Security Affairs

NOVEMBER 15, 2023

The report includes IOCs and TTPs identified through investigations as recently as September 2023. The Rhysida ransomware group has been active since May 2023, according to the gang’s Tor leak site, at least 62 companies are victims of the operation. The victims of the group are “targets of opportunity.”

Ransomware 121

Ransomware Manufacturing Education Passwords 121

IT Governance

NOVEMBER 28, 2023

9 million records breached through decade-long data leak A former temporary employee of a subsidiary of NTT West (Nippon Telegraph and Telephone West Corp) illegally accessed about 9 million personal data records over the course of a decade (2013 to 2023). Breached records: more than 56 million.

Data Privacy 52

Data Privacy Privacy Energy and Utilities Data breaches 52

Security Affairs

JUNE 15, 2023

Help us #StopRansomware by visiting [link] pic.twitter.com/G5jpxtB0Fw — Cybersecurity and Infrastructure Security Agency (@CISAgov) June 14, 2023 The LockBit ransomware operation was the most active in 2022 and according to the researchers it is one of the most prolific RaaS in 2023. was the prevalent variant in 2023.

Ransomware 95

Ransomware Cybersecurity Agriculture Education 95

Security Affairs

FEBRUARY 19, 2024

In 2022, LockBit was one of the most active ransomware groups, and its prevalence continued into 2023. The LockBit ransomware operation operated under a Ransomware-as-a-Service (RaaS) model, recruiting affiliates to carry out ransomware attacks through the utilization of LockBit ransomware tools and infrastructure.

Energy and Utilities 114

Energy and Utilities Ransomware Agriculture Financial Services 114

Security Affairs

SEPTEMBER 23, 2023

In May 2023, a ransomware attack hit the IT systems at the City of Dallas , Texas. Between April 7, 2023, and May 4, 2023, Royal performed data exfiltration and ransomware delivery preparation activities. ” The group was able to steal data from the City and leaked approximately 1.169 TB at a time prior to May 03, 2023.

Ransomware 113

Ransomware Encryption Systems administration Cybersecurity 113

Security Affairs

AUGUST 31, 2023

On its digital platform, NSC provides online resources for its nearly 55,000 members spread across different businesses, agencies, and educational institutions. The data was publicly accessible for 5 months, as the leak was first indexed by IoT search engines on January 31st, 2023.

Passwords 141

Passwords Healthcare Manufacturing Access 141

Security Affairs

FEBRUARY 8, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. The APT group is using almost exclusively living-off-the-land techniques and hands-on-keyboard activity to evade detection.

Energy and Utilities 117

Energy and Utilities Communications Military Manufacturing 117

Security Affairs

SEPTEMBER 25, 2023

A stealthy APT group tracked as Gelsemium was observed targeting a Southeast Asian government between 2022 and 2023. The experts tracked the cluster as CL-STA-0046, the malicious activity spanned over six months between 2022-2023. Palo Alto Unit42 researchers an APT group tracked as Gelsemium targeting a Southeast Asian government.

Government 113

Government Manufacturing Education Access 113

Security Affairs

APRIL 19, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. The APT group is using almost exclusively living-off-the-land techniques and hands-on-keyboard activity to evade detection.

Energy and Utilities 107

Energy and Utilities Communications Military Manufacturing 107

Security Affairs

APRIL 6, 2023

Micro-Star International AKA MSI designs, manufactures, and sells motherboards and graphics cards for customers in the United States, Canada, and internationally. Ransomware gang Money Message announced to have hacked the Taiwanese multinational IT corporation MSI (Micro-Star International). MSI is headquartered in Taipei, Taiwan.

Ransomware 88

Ransomware IT Manufacturing Education 88

Security Affairs

FEBRUARY 28, 2024

“These operations have targeted various industries, including Aerospace & Defense, Education, Energy & Utilities, Governments, Hospitality, Manufacturing, Oil & Gas, Retail, Technology, and Transportation. ” reads the joint report. ” continues the report.

Energy and Utilities 106

Energy and Utilities Military Government Phishing 106

The Last Watchdog

JULY 13, 2023

London, July 13, 2023 — Beazley, the leading specialist insurer, today published its latest Risk & Resilience report: Spotlight on: Cyber & Technology Risks 2023. Companies with an annual revenue of US$250,000 to US$999,999 report feeling less prepared to deal with cyber risks in 2023 (76%) than they did in 2022 (70%).

Risk 161

Risk Insurance Energy and Utilities Marketing 161

Security Affairs

DECEMBER 13, 2023

In November 2023, the experts noticed that the botnet started targeting Axis IP cameras, such as the M1045-LW, M1065-LW, and p1367-E. The KV-botnet logical network map, December 2023 In May, Microsoft reported that the Volt Typhoon APT infiltrated critical infrastructure organizations in the U.S. and Guam without being detected.

