Security Affairs

JANUARY 24, 2024

A ransomware attack against the Finnish IT services provider Tietoevry disrupted the services of some Swedish government agencies and shops. Tietoevry is a Finnish multinational information technology (IT) and consulting company that provides managed services and cloud hosting for the enterprise.

Ransomware 111

Ransomware Government Retail Cloud 111

Security Affairs

MAY 12, 2024

Black Basta ransomware affiliates have breached over 500 organizations between April 2022 and May 2024, FBI and CISA reported. The FBI, CISA, HHS, and MS-ISAC have issued a joint Cybersecurity Advisory (CSA) regarding the Black Basta ransomware activity as part of the StopRansomware initiative. The average ransom payment was $1.2

Ransomware 57

Ransomware Blockchain Retail Insurance 57

Security Affairs

MARCH 2, 2023

Retailer WH Smith disclosed a data breach following a cyber attack, threat actors had access to access company data. Retailer WH Smith revealed that threat actors have breached its infrastructure and had access to the data of about 12,500 current and former employees.

Retail 94

Retail Data breaches Access Ransomware 94

Security Affairs

DECEMBER 3, 2020

E-Land Retail suffered a ransomware attack, Clop ransomware operators claim to have stolen 2 million credit cards from the company. E-Land Retail is a South Korean conglomerate headquartered in Changjeon-dong Mapo-gu Seoul, South Korea. It has operations worldwide through its subsidiary E-Land World. Pierluigi Paganini.

Ransomware 127

Ransomware Retail Encryption Sales 127

Security Affairs

FEBRUARY 2, 2022

Cyber security team at retail giant Walmart dissected a new ransomware family dubbed Sugar, which implements a ransomware-as-a-service model. The cyber threat team at retail giant Walmart has analyzed a new ransomware family dubbed Sugar, which is offered through a ransomware-as-a-service (RaaS) model.

Ransomware 100

Ransomware Retail Libraries Encryption 100

Security Affairs

NOVEMBER 8, 2021

Electronics retail giant MediaMarkt was hit by a ransomware attack that disrupted store operations in the Netherlands and Germany. Bleeping Computer, citing screenshots posted on Twitter, reported that 3,100 servers were infected with the ransomware. The Hive ransomware adds the.hive extension to the filename of encrypted files.

Ransomware 116

Ransomware Computer and Electronics Retail Sales 116

Security Affairs

DECEMBER 1, 2023

The Black Basta ransomware gang infected over 300 victims accumulating ransom payments exceeding $100 million since early 2022. The Black Basta ransomware group has been active since April 2022, like other ransomware operations, it implements a double-extortion attack model. ” reads the Elliptic’s report.

Ransomware 88

Ransomware Blockchain Retail Insurance 88

Security Affairs

AUGUST 20, 2021

Lojas Renner, the largest Brazilian department stores clothing company, suffered a ransomware attack that impacted its IT infrastructure. Lojas Renner, the largest Brazilian department stores clothing company, announced to have suffered a ransomware attack that impacted its IT infrastructure. SecurityAffairs – hacking, ransomware).

Ransomware 108

Ransomware Retail Data breaches Marketing 108

Security Affairs

AUGUST 9, 2021

The Australian Cyber Security Centre (ACSC) warns of a surge of LockBit 2.0 ransomware attacks against Australian organizations starting July 2021. The Australian Cyber Security Centre (ACSC) warns of an escalation in LockBit 2.0 ransomware attacks against Australian organizations in multiple industry sectors starting July 2021.

Ransomware 112

Ransomware Retail Security Manufacturing 112

Security Affairs

JUNE 16, 2023

British multinational oil and gas company Shell has confirmed that it has suffered a ransomware attack conducted by the Clop group. The Clop ransomware gang claims to have hacked hundreds of companies by exploiting the above issue. Our IT teams are investigating to understand and manage any risks, and take appropriate action, she said.

Ransomware 92

Ransomware Data breaches Retail Government 92

Security Affairs

NOVEMBER 20, 2020

The QakBot banking trojan has dropped the ProLock ransomware, they are now opting for the Egregor ransomware in their operations. Group-IB, a global threat hunting and intelligence company headquartered in Singapore, has discovered that QakBot (aka Qbot) operators have abandoned ProLock for Egregor ransomware. ProLock = Egregor.

Ransomware 120

Ransomware Retail Encryption Manufacturing 120

Security Affairs

OCTOBER 18, 2020

The financially-motivated hacker group FIN11 has started spreading ransomware to monetize its cyber criminal activities. The financially-motivated hacker group FIN11 has switched tactics starting using ransomware as the main monetization method. ” reads the analysis published by FireEye.

