Date Reported: 2024-08-07 Country: USA Victim: Killeen | Killeen | killeentexas.gov Additional Information :
The city of Killeen, Texas, was targeted by a ransomware attack from the hacking group BlackSuit. Internal systems were compromised, including email and the municipal justice system. The hackers demanded a ransom for the restoration of the data.…Tag: FINANCIAL
Victim: EBL PARTNERS (construction interiors), Florida Country : US Actor: spacebears Source: http://5butbkrljkaorg5maepuca25oma7eiwo6a2rlhvkblb4v6mf3ki2ovid.onion/companies/29/ebl-partners-constructioninteriors-florida Discovered: 2024-07-31 18:18:10.855839 Published: 2024-07-30 00:00:00.000000 Description : Real Estate, developing and management. Florida.Financial Doc, Audit, Accounting Reports, BackUp, Project, Vendor Info, Customer Data Base https://eblpartners.com
Ransomware Victims – ALL Other Victims by spacebears…
Since July 2024, there has been a surge in the detection of a new variant of Gigabud malware, which employs sophisticated phishing tactics by masquerading as legitimate airline applications. The malware’s operations have expanded to target users in multiple countries, and analysis suggests a connection between Gigabud and Golddigger malware, indicating a coordinated approach by the same threat actor.…
Threat Actor: NoName057(16) | NoName057(16) Victim: Various Ukrainian Institutions | Various Ukrainian Institutions Price: N/A Exfiltrated Data Type: Sensitive governmental and financial data
Key Points :
NoName057(16) claimed responsibility for cyber attacks targeting Ukrainian entities amidst military tensions. The threat actor provided details on the movements of Ukrainian and Russian armed forces in their message.…Summary: The SEC has concluded its investigation into Progress Software’s response to the MOVEit Transfer zero-day vulnerability that led to significant data breaches affecting over 95 million individuals, deciding not to recommend enforcement action against the company. Despite this, Progress Software is still facing numerous class-action lawsuits related to the incident.…
Victim: tibaitservices.com Country : Actor: cactus Source: https://cactusbloguuodvqjmnzlwetjlpj6aggc6iocwhuupb47laukux7ckid.onion/posts/TIBA Discovered: 2024-08-08 08:28:37.549806 Published: 2024-08-08 06:58:22.741000 Description : Download link #1: , https://***************.onion/TIBA/PROOF/Mirror: https://cactus5dqnqkppa5ayckiyk6dttpqwczdqphv5mxh4dkk5ct544q5aad.onion/TIBA/PROOF/DATA DESCRIPTIONS: Personal Identifiable Information, employees and executives personal and corporate data, financial documents, contracts, corporate correspondence, etc.
Ransomware Victims – ALL Other Victims by cactus…
Victim: mihlfeld.com Country : Actor: cactus Source: https://cactusbloguuodvqjmnzlwetjlpj6aggc6iocwhuupb47laukux7ckid.onion/posts/MIHLFELD Discovered: 2024-08-08 08:02:01.803029 Published: 2024-08-08 07:15:14.979000 Description : Download link #1: , https://***************.onion/MIHLFELD/PROOF/Mirror: https://cactus5dqnqkppa5ayckiyk6dttpqwczdqphv5mxh4dkk5ct544q5aad.onion/MIHLFELD/PROOF/DATA DESCRIPTIONS: Employees personal and corporate data, Personal Identifiable Information, financial documents, customer information, contracts, corporate and personal correspondence, etc.
Ransomware Victims – ALL Other Victims by cactus…
Threat Actor: Unknown | unknown Victim: AI Company | AI Company Price: $15,000 Exfiltrated Data Type: Proprietary algorithms, sensitive data, intellectual property
Key Points :
The threat actor is selling access to an AI company’s systems. The company has an estimated revenue of over $4 million.…Threat Actor: Unknown | Unknown Victim: Major Casino Software Provider | Major Casino Software Provider Price: $80,000 Exfiltrated Data Type: Unauthorized access to casino software
Key Points :
The threat actor is selling unauthorized access to a major casino software provider with an annual revenue of $3 billion.…Summary: Chameleon, a Device-Takeover Trojan, has resurfaced with new campaigns targeting hospitality employees in Canada and Europe, using a CRM app disguise to infiltrate devices. The malware employs sophisticated techniques to bypass Android restrictions and steal sensitive information, posing significant risks to business banking accounts.