Communications 119

Communications Manufacturing Education Government 119

IT Governance

JANUARY 9, 2024

million customers’ data compromised Cyber criminals known as dawnofdevil have claimed responsibility for a data breach at Hathaway Cable & Datacom Ltd, one of India’s largest Internet service providers, in December 2023. KG Source 1 ; source 2 (New) Manufacturing Germany Yes 1.1 They accessed 41.5 HealthEC LLC breached, almost 4.5

Data Privacy 75

Data Privacy Privacy Manufacturing Data breaches 75

IT Governance

FEBRUARY 21, 2024

Further victims of Harvard Pilgrim Health Care ransomware attack identified Harvard Pilgrim Health Care suffered a ransomware attack in April 2023, which it has been investigating since then. Source New Manufacturing USA Yes 20,415 TECA Srl Source New Transport Italy Yes 16.7 Data breached: 2.7 GB AGC Flat Glass North America, Inc.

Data Privacy 52

Data Privacy Manufacturing Privacy Energy and Utilities 52

IT Governance

FEBRUARY 14, 2024

In November 2023, Northwell Health – the largest health system in New York – confirmed that it was affected by the incident. TB JP Original Corp Source New Manufacturing USA Yes 1.2 TB JP Original Corp Source New Manufacturing USA Yes 1.2 TB JP Original Corp Source New Manufacturing USA Yes 1.2

Data Privacy 52

Data Privacy Manufacturing Privacy Security 52

Security Affairs

JUNE 16, 2023

The US authorities arrested the man in Arizona last month DoJ states that from at least as early as August 2020 to March 2023, Astamirov and other members of the LockBit ransomware gang committed wire fraud and compromised many computer systems worldwide attempting to extort the victims of ransomware attacks. law enforcement).

Ransomware 94

Ransomware Agriculture Education Government 94

Security Affairs

APRIL 15, 2023

The Brazilian retail arm of car manufacturing giant Volvo leaked sensitive files, putting its clientele in the vast South American country in peril. Exposed sensitive files On February 17, 2023, the Cybernews research team discovered public access to sensitive files hosted on dimasvolvo.com.br The issue causing the leak has been fixed.

Retail 97

Retail Manufacturing Communications Passwords 97

The Last Watchdog

OCTOBER 25, 2023

25, 2023 – Hardware cybersecurity solutions pioneer Flexxon (the “Company”) today announced the appointment of ex-Intel and Microsoft executive Mr Ravi Agarwal to its advisory board. Its X-PHY Cybersecure SSD was unveiled in 2021 and has since been integrated into laptops from leading PC manufacturers including Lenovo, HP, ASUS and more.

IT 100

IT Cybersecurity Marketing Manufacturing 100

Security Affairs

JUNE 3, 2023

Royal ransomware is one of the most notable ransomware families of 2022, it made the headlines in early May 2023 with the attack against the IT systems in Dallas, Texas. Experts noticed that the new Linux ransomware BlackSuit has significant similarities with the Royal ransomware family. New #ransomware #BlackSuit targets Windows, #Linux.

Ransomware 98

Ransomware Encryption File names Cybersecurity 98

Security Affairs

AUGUST 28, 2023

The malicious code was used in attacks targeting multiple sectors including the gaming industry, technology industry, and luxury car manufacturers. Since mid-July 2023, the binary observed in the attacks includes support for telnet scanning and support for more CPU architectures. ” reads the report published by Akamai.

IoT 96

IoT Mining Manufacturing Education 96

Security Affairs

APRIL 7, 2023

Micro-Star International AKA MSI designs, manufactures, and sells motherboards and graphics cards for customers in the United States, Canada, and internationally. This week the ransomware gang Money Message announced to have hacked the Taiwanese multinational IT corporation MSI (Micro-Star International).

Ransomware 95

Ransomware Security Manufacturing Cybersecurity 95

Security Affairs

FEBRUARY 21, 2024

In 2022, LockBit was one of the most active ransomware groups, and its prevalence continued into 2023. Today, additional criminal charges against Kondratyev were unsealed in the Northern District of California related to his deployment in 2020 of ransomware against a victim located in California.” reads the press release published by DoJ.

Energy and Utilities 97

Energy and Utilities Ransomware Agriculture Manufacturing 97

Security Affairs

APRIL 9, 2023

The defendant was arrested in Estonia on March 28, 2023, he used several Estonian-based business entities (the “Estonian Shell Companies”) to buy goods that would have been unavailable to Russian end-users. “As alleged in the indictment and other court filings, Shevlyakov procured sensitive electronics from U.S.

Computer and Electronics 93

Computer and Electronics Military Manufacturing Government 93

Security Affairs

APRIL 12, 2023

Data breach at @Hyundai_Italia : pic.twitter.com/oMMcFiG2Ud — Troy Hunt (@troyhunt) April 11, 2023 In response to the incident, the company has taken the impacted systems offline. According to the letter, financial data were not exposed. The number of impacted individuals is still unclear.

