news
HACKS OF TODAY 11/07/2023
Today’s HOT includes 36 victims:
15 ransomware and 1 data leak by the notorious Cuba, LockBit 3.0, Qilin, Rhysida, Akira, Ragnar Locker, RansomHouse, 8Base and Arvin Club gangs and 20 zero-day exploit by Cl0p.
The average Cyber Risk Factor is 4.1.
Read below the full list.
Disclaimer:
Data are collected from public info published on Dark Web.
The Cyber Risk factor is calculated on cyber attacks’ impact based on available data.
It shows the severity of an event: 1 = low, 5 = critical
JP RMP
Victim website: | jprmp.com |
Victim country: | USA |
Attacker name: | Cl0p |
Attacker class: | Cybercrime |
Attack technique: | Zero-Day Vulnerability in MOVEit (CVE-2023-34362) |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | N/A |
Leaked data: | / |
Ransom deadline: | N/A |
Cyber Risk Factor: | 5 |
FRANKLIN MINT FEDERAL CREDIT UNION
Victim website: | fmfcu.org |
Victim country: | USA |
Attacker name: | Cl0p |
Attacker class: | Cybercrime |
Attack technique: | Zero-Day Vulnerability in MOVEit (CVE-2023-34362) |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | N/A |
Leaked data: | / |
Ransom deadline: | N/A |
Cyber Risk Factor: | 5 |
GRUPO BANCOLOMBIA
Victim website: | bam.com.gt |
Victim country: | Guatemala |
Attacker name: | Cl0p |
Attacker class: | Cybercrime |
Attack technique: | Zero-Day Vulnerability in MOVEit (CVE-2023-34362) |
Ransom demand: | N/A |
Exfiltrated data amount: | 57 GB |
Exfiltrated data type: | N/A |
Leaked data: | / |
Ransom deadline: | N/A |
Cyber Risk Factor: | 5 |
SPACE COAST CREDIT UNION
Victim website: | sccu.com |
Victim country: | USA |
Attacker name: | Cl0p |
Attacker class: | Cybercrime |
Attack technique: | Zero-Day Vulnerability in MOVEit (CVE-2023-34362) |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | N/A |
Leaked data: | / |
Ransom deadline: | N/A |
Cyber Risk Factor: | 5 |
VILLAGE OF ADDISON
Victim website: | gis4.addison-il |
Victim country: | USA |
Attacker name: | Cuba |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | Large amount of data |
Exfiltrated data type: | Financial documents, correspondence with bank employees, account movements, balance sheets, tax documents, compensation, source code |
Leaked data: | 100% of the exfiltrated data |
Ransom deadline: | N/A |
Cyber Risk Factor: | 5 |
PANORAMA EYECARE
Victim website: | panoramaeyecare.com |
Victim country: | USA |
Attacker name: | LockBit 3.0 |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | 798 GB |
Exfiltrated data type: | Miscellaneous including PII and PHI documents, insurance, agreements etc. They claim to have downloaded data from all these companies: eyecenternoco.com ; denvereyesurgeons.com ; cheyenneeyeclinic.com ; 2020visioncenter.com. |
Leaked data: | Sample with proof of the exfiltrated data |
Ransom deadline: | 15th Jul 23 |
Cyber Risk Factor: | 5 |
MICROPORT SCIENTIFIC
Victim website: | microport.com |
Victim country: | China |
Attacker name: | Qilin |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | Terabytes of data |
Exfiltrated data type: | Miscellaneous including financial data |
Leaked data: | Sample with proof of the exfiltrated data |
Ransom deadline: | N/A |
Cyber Risk Factor: | 5 |
CITTA NUOVA
Victim website: | cittanuova.it |
Victim country: | Italy |
Attacker name: | Rhysida |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | 5 BTC |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Miscellaneous including invoices and PII documents |
Leaked data: | / |
Ransom deadline: | 17th Jul 23 |
Cyber Risk Factor: | 4 |
GREEN DIAMOND
Victim website: | greendiamond.com |
Victim country: | USA |
Attacker name: | Akira |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | 30 GB |
Exfiltrated data type: | Business information, including personal information |
Leaked data: | / |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
HAMRE SCHUMANN MUELLER & LARSON
Victim website: | hsml.com |
Victim country: | USA |
Attacker name: | Akira |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | 102 GB |
Exfiltrated data type: | Confidential documents, contracts, clients’ personal information |
Leaked data: | / |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
BELIZE ELECTRICITY LIMITED
Victim website: | bel.com.bz |
Victim country: | Belize |
Attacker name: | Ragnar Locker |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | 355 GB |
Exfiltrated data type: | Miscellaneous including personal information |
Leaked data: | 100% of the exfiltrated data |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
RADISSON HOTELS AMERICAS
Victim website: | radissonhotelsamericas.com |
Victim country: | USA |
Attacker name: | Cl0p |
Attacker class: | Cybercrime |
Attack technique: | Zero-Day Vulnerability in MOVEit (CVE-2023-34362) |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | N/A |
