India audio products manufacturer BoAt suffered a data breach
BoAt is a leading Indian audio products and smartwatch manufacturer with 2023 revenue of $406.98 million. It was compromised via unpatched infrastructure by an attacker known as 'ShopifyGUY,’ and the company’s information was published on April 6. The hack affected approximately 7.5 million customers whose sensitive personal information such as names, addresses, contact numbers, email IDs and customer IDs were exposed on the dark web. The threat actor also has leaked around 2 GB of data on the forum.
According to Acronis threat intelligence data, India is heavily targeted, with 30.5% of users experiencing at least one malware detection during the month and 28.7% trying to visit a malicious URL at least once.
Singaporean company InnoSoft suffered a ransomware attack
InnoSoft Info Systems provides IT and accountant software services. It was compromised by the 8Base gang, most likely through spear-phishing, malicious scripts and RDP access via stolen credentials. The hack was confirmed on April 8. The bad guys exfiltrated invoices, receipts, other accounting documents, personal data, and so on.
In April, Singapore saw 41.7% of users experiencing at least one malware detection during the month and 16.3% trying to visit a malicious URL at least once.
Defense contractors targeted in South Korea
Defense industry entities in South Korea were targeted by North Korean hacking groups to steal valuable technology information. This police report highlighted three cases, and they suspect Lazarus, Andariel, and Kimsuky carried out the attacks.
South Korea continues to be very heavily targeted as, according to Acronis threat intelligence, 49.4% of users experienced at least one malware detection during April and 24.1% tried to visit a malicious URL at least once.