Ransomware 132

Ransomware IT Healthcare Phishing 132

Security Affairs

DECEMBER 22, 2021

PYSA and Lockbit were the most active ransomware gangs in the threat landscape in November 2021, researchers from NCC Group report. Security researchers from NCC Group reported an increase in ransomware attacks in November 2021 over the past month, and PYSA (aka Mespinoza) and Lockbit were the most active ransomware gangs.

Ransomware 101

Ransomware Encryption Government Retail 101

Security Affairs

JUNE 7, 2023

Clop ransomware group claims to have hacked hundreds of companies globally by exploiting MOVEit Transfer vulnerability. The Clop ransomware group may have compromised hundreds of companies worldwide by exploiting a vulnerability in MOVEit Transfer software. ” reads the message published by the gang.

Ransomware 79

Ransomware Retail Personal data Authentication 79

Security Affairs

OCTOBER 20, 2020

The Nefilim ransomware operators have posted a long list of files that appear to belong to Italian eyewear and eyecare giant Luxottica. Security experts believe that threat actor exploited the above flaw to infect the systems at the company with ransomware. Luxottica Group S.p.A. Pierluigi Paganini.

Ransomware 138

Ransomware IT Retail Manufacturing 138

Security Affairs

JUNE 9, 2023

Researchers discovered that the Clop ransomware gang was looking for a zero-day exploit in the MOVEit Transfer since 2021. Kroll security experts discovered that the Clop ransomware gang was looking for a zero-day exploit in the MOVEit Transfer since 2021. reads the message published by the gang.

Ransomware 81

Ransomware Retail Access Personal data 81

Security Affairs

NOVEMBER 4, 2020

Toymaker giant Mattel disclosed a ransomware attack, the incident took place in July and impacted some of its business operations. Toy industry giant Mattel announced that it has suffered a ransomware attack that took place on July 28th, 2020, and impacted some of its business operations. ” reads the 10-Q form.

Ransomware 114

Ransomware Retail Encryption IT 114

Security Affairs

JULY 4, 2021

Swedish supermarket chain Coop is the first company to disclose the impact of the recent supply chain ransomware attack that hit Kaseya. The supermarket chain Coop shut down approximately 500 stores as a result of the supply chain ransomware attack that hit the provider Kaseya. ” reads a statement from Visma. Pierluigi Paganini.

Ransomware 127

Ransomware Retail Encryption Security 127

Security Affairs

OCTOBER 28, 2020

Office furniture company Steelcase was hit by Ryuk ransomware attack that forced it to shut down its network to avoid the malware from spreading. Steelcase is a US-based furniture company that produces office furniture, architectural and technology products for office environments and the education, health care and retail industries.

Ransomware 104

Ransomware Computer and Electronics Manufacturing Mining 104

Security Affairs

NOVEMBER 23, 2023

American retailer and distributor of automotive parts and accessories AutoZone discloses a data breach after a MOVEit attack. AutoZone is an American retailer and distributor of automotive parts and accessories. The company is one of the largest aftermarket automotive parts and accessories retailers in the United States.

Data breaches 113

Data breaches Retail Education Ransomware 113

Security Affairs

FEBRUARY 20, 2020

A ransomware attack has disrupted operations at INA Group, Croatia’s biggest oil company, and its largest petrol station chain. ” reads a security breach notice published by the company on its website. “Market supply is secure. Fuel sales at our retail locations continue unhindered. Pierluigi Paganini.

Ransomware 115

Ransomware Encryption Retail Sales 115

Security Affairs

OCTOBER 24, 2020

The systems at the US-based ski and golf resort operator were infected with the WastedLocker ransomware, the incident impacted reservation systems. The company owns and operates eleven properties and an outdoor lifestyle equipment/apparel retail division with stores in cities throughout Michigan. Pierluigi Paganini.

Ransomware 89

Ransomware Retail Manufacturing Encryption 89

Security Affairs

APRIL 21, 2024

carmaker with phishing attacks Law enforcement operation dismantled phishing-as-a-service platform LabHost Previously unknown Kapeka backdoor linked to Russian Sandworm APT Cisco warns of a command injection escalation flaw in its IMC. Automotive Industry Chinese Organized Crime’s Latest U.S.

Data breaches 101

Data breaches Security MDM Ransomware 101

Schneier on Security

SEPTEMBER 2, 2022

Details are few, but Montenegro has suffered a cyberattack : A combination of ransomware and distributed denial-of-service attacks, the onslaught disrupted government services and prompted the country’s electrical utility to switch to manual control. […]. Polovic said some retail tax collection was affected.

