Groups, Manufacturing, Ransomware and Retail - Information Management Today

As of May 2024, Black Basta ransomware affiliates hacked over 500 organizations worldwide

Security Affairs

MAY 12, 2024

Black Basta ransomware affiliates have breached over 500 organizations between April 2022 and May 2024, FBI and CISA reported. The FBI, CISA, HHS, and MS-ISAC have issued a joint Cybersecurity Advisory (CSA) regarding the Black Basta ransomware activity as part of the StopRansomware initiative. in Germany, and 5.9%

Ransomware

Ransomware Blockchain Retail Insurance

Ransomware attacks break records in 2023: the number of victims rose by 128%

Security Affairs

JANUARY 19, 2024

Ransomware groups claimed that they successfully targeted 4191 victims in 2023, Cybernews researchers report. According to the Ransomlooker tool, the number of ransomware attack victims increased by 128.17% compared to the previous year (2022), with 1837 additional incidents. LockBit remained the most active group through 2023.

Ransomware

Ransomware Manufacturing Retail Insurance

Black Basta Ransomware gang accumulated at least $107 million in Bitcoin ransom payments since early 2022

Security Affairs

DECEMBER 1, 2023

The Black Basta ransomware gang infected over 300 victims accumulating ransom payments exceeding $100 million since early 2022. The Black Basta ransomware group has been active since April 2022, like other ransomware operations, it implements a double-extortion attack model. ” reads the Elliptic’s report.

Ransomware

Ransomware Blockchain Retail Insurance

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

RansomEXX ransomware leaks files stolen from Italian luxury brand Zegna

Security Affairs

AUGUST 6, 2021

RansomEXX ransomware operators hit the popular Italian luxury fashion house Ermenegildo Zegna Holding and started leaking stolen files. Ermenegildo Zegna Group is the largest menswear brand in the world by revenue. Ermenegildo Zegna Group is the largest menswear brand in the world by revenue. Pierluigi Paganini.

Ransomware

Ransomware Archiving Retail Manufacturing

Australian Cyber Security Centre warns of a surge of LockBit 2.0 ransomware attacks

Security Affairs

AUGUST 9, 2021

ransomware attacks against Australian organizations starting July 2021. ransomware attacks against Australian organizations in multiple industry sectors starting July 2021. The Australian agency also published 2021-006: ACSC Ransomware Profile – Lockbit 2.0 ransomware. . ransomware. in Australia since 2020.

Ransomware

Ransomware Retail Security Manufacturing

Ransomware at IT Services Provider Synoptek

Krebs on Security

DECEMBER 27, 2019

Synoptek , a California business that provides cloud hosting and IT management services to more than a thousand customer nationwide, suffered a ransomware attack this week that has disrupted operations for many of its clients, according to sources. A now-deleted Tweet from Synoptek on Dec. A now-deleted Tweet from Synoptek on Dec.

Ransomware

Ransomware IT Phishing Financial Services

QakBot Big Game Hunting continues: the operators drop ProLock ransomware for Egregor

Security Affairs

NOVEMBER 20, 2020

The QakBot banking trojan has dropped the ProLock ransomware, they are now opting for the Egregor ransomware in their operations. Group-IB, a global threat hunting and intelligence company headquartered in Singapore, has discovered that QakBot (aka Qbot) operators have abandoned ProLock for Egregor ransomware.

Ransomware

Ransomware Retail Encryption Manufacturing

Nefilim ransomware gang published Luxottica data on its leak site

Security Affairs

OCTOBER 20, 2020

The Nefilim ransomware operators have posted a long list of files that appear to belong to Italian eyewear and eyecare giant Luxottica. Luxottica Group S.p.A. Security experts believe that threat actor exploited the above flaw to infect the systems at the company with ransomware. ” explained Odysseus. Pierluigi Paganini.

