Notified by: K4TSUY4-GH05T Date: Thu, 29 Aug 2024 09:42:19 +0000 URL: https://www.concejomunicipalchia.gov.co/noname.html Country: Colombia Sector: Municipal Government – This sector typically involves local government operations, community services, and public administration at the municipal level.
Check It ! | source:zone-h
Web Defacement?
“There will be a delay in taking screenshots, there is a possibility that the defacement page has been removed.”…
Victim: Appletec Ltd Country : IL Actor: handala Source: https://handala-hack.to/appletec-ltd-hacked/ Discovered: 2024-08-29 05:46:32.355351 Published: 2024-08-29 04:37:50.000000 Description : Handala Hacked Appletec Ltd. It is an affiliated company of the Ministry of Defense of the regime and is responsible for the design of many sensitive electronic and optical systems of the regime, ’s military industries.…
Short Summary:
The FBI, CISA, and DC3 have issued a Cybersecurity Advisory warning about ongoing cyber activities by Iran-based actors targeting U.S. and foreign organizations, particularly in sectors like education, finance, and healthcare. These actors aim to gain network access for collaboration with ransomware affiliates, while also conducting espionage activities for the Iranian government.…
Short Summary:
The article discusses two exploits targeting iOS and Google Chrome, focusing on a bug during FTL JIT compilation. Both exploits utilize a similar framework for executing arbitrary code and aim to steal authentication cookies from various websites. The iOS exploit includes additional data collection features, while the Chrome exploit requires a sandbox escape vulnerability.…
Victim: medisetter.com Country : VN Actor: killsec Source: http://kill432ltnkqvaqntbalnsgojqqs2wz4lhnamrqjg66tq6fuvcztilyd.onion/post/7HNRtZcPv22R31CL9SUdjFWXA.php Discovered: 2024-08-28 18:35:14.584496 Published: 2024-08-28 18:35:14.057950 Description : Medisetter is Vietnam’s largest multichannel digital network dedicated to healthcare practitioners (HCPs). The platform emphasizes the quality of its member base over quantity, ensuring that all members are verified healthcare practitioners or medical students.…
Victim: KidKraft Country : US Actor: lynx Source: http://lynxblogmx3rbiwg3rpj4nds25hjsnrwkpxt5gaznetfikz4gz2csyad.onion/leaks/66c5ca5ba3128b5353456f8d Discovered: 2024-08-28 10:23:12.238190 Published: 2024-08-21 00:00:00.000000 Description : We aim to inspire imaginative play for children everywhere. For over 50 years, …
Ransomware Victims – ALL Other Victims by lynx
Victim: KidKraftFounded over 50 years ago, KidKraft specializes in creating imaginative play products for children, including toys, playsets, and furniture.…Victim: www.polycohealthline.com Country : GB Actor: ransomhub Source: http://ransomxifxwc5eteopdobynonjctkxxvap77yqifu2emfbecgbqdw6qd.onion/8a245761-e38e-4ba0-b051-c970a760b78a/ Discovered: 2024-08-28 08:53:31.675331 Published: 2024-08-27 14:52:17.000000 Description : Polyco Healthline is a company specializing in the manufacture and supply of protective products, including gloves, workwear, and specialist health and safety equipment. They cater to various industries such as healthcare, food, automotive, and industrial sectors.…
Summary: The Volt Typhoon group from China has been exploiting a zero-day vulnerability in Versa Networks’ Director Servers to harvest credentials for future attacks, affecting all versions prior to 22.1.4. The vulnerability, tracked as CVE-2024-39717, allows attackers to gain privileged access through exposed management ports.
