Russian-linked Cyber Espionage Campaign Targets Central Asia, East Asia, and Europe

DATA BREACH

Cyberattack Disrupts Lozere Chamber of Agriculture

Intrusion

Critical Local Privilege Escalation Vulnerabilities in Ubuntu Servers needrestart Package

WEB THREATS

Critical Vulnerability in Atlassians Sourcetree Exposes Systems to Remote Code Execution

WEB THREATS

Apple Patches Two Exploited Zero-Day Vulnerabilities in Mac Systems

WEB THREATS

Online scan finds critical vulnerabilities in US drinking water supply

Intrusion

VMware vCenter and Kemp LoadMaster Flaws Under Active Exploitation

Intrusion

Palo Alto Networks patches firewall zero-days CVE-2024-0012 and CVE-2024-9474 used in attacks

ZERO DAY

Oracle Releases Emergency Update for Actively Attacked Vulnerability CVE-2024-21287 in Agile PLM

DATA BREACH

Google exposes a China-nexus influence operation

MISINFORMATION/DISINFORMATION
From: t.me  

NoName057 carried out DDoS attacks against Ukrainian websites on November 25

DOS/DDOS
From: t.me  

NoName057 launched DDoS attacks against Australia's internet infrastructure on November 25

DOS/DDOS
From: t.me  

Canadian websites were allegedly targeted by NoName057 on November 25

DOS/DDOS
From: t.me  t.me  

NoName057 claimed DDoS attacks against Ukrainian websites on November 24

DOS/DDOS
From: t.me  

NoName057's DDoS attacks against Ukrainian websites on November 23

DOS/DDOS
From: t.me  

SYLHET GANG-SG claimed a data breach against North East War Memorials Project of UK

DATA
From: t.me  

OverFlame claimed to have targeted the website of Army FM radio station owned and operated by the Ukrainian Ministry of Defence

DOS/DDOS
From: t.me  

RipperSec targeted Israeli websites on November 25

DOS/DDOS

Fraudsters Impersonate RAC in Latest Cyber Attack on British Motorists

FRAUD

UK drinking water supplies disrupted by record number of undisclosed cyber incidents

Intrusion
From: x.com  

UK-based car dealership Hadwins Volkswagen hit by INC Ransom ransomware group

RANSOMWARE
From: x.com  

British company Ace Laboratories Ltd victim of Hunters International ransomware group

RANSOMWARE
From: x.com  

UK-based electronics manufacturer Darlington EMS victim of INC Ransom ransomware group

RANSOMWARE
From: t.me  

LulzSec Black claimed to have targeted the website of Harmonick in Poland on November 24

DOS/DDOS
From: t.me  

Alleged Database leak of BLACKGEN

DATA

Alleged data leak of French Radiotelephone Society (FSR)

DATA

A Threat Actor is Allegedly Selling VPN Access to an Unidentified German IT Corp

DATA
From: t.me  

NoName057 claimed to have targeted the government and transportation sectors in Czech Republic on November 23

DOS/DDOS
From: cyberalert.cy  

Police Warn of WhatsApp Scam Targeting Citizens

SOCIAL ENGINEERING
From: x.com  

BASHE ransomware group claimed to have targeted the company GURECO Sp. z o.o. in Poland

DATA
From: x.com  

Alleged Data Breach of Banque de France on Dark Web

DATA
From: x.com  

Sensitive Data from IFA Paris Exposed in Dark Web Breach

DATA
From: x.com  

Personal Data of 9,000 French Users Exposed in Breach

DATA
From: x.com  

Massive Data Breach Exposes 140,000+ Spanish Consumers

DATA
From: x.com  

IPE Engwicht GmbH Targeted by INC RANSOM Ransomware

RANSOMWARE
From: x.com  

SASS Datentechnik Targeted by INC RANSOM Ransomware

RANSOMWARE
From: x.com  

Schuck Group GmbH Hit by INC RANSOM Ransomware Attack

DATA
From: x.com  

INC RANSOM Ransomware Attack on Alna-Bioscience

DATA
From: x.com  

INC RANSOM ransomware claimed to have targeted the City of Borohradek in Czech Republic on November 25