Ransomware

Ransomware IT Retail Manufacturing

Steelcase office furniture giant hit by Ryuk ransomware attack

Security Affairs

OCTOBER 28, 2020

Office furniture company Steelcase was hit by Ryuk ransomware attack that forced it to shut down its network to avoid the malware from spreading. Steelcase is a US-based furniture company that produces office furniture, architectural and technology products for office environments and the education, health care and retail industries.

Ransomware

Ransomware Computer and Electronics Manufacturing Mining

Boyne Resorts ski and golf resort operator hit with WastedLocker ransomware

Security Affairs

OCTOBER 24, 2020

The systems at the US-based ski and golf resort operator were infected with the WastedLocker ransomware, the incident impacted reservation systems. The company owns and operates eleven properties and an outdoor lifestyle equipment/apparel retail division with stores in cities throughout Michigan. Pierluigi Paganini.

Ransomware

Ransomware Retail Manufacturing Encryption

The Week in Cyber Security and Data Privacy: 5 – 11 February 2024

IT Governance

FEBRUARY 14, 2024

TB JP Original Corp Source New Manufacturing USA Yes 1.2 TB JP Original Corp Source New Manufacturing USA Yes 1.2 TB JP Original Corp Source New Manufacturing USA Yes 1.2 TB JP Original Corp Source New Manufacturing USA Yes 1.2 TB JP Original Corp Source New Manufacturing USA Yes 1.2

Data Privacy

Data Privacy Manufacturing Privacy Security

The Week in Cyber Security and Data Privacy: 12 – 18 February 2024

IT Governance

FEBRUARY 21, 2024

ALPHV/BlackCat ransomware gang adds 2.7 TB of ASA Electronics data to its leak site The ALPHV/BlackCat ransomware gang is attempting to extort a ransom from ASA Electronics for 2.7 It is not known how long the database was publicly available, nor whether anyone else accessed it. Date breached: 384,658,212 records. Data breached: 2.7

Data Privacy

Data Privacy Manufacturing Privacy Energy and Utilities

6,009,014 MovieBoxPro Accounts Breached in Another Data Scraping Incident

IT Governance

MAY 7, 2024

At least 191 Australian organisations affected by ZircoDATA ransomware attack The ransomware group BlackBasta listed Australia-based ZircoDATA as a victim in February, allegedly exfiltrating 395 GB of data. Source (New) IT services USA Yes 1,382 Worthen Industries Source 1 ; source 2 (Update) Manufacturing USA Yes 1,277 R.J.

Data breaches

Data breaches Education Manufacturing Retail

List of Data Breaches and Cyber Attacks in March 2021 – 21 Million Records Breached

IT Governance

APRIL 1, 2021

We typically expect ambiguity when it comes to ransomware, because organisations are locked out of their files and can’t calculate what’s been affected. Ransomware. The issue is that in far more cases than we’d expect, the number of breached records wasn’t included in the notification, so we can’t include it here. Cyber attacks.

Data breaches

Data breaches Ransomware Manufacturing e-Delivery

News alert: Beazley reports on how AI, new tech distract businesses as cyber risk intensifies

The Last Watchdog

JULY 13, 2023

The data shows how perceptions around cyber and technology risks, from ransomware and other cyber-attacks to the threats posed by AI, are changing the global business risk landscape. Paul Bantick, Group Head of Cyber Risks, Beazley said: “Business leaders are finding it a struggle to keep up with the constantly evolving cyber threat.

Risk

Risk Insurance Energy and Utilities Marketing

Hackers hit Luxottica, production stopped at two Italian plants

Security Affairs

SEPTEMBER 22, 2020

Luxottica Group S.p.A. As a vertically integrated company, Luxottica designs, manufactures, distributes and retails its eyewear brands, including LensCrafters, Sunglass Hut, Apex by Sunglass Hut, Pearle Vision, Target Optical, Eyemed vision care plan, and Glasses.com. Pierluigi Paganini. SecurityAffairs – hacking, malware).