Threat Actor: Volt Typhoon | Volt Typhoon Victim: Various organizations | Versa Networks
Key Point :
The vulnerability allows attackers to escalate privileges and gain administrator credentials.…Victim: comtruck.ca Country : CA Actor: abyss Source: Discovered: 2024-08-28 12:41:37.674874 Published: 2024-08-28 12:41:37.274925 Description : Providing Expert Truck Equipment Solutions across Canada. Part of the Commercial Group of Companies, Commercial Truck Equipment is Canada’s largest supplier of vocational vehicles and work truck equipment
Ransomware Victims – ALL Other Victims by abyss
Victim: comtruck.ca…Date Reported: 2024-08-27 Country: Brazil Victim: Portal do Governo de l’État d’Alagoas | Government Portal of Alagoas | alagoas.al.gov.br Additional Information :
On August 27, the Government Portal of the State of Alagoas was targeted by a cyberattack attempt. The attack was contained thanks to the security measures implemented by the Institute of Technology in Informatics and Information (Itec).…Cyble Research and Intelligence Labs (CRIL) has discovered a phishing site that impersonates Zoom to trick users into downloading ScreenConnect software. This software allows attackers to gain unauthorized remote access to victims’ computers, facilitating further malicious activities. The campaign also involves spam emails targeting Social Security Administration (SSA) account holders, urging them to download applications under false pretenses.…
The Seqrite Labs APT-Team has uncovered a sophisticated cyber campaign targeting government and military officials in the Czech Republic, utilizing NATO-themed lures. The campaign employs a malware ecosystem that includes a Rust-based loader and a Command-and-Control framework known as HavocC2. The analysis details the infection chain, technical aspects of the malware, and the threat actor’s potential origins.…
Short Summary:
Between April and July 2024, Microsoft identified the Iranian state-sponsored threat actor Peach Sandstorm deploying a new multi-stage backdoor named Tickler, targeting sectors such as satellite, communications, oil and gas, and government in the US and UAE. The group also conducted password spray attacks and intelligence gathering via LinkedIn, indicating a focus on intelligence collection for Iranian state interests.…
Threat Actor: grep | grep Victim: Supreme Court of the Philippines | Supreme Court of the Philippines Price: N/A Exfiltrated Data Type: Sensitive legal information
Key Points :
On August 27, 2024, a significant data breach exposed sensitive legal data from the Supreme Court of the Philippines.…Summary: India’s critical infrastructure sectors are increasingly vulnerable to cyberattacks, with significant incidents reported across finance, government, and healthcare. The Reserve Bank of India has highlighted the risks associated with rapid digitization, indicating a dramatic rise in cyber incidents, particularly targeting financial institutions.
Threat Actor: Hackers | hackers Victim: Boat | Boat
Key Point :
Cyber incidents in India’s financial sector surged to 16 million in 2023, compared to 53,000 in 2017.…Summary: Cybercriminals are increasingly targeting individuals with highway toll text scams, sending fraudulent SMS messages that demand payment for non-existent charges. These scams exploit the urgency associated with electronic toll collection systems, leading to significant risks for victims across multiple states.
Threat Actor: Cybercriminals | cybercriminals Victim: Individuals using electronic toll collection systems | individuals using electronic toll collection systems
Key Point :
Scammers impersonate state authorities, sending urgent messages with links to fake payment websites.…Short Summary:
Trustwave investigated an unauthorized access incident leading to the deployment of Mallox ransomware in a client’s cloud-based environment. The attack exploited a misconfiguration that allowed unauthorized access, resulting in significant data encryption and threats of data leaks. Mallox ransomware has evolved to target various industries and employs double extortion tactics to pressure victims into paying ransoms.…
Summary: This research, presented at Black Hat USA 2024, explores vulnerabilities in open-source Machine Learning Operations (MLOps) platforms, revealing over 20 CVEs and detailing potential attack vectors. The findings emphasize the importance of understanding inherent and implementation vulnerabilities in MLOps to secure organizational networks.
Threat Actor: Various attackers | malicious actors Victim: Organizations using MLOps platforms | organizations using MLOps platforms
Key Point :
Inherent vulnerabilities include malicious ML models and datasets that can execute arbitrary code upon loading.…Summary: Zimbabwe’s government is enhancing its national cybersecurity capabilities by training over 100 public officials in key cybersecurity and governance topics to improve the country’s digital defenses. This initiative is a response to recent high-profile hacking incidents and aims to strengthen the Information and Communication Technology (ICT) sector and public services.…
Notified by: ./Str3sxSec Date: Mon, 26 Aug 2024 16:03:42 +0000 URL: http://cekpsp.pn-lhokseumawe.go.id/idiot.txt Country: Indonesia Sector: Government – This sector encompasses various governmental institutions and services that manage public administration and governance.
Check It ! | source:zone-h
Web Defacement?
“There will be a delay in taking screenshots, there are a possibility of the defacement page has been removed.”…