Researchers have reported that the 8Base ransomware, which operated covertly for over a year, exhibited a significant increase in activity in May and June 2023. Employing encryption and "name-and-shame" tactics, 8Base targets victims across diverse industries. It has been linked to 67 attacks, primarily affecting businesses in the U.S. and Brazil.
Researchers have discovered a Trojanized Super Mario Bros game installer that delivers multiple forms of malware, including an XMR miner, SupremeBot mining client and Umbral Stealer.
Siemens Energy, a Munich-based energy technology company with a revenue of €32 billion, has confirmed that their data was stolen in the recent Clop ransomware data-theft attacks, which exploited a zero-day vulnerability in the MOVEit Transfer platform.
Attackers have stolen sensitive personal information from the MOVEit Transfer server of the New York City Department of Education (NYC DOE), affecting approximately 45,000 students.
A cyberattack on Suncor Energy, a major Canadian energy company, impacted payment operations at Petro-Canada gas stations across Canada. Customers at the affected stations were unable to use credit card rewards points to complete their purchases.
A custom CovalentStealer malware, the Impacket framework, the HyperBro remote access trojan (RAT), and over a dozen China Chopper webshell samples were used by attackers to steal sensitive data from a U.S. organization in the Defense Industrial Base (DIB) sector.
Researchers discovered a new phishing campaign targeting U.S. and New Zealand job seekers. Victims receive emails supposedly presenting them with a lucrative job offer, but which actually contain malicious files.
CommonSpirit Health, one of the largest nonprofit hospitals in the US, has seemingly been hit by a cyberattack. The organization faced a disruption of its IT systems that led to some delays in patient care.
The Lazarus APT group is using job offers as a lure to infect people in their latest campaign. The threat actors are sending out messages that proport to contain a job offer from the Crypto.com financial exchange company.
Optus, a subsidiary of Singtel with over 10.5 million subscribers and Australia's second-largest mobile operator, has disclosed a security breach. Attackers claim to have obtained the data of 11 million customers, and have demanded $1 million in ransom. A small sample of the stolen data was initially published online.
A previously unknown threat actor named "Metador" has been breaching telecommunication companies, internet services providers (ISPs), and universities across multiple countries in the Middle East and Africa for about two years.
The infamous Hive ransomware gang has been busy lately. Just in the last week, they've claimed responsibility for four new victims.