Retail

Retail Manufacturing Ransomware Security

List of data breaches and cyber attacks in June 2021 – 9.8 million records breached

IT Governance

JULY 1, 2021

Ransomware. Ransomware. discloses ransomware incident (unknown). discloses ransomware incident (unknown). discloses ransomware incident (unknown). Cyber attacks. Data breaches. Financial information. Malicious insiders and miscellaneous incidents. In other news…. Cyber attacks. Find out more.

Data breaches

Data breaches Ransomware Computer and Electronics Retail

2021 data breach exposed data of 70 Million Luxottica customers

Security Affairs

MAY 20, 2023

Luxottica Group S.p.A. As a vertically integrated company, Luxottica designs, manufactures, distributes and retails its eyewear brands, including LensCrafters, Sunglass Hut, Apex by Sunglass Hut, Pearle Vision, Target Optical, Eyemed vision care plan, and Glasses.com.

Data breaches

Data breaches Retail Sales Ransomware

The Week in Cyber Security and Data Privacy: 1 – 7 January 2024

IT Governance

JANUARY 9, 2024

LockBit claims responsibility for Capital Health security incident The LockBit ransomware group has claimed responsibility for an attack on Capital Health , a healthcare provider in Pennington, New Jersey, last November. The group has allegedly exfiltrated more than 10 million files. Data breached: 41,500,000 records.

Data Privacy

Data Privacy Privacy Manufacturing Data breaches

List of data breaches and cyber attacks in November 2020 – 586 million records breached

IT Governance

DECEMBER 1, 2020

Ransomware. Ransomware. As usual, incidents affecting UK organisations are in bold. Cyber attacks. Data breaches. Financial information. Malicious insiders and miscellaneous incidents. In other news…. Cyber attacks.

Data breaches

Data breaches Ransomware e-Discovery Personal data

List of data breaches and cyber attacks in December 2020 – 148 million records breached

IT Governance

JANUARY 4, 2021

Ransomware. Ransomware. We’ll have a separate post looking at the year’s data breaches and cyber attacks in more detail, but in the meantime, you can find the full list of December’s incidents below. As usual, incidents affecting UK organisations are in bold. Cyber attacks. Data breaches. Financial information. In other news….

Data breaches

Data breaches Ransomware Energy and Utilities Computer and Electronics

New financially motivated attacks in Western Europe traced to Russian-speaking threat actors

Security Affairs

MARCH 27, 2020

Researchers at Group-IB observed new financially motivated attacks in Western Europe traced to Russian-speaking threat actors. At least two companies operating in pharmaceutical and manufacturing sectors have been affected. At least two companies operating in pharmaceutical and manufacturing sectors have been affected.

Healthcare

Healthcare Manufacturing Cybersecurity Retail

Trickbot gang and Lazarus APT, the hidden link behind an epochal phenomena

Security Affairs

DECEMBER 12, 2019

For the first time, experts shed the light on the link between the TrickBot gang and the North Korea-linked APT group Lazarus. Security experts Sentinelone have published a report that for the first time sheds the light on the link between the TrickBot crimeware and the North Korea-linked APT group Lazarus.

Sales

Sales Ransomware Retail Manufacturing

Luxottica data breach exposes info of LensCrafters and EyeMed patients

Security Affairs

NOVEMBER 8, 2020

Luxottica Group S.p.A. As a vertically integrated company, Luxottica designs, manufactures, distributes and retails its eyewear brands, including LensCrafters, Sunglass Hut, Apex by Sunglass Hut, Pearle Vision, Target Optical, Eyemed vision care plan, and Glasses.com. billion in revenue for 2019.

Data breaches

Data breaches Insurance Retail Ransomware

2022 Cyber Security Review of the Year

IT Governance

DECEMBER 20, 2022

A group of Ukrainian hackers took the Moscow Stock Exchange offline on Monday, while the hacking collective Anonymous, which has declared “cyber war” against Russia , said it had taken down RT News, the Russian state-controlled television network. There usually isn’t much doubt about whether you’ve been hit by ransomware.