DATA
From: x.com  

Extra Shop in Belgium Targeted by LYNX Ransomware

DATA

The website provider Backslash from eastern Switzerland had been affected by a hacker attack, numerous municipal and cantonal websites were unavailable

DOS/DDOS
From: x.com  

RA World ransomware group claimed to have breached United Arab Emirates' Gulf Energy Maritime

RANSOMWARE
From: x.com  

Hunters International ransomware group claims to have breached Brazilian wind blade manufacturer Aeris Energy

RANSOMWARE
From: x.com  

U.S. company Trinity Petroleum Management hit by Bianlian ransomware attack

RANSOMWARE

Python Crypto Library aiocpa Updated to Steal Private Keys

MINER/CRYPTO

Ignoble Scorpius, Distributors of BlackSuit Ransomware

RANSOMWARE

Hackers breach US firm over Wi-Fi from Russia in 'Nearest Neighbor Attack'

Intrusion

Hackers abuse Avast anti-rootkit driver to disable defenses

Intrusion

US military officials used China-linked promotional gift shop GS-JJ, exposing over 300K emails

DATA

Over 145,000 Industrial Control Systems Across 175 Countries Found Exposed Online

WEB THREATS

Over 2,000 Palo Alto Networks Devices Hacked in Operation Lunar Peek Campaign

Intrusion
From: www.svt.se  

More municipalities in Sydnarke affected by the cyber attack in Kumla

DATA

Computer forgery within public offices in Botosani County issued Romanian identity documents containing false information to people born in Moldova, Ukraine and Russia

FRAUD

CERT Polska warn that cybercriminals are carrying out a new cyberattack aimed at PKO BP bank customers

PHISHING

A threat actor allegedly selling data of French environment office Etudes Environnement

DATA BREACH
From: www.nvb.nl  

Increased number of victims to 'pig butchering' in the Netherlands

FRAUD
From: www.ncsc.nl  

The Dutch National Cyber Security Centre (NCSC) warns against phishing emails misusing its name about antivirus protection

PHISHING
From: x.com  

Doctorim Israel Database Breach

DATA BREACH
From: t.me  

NoName057 targets the government, telecommunications, transportation and economic development in Canada on November 22

DOS/DDOS
From: x.com  

DubaiPulse.gov.ae Breach Exposes Sensitive Data

DATA BREACH

Direct Assurance victim of a cyberattack, the IBANs of 15,000 customers stolen

DATA BREACH
From: x.com  

French network and telecommunications organization SFR victim of BASHE ransomware group

RANSOMWARE

German producer of food products VOSSKO GmbH & Co. KG victim of a hacker attack

Intrusion
From: x.com  

Austrian carpentry company Zimmerei Buder victim of INC Ransom ransomware group

RANSOMWARE
From: x.com  

Suneva Medical Targeted by LYNX Ransomware Attack

RANSOMWARE
From: x.com  

Brueck Golosow Kim & Associates Victimized by INC RANSOM Ransomware Attack

RANSOMWARE
From: t.me  

Anonymous Guys targets the website of Ukraine Cricket Federation

DOS/DDOS
From: t.me  t.me  

NoName057 targets the government, telecommunications, cloud computing, utilities, and public services in Ukraine on November 22

DOS/DDOS

China-aligned APT Gelsemium Deploys New Linux Malware WolfsBane

Malware
From: x.com  

Kill Security Hacking Group Breaches ABC Group, Demands Ransom

DATA BREACH

Mexico Probes Ransomware Attack on Legal Affairs Office

RANSOMWARE
From: x.com  

Cobel Darou Falls Victim to RansomHub Ransomware Attack

RANSOMWARE
From: t.me  

SmartGasNet Data Breach: Access to Sensitive Client Data and Source Code Leaked

DATA BREACH

Google's AI Tool Identifies 26 Vulnerabilities in Open-Source Projects

WEB THREATS

Malicious AI Packages on PyPI Deliver JarkaStealer Malware

SUPPLY CHAIN ATTACK
From: t.me  

Allegedly leaked the database of YTadawul.Uk

DATA BREACH

Warning Issued Over Fraudulent QR Codes on Parking Meters

PHISHING
From: t.me  t.me  

NoName057 claimed to have targeted the transportation and public admin sectors in Czech Republic on November 21

