norway
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

MARTI GRUPPE

Victim website:	marti.com
Victim country:	Switzerland
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

CEGEDIM

Victim website:	cegedim.com
Victim country:	France
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

STIWA

Victim website:	stiwa.com
Victim country:	Austria
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

CHINA CITIC BANK INTERNATIONAL LIMITED

Victim website:	cncbinternational.com
Victim country:	China
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

AURBURG

Victim website:	arburg.com
Victim country:	Germany
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

IC SYSTEM

Victim website:	icsystem.com
Victim country:	USA
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

UNIVERSITY OF MISSOURI SYSTEM

Victim website:	umsystem.edu
Victim country:	USA
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

COLUMBIA BANK

Victim website:	umpquabank.com
Victim country:	USA
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

PAN-AMERICAN LIFE INSURANCE GROUP

Victim website:	palig.com
Victim country:	USA
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

NUANCE

Victim website:	nuance.com
Victim country:	USA
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

AON

Victim website:	aon.com
Victim country:	Ireland
Attacker name:	Cl0p
Attacker class:	Cybercrime
Attack technique:	Zero-Day Vulnerability in MOVEit (CVE-2023-34362)
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	N/A
Cyber Risk Factor:	4

CREATIVE LIQUID COATINGS

Victim website:	creativeliquidcoatings.com
Victim country:	USA
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	100 GB
Exfiltrated data type:	Miscellaneous documents including information from CK Technologies and McKechnie Vehicle Components, 1600 SSNs, credit history and many confidential data
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

CK TECHNOLOGIES

Victim website:	cktech.biz
Victim country:	USA
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Supply chain attack
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous documents including confidential data and SSNs
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

MCKECHNIE VEHICLE COMPONENTS

Victim website:	mvcusa.com
Victim country:	USA
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Supply chain attack
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous documents including confidential data and SSNs
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

BAUER BUILT

Victim website:	bauerbuilt.com
Victim country:	USA
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Financial and accounting documents – Personal information and passport data – Databases – Auditor’s reports and strategic information – Marketing data – NDA and Contract Documents – RND – Correspondence history and conversations with company management
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

ZIEGELWERK EDER

Victim website:	ziegel-eder.de
Victim country:	Germany
Attacker name:	Rhysida
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	Large amount of data
Exfiltrated data type:	Miscellaneous documents
Leaked data:	100% of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

TDM PERÚ

Victim website:	tdm.com.pe
Victim country:	Peru
Attacker name:	LockBit 3.0
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Miscellaneous documents
Leaked data:	100% of the exfiltrated data
Ransom deadline:	17^th Jun 23
Cyber Risk Factor:	4

TYCONZ

Victim website:	tyconz.com
Victim country:	Qatar
Attacker name:	Rhysida
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	Large amount of data
Exfiltrated data type:	Miscellaneous including backups
Leaked data:	100% of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

BANGKOK INDUSTRIAL GAS

Victim website:	bigth.com
Victim country:	Thailand
Attacker name:	Mallox
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	5 GB
Exfiltrated data type:	Miscellaneous documents
Leaked data:	100% of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

EDER ZUKUNFT BAUEN

Victim website:	eder.co.at
Victim country:	Austria
Attacker name:	Rhysida
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	Large amount of data
Exfiltrated data type:	Miscellaneous documents
Leaked data:	100% of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	4

FHR ELECTRIC

Victim website:	electricianaz.wpengine.com
Victim country:	USA
Attacker name:	Medusa
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	$ 100,000
Exfiltrated data amount:	Large amount of data
Exfiltrated data type:	Miscellaneous including projects and PII documents
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	27^th Jun 23
Cyber Risk Factor:	4

PORT BLUE HOTEL GROUP

Victim website:	portbluehotels.com
Victim country:	Spain
Attacker name:	8Base
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	300,000 lines
Exfiltrated data type:	Database with passports and other personal data
Leaked data:	/
Ransom deadline:	26^th Jun 23
Cyber Risk Factor:	4

THE DUFRESNE GROUP

Victim website:	thedufresnegroup.ca
Victim country:	Canada
Attacker name:	ALPHV/BlackCat
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	Driving licenses, passports, agreements, etc.
Leaked data:	Sample with proof of the exfiltrated data
Ransom deadline:	N/A
Cyber Risk Factor:	3

FUTURA AGRONEGÓCIOS

Victim website:	futuraagro.com.br
Victim country:	Brazil
Attacker name:	8Base
Attacker class:	Cybercrime
Attack technique:	Ransomware
Ransom demand:	N/A
Exfiltrated data amount:	N/A
Exfiltrated data type:	N/A
Leaked data:	/
Ransom deadline:	26^th Jun 23
Cyber Risk Factor:	2

Stay safe!

Hackmanac Team

Latest news

Tags 0-DAY, CYBER ATTACKS, CYBER SECURITY, CYBERCRIME, DARKWEB, DATA BREACH, DATA LEAK, HACKMANAC, MALWARE, RANSOMWARE

news

HACKS OF TODAY 23/06/2023

LONDON AND CAPITAL GROUP

NATIONAL INSTITUTIONAL FACILITATION TECHNOLOGIES

DAIWA HOUSE INDUSTRY

ANDESA

SONY

PWC

GUS CANADA

HILL INTERNATIONAL

EY GLOBAL

DANCIE PERUGINI WARE PUBLIC RELATIONS

GC&E

DEVELOPMENT BANK OF SOUTHERN AFRICA

M&M INDUSTRIES

Latest news

news

HACKS OF TODAY 20/06/2023

NORTONLIFELOCK

GESA CREDIT UNION

ASCENDUM MACHINERY

BLUE SAGE

ONSUPPORT CORPORATION

TEXAS HOTEL AND LODGING ASSOCIATION

TARLE LAW

THE AKIN LAW

MAXIMUM PRIME ALIMENTOS EIRELI

MAMMOTH ENERGY

CREE LIGHTING

SKILLSOFT

SANTA CLARA UNIVERSITY

ZURICH

CBE SERVICES

EMSS

BAESMAN

STOCKMAN BANK

TISCHLER TILG

BOUND BROOK SCHOOL DISTRICT

VALLEY OAKS HEALTH

PROMOTION FULFILLMENT CENTER

UNIVERSITY OF HAWAII

TELOS CORPORATION

PRINTMARK SOLUTION

ABSOLUTE CALIBRATION

TELCOSET

CORNU

Latest news

news

HACKS OF TODAY 17-18-19/06/2023

CONCELLO DE CANGAS

THE BOSTON GLOBE

REDDIT

LOONGSON TECHNOLOGY

PRA GROUP

MARTI GRUPPE

CEGEDIM

STIWA

CHINA CITIC BANK INTERNATIONAL LIMITED

AURBURG

IC SYSTEM

UNIVERSITY OF MISSOURI SYSTEM

COLUMBIA BANK

PAN-AMERICAN LIFE INSURANCE GROUP

NUANCE

AON

CREATIVE LIQUID COATINGS

CK TECHNOLOGIES

MCKECHNIE VEHICLE COMPONENTS

BAUER BUILT

ZIEGELWERK EDER

TDM PERÚ

TYCONZ

BANGKOK INDUSTRIAL GAS

EDER ZUKUNFT BAUEN

FHR ELECTRIC

PORT BLUE HOTEL GROUP

THE DUFRESNE GROUP

FUTURA AGRONEGÓCIOS

Latest news