Security

Security Data breaches Ransomware Military

Data Breaches and Cyber Attacks in November 2023 – 519,111,354 Records Breached

IT Governance

DECEMBER 5, 2023

27 Israeli organisations with e-commerce websites, likely in either the retail or manufacturing sector, but we can’t be sure at this time. This is a key reason we’ve decided to track this as a separate category, rather than group it under ‘unpatched’ in general. It can also be down to the month in question.

Data breaches

Data breaches Ransomware Access Security

The Week in Cyber Security and Data Privacy: 19 – 25 February 2024

IT Governance

FEBRUARY 27, 2024

2,350,236 individuals’ health data compromised in American Vision Partners breach Medical Management Resource Group, L.L.C. TB Roncelli Plastics Source (New) Manufacturing USA Yes 1.6 GB Tiete Automobile Source (New) Retail Brazil Yes 68.5 TB Roncelli Plastics Source (New) Manufacturing USA Yes 1.6

Data Privacy

Data Privacy Manufacturing Privacy Data breaches

The Week in Cyber Security and Data Privacy: 22 – 28 January 2024

IT Governance

JANUARY 30, 2024

Source (New) Retail USA Yes 2,588,849 Keenan & Associates Source 1 ; source 2 (Update) Insurance USA Yes 1,509,616 AGC Group Source (New) Manufacturing Japan Yes 1.5 TB Four Hands Source (New) Manufacturing USA Yes 1.5 TB Four Hands Source (New) Manufacturing USA Yes 1.5

Data Privacy

Data Privacy Retail Privacy Manufacturing

The Weeks in Cyber Security and Data Privacy: 18 – 31 December 2023

IT Governance

JANUARY 3, 2024

Dori Media Group allegedly had more than 100 TB of data exfiltrated The MalekTeam Group claims to have destroyed more than 100 TB of data from Dori Media Group, an international group of media companies in Israel, Switzerland, Argentina, Spain and Singapore. The group is threatening to leak the exfiltrated data.

Data Privacy

Data Privacy Insurance Manufacturing Retail

The Week in Cyber Security and Data Privacy: 4 – 10 December 2023

IT Governance

DECEMBER 11, 2023

suffers second ransomware attack in months Having been struck by a ransomware attack in October by the BlackSuit group , which led to operations and appointments being postponed, Akumin Inc. has suffered a second attack, this time by the BianLian ransomware group. Source (New) Manufacturing Canada Yes 1.2

Data Privacy

Data Privacy Energy and Utilities Privacy Manufacturing

The Week in Cyber Security and Data Privacy: 27 November – 3 December 2023

IT Governance

DECEMBER 5, 2023

35 TB of data exfiltrated from Henry Schein, plus ALPHV/BlackCat re-encrypted the newly restored files As we first reported last month , the US healthcare solutions provider Henry Schein announced on 15 October that it had suffered a cyber attack that caused disruption to its manufacturing and distribution businesses.

Data Privacy

Data Privacy Privacy Manufacturing Retail

The Week in Cyber Security and Data Privacy: 15 – 21 April 2024

IT Governance

APRIL 22, 2024

Publicly disclosed data breaches and cyber attacks: in the spotlight Criminal hackers threaten to leak World-Check screening database A criminal group known as GhostR claims to have stolen 5.3 million accounts compromised in Le Slip Français data breach The French underwear manufacturer Le Slip Français has suffered a data breach.

Data Privacy

Data Privacy Privacy Manufacturing Security

Security Affairs newsletter Round 461 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

MARCH 3, 2024

Private Plane Owners’ Data Linked to LA Intl. Private Plane Owners’ Data Linked to LA Intl. Private Plane Owners’ Data Linked to LA Intl. Private Plane Owners’ Data Linked to LA Intl. Private Plane Owners’ Data Linked to LA Intl.