Threat Actor: Chameleon | Chameleon Victim: Hospitality workers and businesses | hospitality businesses
Key Point :
Chameleon masquerades as a CRM app, specifically targeting a Canadian restaurant chain.…Summary: Abnormal Security Corp. has raised $250 million in late-stage funding, bringing its valuation to $5.1 billion, to enhance its AI-driven platform aimed at preventing cybercrime through understanding human behavior. The company focuses on detecting and stopping socially engineered attacks, particularly those exploiting email and cloud account vulnerabilities.…
Summary: A Singaporean commodity firm nearly lost $42.3 million in a business email compromise scam but successfully recovered most of the funds thanks to swift police intervention and international cooperation. The incident highlights the importance of rapid response in combating financial crimes and the effectiveness of Interpol’s Global Rapid Intervention of Payments (I-GRIP) mechanism.…
Summary: This report discusses the use of Dynamic DNS (DDNS) by threat actors, particularly focusing on the DarkComet malware, which is frequently deployed through various malicious methods. It highlights the advantages of DDNS for command and control (C2) infrastructure in cyberattacks and the risks posed by compromised systems.…
Summary: The launch of the replacement service for Action Fraud, the UK’s fraud reporting center, has been delayed until spring 2025, amidst criticism regarding its current inefficacy and the need for a more effective system. The new service aims to enhance intelligence capabilities and improve communication with victims, addressing longstanding issues that have plagued the existing platform.…
Summary: Security Operation Centers (SOCs) are increasingly turning to AI to manage the overwhelming volume of data and sophisticated threats, allowing human analysts to focus on more strategic tasks. While there are concerns about job displacement, AI is expected to create new roles and enhance the efficiency of existing positions in cybersecurity.…
“`html Short Summary:
July 2024 witnessed a surge in high-impact cyber attacks, affecting millions globally. Notable incidents include significant data breaches at HealthEquity, MediSecure, WazirX, Rite Aid, AT&T, Evolve Bank & Trust, Neiman Marcus, Twilio Authy, and Prudential Financial, highlighting vulnerabilities across various sectors.
Key Points:
HealthEquity: Data breach exposed personal information of 4.3 million Americans due to compromised partner credentials.…Victim: Pyle Group Country : Actor: lynx Source: http://lynxblog.net/leaks/66aa5330e7861ae72f224106 Discovered: 2024-08-06 23:18:34.155318 Published: 2024-07-31 00:00:00.000000 Description : The Pyle Group are dedicated to managing and protecting your financial future. T…
Ransomware Victims – ALL Other Victims by lynx…
Short Summary:
Sophos MDR has identified a new threat activity cluster, STAC6451, targeting exposed Microsoft SQL Server databases in India. The attackers exploit vulnerabilities to gain unauthorized access, deploy ransomware, and create backdoor accounts for lateral movement. Despite blocking several incidents, the threat remains active.
Key Points:
STAC6451 targets exposed Microsoft SQL Server databases on the public Internet.…The RHADAMANTHYS stealer has emerged as a sophisticated threat targeting Israeli users through social engineering tactics, particularly phishing emails. This malware, developed by Russian-speaking actors, employs a multi-stage infection process, advanced anti-analysis techniques, and extensive data exfiltration capabilities, posing a significant risk to sensitive information.…
Victim: goftac.com/ firsttx.com First Texas Alliance Corp (FTAC) Country : US Actor: alphalocker Source: http://mydatae2d63il5oaxxangwnid5loq2qmtsol2ozr6vtb7yfm5ypzo6id.onion/blog_1-15 Discovered: 2024-08-06 22:13:57.295983 Published: 2024-08-06 22:13:53.644336 Description : https://goftac.com/ firsttx.com First Texas Alliance Corp (FTAC)Providing advisory services to business owners, professionals, and high-net-worth individuals. zackh@firsttx.com Zack HooperChuck Marler Financial Planning Client cmarler@ssgsta.comstole…