Leaked data: | / |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
WESTAT
Victim website: | westat.com |
Victim country: | USA |
Attacker name: | Cl0p |
Attacker class: | Cybercrime |
Attack technique: | Zero-Day Vulnerability in MOVEit (CVE-2023-34362) |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | N/A |
Leaked data: | / |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
JOHNS HOPKINS UNIVERSITY
Victim website: | jhu.edu |
Victim country: | USA |
Attacker name: | Cl0p |
Attacker class: | Cybercrime |
Attack technique: | Zero-Day Vulnerability in MOVEit (CVE-2023-34362) |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | N/A |
Leaked data: | / |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
VISIONWARE
Victim website: | visionware.ca |
Victim country: | Canada |
Attacker name: | Cl0p |
Attacker class: | Cybercrime |
Attack technique: | Zero-Day Vulnerability in MOVEit (CVE-2023-34362) |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | N/A |
Leaked data: | / |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
UMASS CHAN MEDICAL SCHOOL
Victim website: | umassmed.edu |
Victim country: | USA |
Attacker name: | Cl0p |
Attacker class: | Cybercrime |
Attack technique: | Zero-Day Vulnerability in MOVEit (CVE-2023-34362) |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | N/A |
Leaked data: | / |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
VRM
Victim website: | vrm.de |
Victim country: | Germany |
Attacker name: | Cl0p |
Attacker class: | Cybercrime |
Attack technique: | Zero-Day Vulnerability in MOVEit (CVE-2023-34362) |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | N/A |
Leaked data: | / |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
SMA SOLAR TECHNOLOGY
Victim website: | sma.de |
Victim country: | Germany |
Attacker name: | Cl0p |
Attacker class: | Cybercrime |
Attack technique: | Zero-Day Vulnerability in MOVEit (CVE-2023-34362) |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | N/A |
Leaked data: | / |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
RICOH
Victim website: | ricohacumen.com |
Victim country: | USA |
Attacker name: | Cl0p |
Attacker class: | Cybercrime |
Attack technique: | Zero-Day Vulnerability in MOVEit (CVE-2023-34362) |
Ransom demand: | N/A |
Exfiltrated data amount: | 193 GB |
Exfiltrated data type: | N/A |
Leaked data: | / |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
EMERSON
Victim website: | emerson.com |
Victim country: | USA |
Attacker name: | Cl0p |
Attacker class: | Cybercrime |
Attack technique: | Zero-Day Vulnerability in MOVEit (CVE-2023-34362) |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | N/A |
Leaked data: | / |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
TOMTOM
Victim website: | tomtom.com |
Victim country: | Netherlands |
Attacker name: | Cl0p |
Attacker class: | Cybercrime |
Attack technique: | Zero-Day Vulnerability in MOVEit (CVE-2023-34362) |
Ransom demand: | N/A |
Exfiltrated data amount: | 82 GB |
Exfiltrated data type: | N/A |
Leaked data: | / |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
PIONEER ELECTRONICS
Victim website: | pioneerelectronics.com |
Victim country: | USA |
Attacker name: | Cl0p |
Attacker class: | Cybercrime |
Attack technique: | Zero-Day Vulnerability in MOVEit (CVE-2023-34362) |
Ransom demand: | N/A |
Exfiltrated data amount: | 106 GB |
Exfiltrated data type: | N/A |
Leaked data: | / |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
RITE AID
Victim website: | riteaid.com |
Victim country: | USA |
Attacker name: | Cl0p |
Attacker class: | Cybercrime |
Attack technique: | Zero-Day Vulnerability in MOVEit (CVE-2023-34362) |
Ransom demand: | N/A |
Exfiltrated data amount: | 32 GB |
Exfiltrated data type: | N/A |
Leaked data: | / |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
ARVATO
Victim website: | arvato.com |
Victim country: | Germany |
Attacker name: | Cl0p |
Attacker class: | Cybercrime |
Attack technique: | Zero-Day Vulnerability in MOVEit (CVE-2023-34362) |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | N/A |
Leaked data: | / |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
AGILYSYS
Victim website: | agilysys.com |
Victim country: | USA |
Attacker name: | Cl0p |
Attacker class: | Cybercrime |
Attack technique: | Zero-Day Vulnerability in MOVEit (CVE-2023-34362) |
Ransom demand: | N/A |
Exfiltrated data amount: | 128 GB |
Exfiltrated data type: | N/A |
Leaked data: | / |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
CUSTOMER ELATION
Victim website: | customerelation.com |
Victim country: | USA |
Attacker name: | RansomHouse |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | At least 100 GB |
Exfiltrated data type: | N/A |
Leaked data: | Sample with proof of the exfiltrated data |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