Security

Security Ransomware Retail Artificial Intelligence

The Week in Cyber Security and Data Privacy: 15 – 21 January 2024

IT Governance

JANUARY 23, 2024

More than 10 million lines of Pastelería Mozart customer data apparently posted on dark web The Ynnian hacking group has posted 10,870,525 lines of data on the dark web, apparently originating from Pastelería Mozart, a popular bakery chain in Chile. Source (New) Manufacturing Saudi Arabia Yes 86.16 VF Corporation confirms 35.5

Data Privacy

Data Privacy Privacy Manufacturing Retail

The Week in Cyber Security and Data Privacy: 4 – 10 March 2024

IT Governance

MARCH 11, 2024

Source (New) Retail Italy Yes 436,932 Toner-dumping.de Source (New) Retail Germany Yes 334,000 Yakima Valley Radiology, PC Source 1 ; source 2 (New) Healthcare USA Yes 235,249 Consorzio Innovation Source (New) Professional services Italy Yes 225 GB Northeast Orthopaedics & Sports Medicine Source (New) Healthcare USA Yes 177,276 Strike.me

Data Privacy

Data Privacy Privacy Security Data breaches

The Week in Cyber Security and Data Privacy: 1 – 7 April 2024

IT Governance

APRIL 9, 2024

million patients’ data via unsecured database According to DataBreaches.net, EyeCare Services Partners – a group of eye care providers based in Dallas, Texas – left 50 TB of data exposed via an unsecured blob. Source (New) Manufacturing USA Yes 1.1 Source (New) Manufacturing USA Yes 1.1 Source (New) Manufacturing USA Yes 1.1

Data Privacy

Data Privacy Privacy Security Manufacturing

List of data breaches and cyber attacks in May 2021 – 116 million records breached

IT Governance

JUNE 1, 2021

For the second month in a row, ransomware has dominated our list of data breaches and cyber attacks. Of the 128 publicly disclosed incidents that we discovered in May, more than 40% of them were ransomware attacks. Ransomware. That partially explains why May’s total of 115,861,330 breached records is comparatively low.

Data breaches

Data breaches Ransomware Insurance Energy and Utilities

The Hacker Mind Podcast: The Internet As A Pen Test

ForAllSecure

MAY 17, 2023

Small to Medium Business are, today, the target of APTs and ransomware. MUSIC} VAMOSI: In EP 49, I talked with Huntress, a managed service provider that discovered the ransomware affecting customers of Keysea. And because they were plugged into those clients, they were able to limit the spread of the ransomware.

Insurance

Insurance Privacy Ransomware GDPR

The Week in Cyber Security and Data Privacy: 29 January – 4 February 2024

IT Governance

FEBRUARY 6, 2024

Schneider Electric hit by Cactus ransomware The Sustainability Business division of the energy company Schneider Electric suffered a ransomware attack on 17 January, disrupting the company’s Resource Advisor platform. Data breached: 13,300,000 records.

Data Privacy

Data Privacy Privacy Insurance Security

The Hacker Mind Podcast: Hacking Healthcare

ForAllSecure

JANUARY 15, 2021

You name it, all the major automotive manufacturers in the world were represented in the room, but arriving the night before, blurry eyed from travel, I stumbled into this Marriot down the street from Fiat Chrysler headquarters and there’s Mike Amadhi standing at the registration desk. “Hi, Rob.”

IT

IT Manufacturing Government Paper

The Hacker Mind Podcast: Hacking Healthcare

ForAllSecure

JANUARY 15, 2021

You name it, all the major automotive manufacturers in the world were represented in the room, but arriving the night before, blurry eyed from travel, I stumbled into this Marriot down the street from Fiat Chrysler headquarters and there’s Mike Amadhi standing at the registration desk. “Hi, Rob.”

IT

IT Manufacturing Government Paper

The Week in Cyber Security and Data Privacy: 11 – 18 December 2023

IT Governance

DECEMBER 19, 2023

8 TB of data exfiltrated from Advantage Group International Following an outage affecting its leak site (see the ‘Enforcement’ section below), the ALPHV/BlackCat ransomware group is listing only a single incident: a data breach affecting the business management consultant Advantage Group International.