Data breaches 97

Data breaches Manufacturing Cybersecurity Education 97

Security Affairs

APRIL 4, 2023

As of Mar 22, 2023, SentinelOne observed a spike in behavioral detections of the 3CXDesktopApp, which is a popular voice and video conferencing software product. Threat actors behind the 3CX supply chain attack have targeted a limited number of cryptocurrency companies with a second-state implant.

Manufacturing 90

Manufacturing Cybersecurity Education Security 90

Security Affairs

FEBRUARY 20, 2024

In 2022, LockBit was one of the most active ransomware groups, and its prevalence continued into 2023. Today, additional criminal charges against Kondratyev were unsealed in the Northern District of California related to his deployment in 2020 of ransomware against a victim located in California.”

Energy and Utilities 109

Energy and Utilities Ransomware Manufacturing Agriculture 109

Security Affairs

MARCH 3, 2023

According to government experts, the Royal ransomware attacks targeted numerous critical infrastructure sectors including, manufacturing, communications, healthcare and public healthcare (HPH), and education. In February 2023, Royal operators added support for encrypting Linux devices and target VMware ESXi virtual machines.

Ransomware 96

Ransomware Encryption Cybersecurity Communications 96

Info Source

MARCH 31, 2023

Having just seen out the last of the COVID-19 pandemic slowdown with early signs of a healthy recovery in 2021 and 2022, the industry – like many others in the country – is being hamstrung by the power supply crisis in 2023, and for the foreseeable future. Power is not the only limiting factor in South Africa.

Marketing 52

Marketing Sales Agriculture Mining 52

IBM Big Data Hub

APRIL 18, 2024

According to Andreessen Horowitz (link resides outside IBM.com ) , in 2023, the average spend on foundation model application programming interfaces (APIs), self-hosting and fine-tuning models across surveyed companies reached USD 7 million. The AGI analyzes the data and identifies a rare genetic mutation linked to a specific disease.

Artificial Intelligence 87

Artificial Intelligence Marketing e-Delivery Manufacturing 87

IT Governance

DECEMBER 5, 2023

35 TB of data exfiltrated from Henry Schein, plus ALPHV/BlackCat re-encrypted the newly restored files As we first reported last month , the US healthcare solutions provider Henry Schein announced on 15 October that it had suffered a cyber attack that caused disruption to its manufacturing and distribution businesses.

Data Privacy 106

Data Privacy Privacy Manufacturing Retail 106

IT Governance

JANUARY 3, 2024

We’ll also soon publish our 2023 review of publicly disclosed incidents and records known to be breached across the year, as well as our quarterly report, so keep an eye on our blog. Source (New) Manufacturing USA Yes >400 GB Hafez Insurance Co. billion records containing property ownership data related to millions of people.

Data Privacy 107

Data Privacy Insurance Manufacturing Retail 107

IT Governance

DECEMBER 11, 2023

Known records breached Up to 3,806 organisations with DICOM (Digital Imaging and Communications in Medicine) servers Source (New) Healthcare Unknown Unknown >59 million Akumin Source (New) Healthcare USA Yes 5 TB AMCO Proteins Source (New) Manufacturing USA Yes 4 TB Norton Healthcare Source (New) Healthcare USA Yes 2.5 and Robert W.

Data Privacy 101

Data Privacy Energy and Utilities Privacy Manufacturing 101

Security Affairs

DECEMBER 26, 2023

pic.twitter.com/6uHMDcNhTC — Dominic Alvieri (@AlvieriD) December 26, 2023 The group published images of stolen documents as proof of the hack. The Rhysida ransomware group has been active since May 2023. The report includes IOCs and TTPs identified through investigations as recently as September 2023.

Ransomware 126

Ransomware Manufacturing Education Libraries 126

Security Affairs

NOVEMBER 25, 2023

ransomfeed #security #infosec #energychina pic.twitter.com/deRRximVPd — Ransomfeed (@ransomfeed) November 25, 2023 The China Energy Engineering Corporation (CEEC) is a state-owned company in China that operates in the energy and infrastructure sectors. The Rhysida ransomware group has been active since May 2023.

Ransomware 127

Ransomware Manufacturing Education Libraries 127

Security Affairs

NOVEMBER 29, 2023

GossiTheDog @SOSIntel @UK_Daniel_Card @LisaForteUK pic.twitter.com/L7A3XNNxU7 — Dominic Alvieri (@AlvieriD) November 29, 2023 The group published images of stolen documents as proof of the hack. The Rhysida ransomware group has been active since May 2023. “Unique files are presented to your attention!

Ransomware 120

Ransomware Manufacturing Education Libraries 120

Security Affairs

NOVEMBER 20, 2023

pic.twitter.com/Wdj7VfkWXa — British Library (@britishlibrary) November 20, 2023 The library plans to partially restore many services in the next few weeks, but it believes that some disruption may persist for longer. The report includes IOCs and TTPs identified through investigations as recently as September 2023.

Libraries 123

Libraries Ransomware Manufacturing Education 123