WEITKAMP HIRSCH & KOLLEGEN
Victim website: | whk-schleswig.de |
Victim country: | Germany |
Attacker name: | 8Base |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | 200 GB |
Exfiltrated data type: | Internal documents, customer data, official letters and correspondence, tax declarations of clients, checks, payments |
Leaked data: | / |
Ransom deadline: | 15th Jul 23 |
Cyber Risk Factor: | 4 |
KANSAS MEDICAL CENTER
Victim website: | ksmedcenter.com |
Victim country: | USA |
Attacker name: | 8Base |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Personal documents, identity cards, health insurance, patient data (numbers, addresses, registration numbers, and others), personal data of employees, internal documents, accounts, financial documents |
Leaked data: | / |
Ransom deadline: | 15th Jul 23 |
Cyber Risk Factor: | 4 |
ADVANCED FIBERGLASS INDUSTRIES
Victim website: | afi.ae |
Victim country: | UAE |
Attacker name: | 8Base |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | tender reviews, official letters, presentations and product mockups, checks, accounting report data, tax statements, internal documents, salary data, personal data of employees, passports, confidential data, waybills |
Leaked data: | / |
Ransom deadline: | 15th Jul 23 |
Cyber Risk Factor: | 4 |
MOTOR COMPONENTS
Victim website: | facet-purolator.com |
Victim country: | USA |
Attacker name: | 8Base |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Company internal documents, contact list with information about partners and clients, employee data base, checks, invoices, financial indicators and balance sheet, official letters, faxes, shipment information in different countries, confidential data about employees and their salaries, IT infrastructure with detailed network map and access |
Leaked data: | / |
Ransom deadline: | 18th Jul 23 |
Cyber Risk Factor: | 4 |
KALE AERO
Victim website: | kaleaero.com |
Victim country: | Turkey |
Attacker name: | Cl0p |
Attacker class: | Cybercrime |
Attack technique: | Zero-Day Vulnerability in MOVEit (CVE-2023-34362) |
Ransom demand: | N/A |
Exfiltrated data amount: | 43 GB |
Exfiltrated data type: | N/A |
Leaked data: | / |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
CONSOL ENERGY
Victim website: | consolenergy.com |
Victim country: | USA |
Attacker name: | Cl0p |
Attacker class: | Cybercrime |
Attack technique: | Zero-Day Vulnerability in MOVEit (CVE-2023-34362) |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | N/A |
Leaked data: | / |
Ransom deadline: | N/A |
Cyber Risk Factor: | 4 |
PESQUERA DIAMANTE
Victim website: | diamante.com.pe |
Victim country: | Peru |
Attacker name: | 8Base |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Internal documents, Official letters, Waybills, Checks, payments |
Leaked data: | / |
Ransom deadline: | 15th Jul 23 |
Cyber Risk Factor: | 3 |
DANBURY PUBLIC SCHOOLS
Victim website: | danbury.k12.ct.us |
Victim country: | USA |
Attacker name: | 8Base |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Internal documents, personal data of employees, students and parents, checks, official letters, and much more |
Leaked data: | / |
Ransom deadline: | 15th Jul 23 |
Cyber Risk Factor: | 3 |
CITELIS MOBILITY
Victim website: | citelis.com.mx |
Victim country: | Mexico |
Attacker name: | 8Base |
Attacker class: | Cybercrime |
Attack technique: | Ransomware |
Ransom demand: | N/A |
Exfiltrated data amount: | N/A |
Exfiltrated data type: | Internal documents, regulations, information about all employees, their mail, position, invoices, invoices, checks of all dealerships of the company, official letters, bank statements |
Leaked data: | / |
Ransom deadline: | 18th Jul 23 |
Cyber Risk Factor: | 3 |
BITIMEN
Victim website: | bitimen.com |
Victim country: | Iran |
Attacker name: | Arvin Club |
Attacker class: | Cybercrime |
Attack technique: | Data leak |
Ransom demand: | N/A |
Exfiltrated data amount: | 56,000 users |
Exfiltrated data type: | Users accounts |
Leaked data: | 100% of the exfiltrated data |
Ransom deadline: | N/A |
Cyber Risk Factor: | 3 |
Stay safe!
Hackmanac Team
Latest news
HACKS OF TODAY 13-14-15/04/2024
Today's HOT includes 24 ransomware victims by the notorious Hunters International, LockBit 3.0, Daixin, Medusa, ThreeAM, Black Suit, DragonForce, 8Base, Akira and DarkVault gangs. The average Cyber...
Read MoreHACKS OF TODAY 03-04/04/2024
Today's HOT includes 25 ransomware victims by the notorious Rhysida, Ra World, 8Base, INC Ransom, Hunters International, Medusa, Qilin, Black Suit, Cactus and Kill Security gangs. The...
Read MoreHACKS OF TODAY 26-27-28-29-30-31/03/2024
Today's HOT includes 88 ransomware victims by the notorious Medusa, Rhysida, Play, Qilin, LockBit 3.0, DragonForce, Akira, Hunters International, Ransom Hub, Everest, BianLian, INC Ransom, BlackBasta,...
Read More