Data Privacy

Data Privacy Manufacturing Privacy Energy and Utilities

Network Protection: How to Secure a Network

eSecurity Planet

MARCH 22, 2023

We will group these technical controls into: User Access Controls Asset Discovery Controls Traffic Monitoring Controls Resilience, Maintenance & Testing Controls These tools rely heavily on the effective determination of administrative controls that define and determine the policies that will be implemented through the technical controls.

Security

Security Cloud Encryption Access

The Week in Cyber Security and Data Privacy: 22 – 28 April 2024

IT Governance

APRIL 29, 2024

The company has fixed the issue, blaming it on a vulnerability in the app’s groups feature. iSharing is used by more than 35 million users. Data breached: >35 million people’s data. 117 of them are known to have had data exfiltrated, exposed or otherwise breached.

Data Privacy

Data Privacy Privacy Manufacturing Security

As of May 2024, Black Basta ransomware affiliates hacked over 500 organizations worldwide

Ransomware attacks break records in 2023: the number of victims rose by 128%

Webinars

Trending Sources

Black Basta Ransomware gang accumulated at least $107 million in Bitcoin ransom payments since early 2022

Webinars

RansomEXX ransomware leaks files stolen from Italian luxury brand Zegna

Australian Cyber Security Centre warns of a surge of LockBit 2.0 ransomware attacks

Ransomware at IT Services Provider Synoptek

QakBot Big Game Hunting continues: the operators drop ProLock ransomware for Egregor

Nefilim ransomware gang published Luxottica data on its leak site

Steelcase office furniture giant hit by Ryuk ransomware attack

Boyne Resorts ski and golf resort operator hit with WastedLocker ransomware

The Week in Cyber Security and Data Privacy: 5 – 11 February 2024

The Week in Cyber Security and Data Privacy: 12 – 18 February 2024

6,009,014 MovieBoxPro Accounts Breached in Another Data Scraping Incident

List of Data Breaches and Cyber Attacks in March 2021 – 21 Million Records Breached

News alert: Beazley reports on how AI, new tech distract businesses as cyber risk intensifies

Hackers hit Luxottica, production stopped at two Italian plants

List of data breaches and cyber attacks in June 2021 – 9.8 million records breached

2021 data breach exposed data of 70 Million Luxottica customers

The Week in Cyber Security and Data Privacy: 1 – 7 January 2024

List of data breaches and cyber attacks in November 2020 – 586 million records breached

List of data breaches and cyber attacks in December 2020 – 148 million records breached

New financially motivated attacks in Western Europe traced to Russian-speaking threat actors

Trickbot gang and Lazarus APT, the hidden link behind an epochal phenomena

Luxottica data breach exposes info of LensCrafters and EyeMed patients

2022 Cyber Security Review of the Year

Data Breaches and Cyber Attacks in November 2023 – 519,111,354 Records Breached

The Week in Cyber Security and Data Privacy: 19 – 25 February 2024

The Week in Cyber Security and Data Privacy: 22 – 28 January 2024

The Weeks in Cyber Security and Data Privacy: 18 – 31 December 2023

The Week in Cyber Security and Data Privacy: 4 – 10 December 2023

The Week in Cyber Security and Data Privacy: 27 November – 3 December 2023

The Week in Cyber Security and Data Privacy: 15 – 21 April 2024

Security Affairs newsletter Round 461 by Pierluigi Paganini – INTERNATIONAL EDITION

The Week in Cyber Security and Data Privacy: 15 – 21 January 2024

The Week in Cyber Security and Data Privacy: 4 – 10 March 2024

The Week in Cyber Security and Data Privacy: 1 – 7 April 2024

List of data breaches and cyber attacks in May 2021 – 116 million records breached

The Hacker Mind Podcast: The Internet As A Pen Test

The Week in Cyber Security and Data Privacy: 29 January – 4 February 2024

The Hacker Mind Podcast: Hacking Healthcare

The Hacker Mind Podcast: Hacking Healthcare

The Week in Cyber Security and Data Privacy: 11 – 18 December 2023

Network Protection: How to Secure a Network

The Week in Cyber Security and Data Privacy: 22 – 28 April 2024

Stay Connected