Retail 98

Retail Government Ransomware Information Security 98

Security Affairs

JULY 4, 2021

Kaseya was addressing the zero-day vulnerability that REvil ransomware gang exploited to breach on-premise Kaseya VSA servers. A new supply chain attack made the headlines, on Friday the REvil ransomware gang hit the Kaseya cloud-based MSP platform impacting MSPs and their customers. “So ransomware can push itself to systems.

Ransomware 131

Ransomware Retail Sales Encryption 131

Security Affairs

JANUARY 7, 2024

Experts spotted a new macOS Backdoor named SpectralBlur linked to North Korea Merck settles with insurers regarding a $1.4

Artificial Intelligence 95

Artificial Intelligence Data breaches Security Ransomware 95

Security Affairs

DECEMBER 21, 2022

CyberNews researchers reported that Ecco, a global shoe manufacturer and retailer, exposed millions of documents. Ecco, a global shoe manufacturer and retailer, exposed millions of documents. Over 35GB of data was added to the exposed database after the server misconfiguration opened a security hole in Ecco’s infrastructure.

Retail 99

Retail Manufacturing Sales Phishing 99

Security Affairs

MARCH 4, 2023

FiXS, a new ATM malware that is targeting Mexican banks BidenCash leaks 2.1M stolen credit/debit cards Pegasus spyware used to spy on a Polish mayor Hundreds of thousands of websites hacked as part of redirection campaign MQsTTang, a new backdoor used by Mustang Panda APT against European entities Trusted Platform Module (TPM) 2.0

Security 86

Security Ransomware Data breaches Retail 86

Security Affairs

JUNE 13, 2023

UK communications regulator Ofcom suffered a data breach after a Clop ransomware attack exploiting the MOVEit file transfer zero-day. UK’s communications regulator Ofcom disclosed a data breach after a Clop ransomware attack.

Communications 70

Communications Data breaches Ransomware Personal data 70

Security Affairs

JULY 15, 2019

Some of the crooks behind the Dridex Trojan have split from the gang and released a forked version of the BitPaymer ransomware dubbed DoppelPaymer. Cybercrime gang tracked as TA505 has been active since 2014 and focusing on Retail and Banking industries. ” Now experts found a new variant of the ransomware tracked as DoppelPaymer.

Ransomware 74

Ransomware Encryption Agriculture Retail 74

Security Affairs

MAY 20, 2023

As a vertically integrated company, Luxottica designs, manufactures, distributes and retails its eyewear brands, including LensCrafters, Sunglass Hut, Apex by Sunglass Hut, Pearle Vision, Target Optical, Eyemed vision care plan, and Glasses.com. The investigation into the security breach is still ongoing. “We Luxottica Group S.p.A.

Data breaches 92

Data breaches Retail Sales Ransomware 92

Security Affairs

JANUARY 19, 2024

In December 2023, VF Corp announced it was the victim of a ransomware attack and was forced to take some systems down to contain the threat. Now the company confirmed attackers stole corporate and personal information impacting 35.5 The incident interrupted retail store inventory replenishment and delayed order fulfillment.

Data breaches 117

Data breaches Passwords Retail Insurance 117

Security Affairs

SEPTEMBER 3, 2023

Every week the best security articles from Security Affairs are free for you in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Security 109

Security Ransomware Data breaches IoT 109

Security Affairs

NOVEMBER 19, 2022

Other campaigns observed by the experts invited recipients to claim gift cards from popular retailers like Home Depot. In this case, the spam messages include links to fake online survey pages that have nothing to do with the retailer’s gift card. The experts also published a guide for a secure holiday shopping.

Sales 143

Sales Retail Phishing Passwords 143

Security Affairs

OCTOBER 23, 2022

15 Mysterious Prestige ransomware targets organizations in Ukraine and Poland Threat actors hacked hundreds of servers by exploiting Zimbra CVE-2022-41352 bug. 15 Mysterious Prestige ransomware targets organizations in Ukraine and Poland Threat actors hacked hundreds of servers by exploiting Zimbra CVE-2022-41352 bug.

Security 68

Security Data breaches Ransomware Retail 68

IT Governance

JANUARY 9, 2023

We also give ransomware its own category, due in part to the frequency of attacks and to differentiate it from intrusions that may be harder to detect, such as password breaches. It encompasses any technique that criminal hackers use to bypass security controls, although the majority of incidents involve phishing and malware.

Data breaches 126

Data breaches Ransomware Government Passwords 126

Security Affairs

NOVEMBER 21, 2021

The Conti ransomware group has suffered a data breach that exposed its attack infrastructure and allowed researcher to access it. Researchers at security firm Prodaft were able to identify the real IP address of one of the servers used by the Conti ransomware group and access the console for more than a month.

Access 85

Access Ransomware Retail Data breaches 85