Denial of Service (DoS/DDoS)

Python NodeStealer Targets Facebook Ads Manager with New Techniques

Malware
From: levelblue.com  

PDFFlex a seemingly innocuous PDF converter was exposed by researchers as a Potentially Unwanted Application (PUA)

Intrusion

FrostyGoop Malware Threatens Industrial Control Systems

Malware

Earth Kasha Launches LODEINFO Malware Campaign Targeting Government and High-Tech

Malware

ClickFix Social Engineering Technique Floods Threat Landscape

SOCIAL ENGINEERING
From: x.com  x.com  

Handala claimed to have leaked data from the SSV Network, a decentralized blockchain protocol based in Israel

RANSOMWARE
From: x.com  

Israeli manufacturer Scalar Labs victim of RansomHub ransomware group

RANSOMWARE
From: x.com  x.com  

Newly discovered ransomware group Safapay claimed responsibility for the attack on the British software company Microlise

RANSOMWARE
From: x.com  

Andorran educational technology company InThinking victim of DarkVault ransowmare group

RANSOMWARE
From: x.com  

Swiss company Privat Spitex victim of Qilin ransomware group

RANSOMWARE
From: postal.pt  

New MB Way Scam Targets Owners of Lost Pets

SOCIAL ENGINEERING
From: x.com  

Ceban Pharma Intranet Data Leak

DATA BREACH

INPS Servizi Ransomware Attack Highlights Cybersecurity Risks in Public Institutions

RANSOMWARE

Phishing Campaign Exploiting WeTransfer and cPanel

PHISHING

Fake CAPTCHA scams are growing very quickly in France

SOCIAL ENGINEERING
From: x.com  

CnFans Scrape 2024 Data Leak

DATA BREACH
From: x.com  

Qilin ransomware targets the company Groupe PPA- Mahe in France on November 20

RANSOMWARE
From: www.heise.de  

EUCLEAK Vulnerability: Yubikey Cloning Attack and TPM Recertification

SUPPLY CHAIN ATTACK
From: t.me  

OverFlame Targets TAURUS Systems Website

Denial of Service (DoS/DDoS)
From: x.com  

PBS Group Targeted by INC RANSOM Ransomware Attack

DATA BREACH
From: x.com  x.com  

Termite ransomware group claimed the attack against the Departement de La Reunion

RANSOMWARE
From: x.com  

Italian transport and logistics company Onnicar attacked by Paysafe ransomware group

RANSOMWARE
From: x.com  

Belgian healthcare company Euromedix hit by Safepay ransomware group

RANSOMWARE
From: x.com  

The Belgian training institute BusinessTraining victim of Safepay ransomware group

RANSOMWARE
From: x.com  

German construction company IB Spieth victim of Safepay ransomware group

RANSOMWARE

Germany, Finland warn of 'hybrid warfare' after sea cable cut

Unknown
From: x.com  x.com  

Europe experienced a 19% surge in cyber incidents in October 2024 with 946 attacks targeting critical sectors

WEB THREATS
From: t.me  

Austrian websites were targeted by NoName057 on November 20

Denial of Service (DoS/DDoS)
From: t.me  

Dark Strom Team claimed a DDoS attack against the website of Europort, the world port city of Rotterdam

Denial of Service (DoS/DDoS)
From: x.com  x.com  

German exporter of vehicle and construction machinery parts, Handelsgesellschaft Wulff & Co, hit by RansomHub ransomware group

RANSOMWARE

French supermarket Auchan has warned shoppers to be vigilant after the personal details of more than 500,000 customers were targeted in a cyber attack

DATA BREACH

Internal documents from the Austria Institute of Science and Technology (ISTA) have been leaked online

DATA BREACH
From: x.com  x.com  

German security equipment supplier REMBE GmbH Safety + Control was hit by BlackBasta ransomware group

RANSOMWARE
From: x.com  x.com  

German medical association Hartmannbund targeted by RansomHub ransomware group

RANSOMWARE
From: x.com  

Leading Italian manufacturer ISA hit by BlackBasta ransomware group

RANSOMWARE
From: x.com  

BlackBasta ransomware group claimed an attack on German manufacturer Rauch Streuer

RANSOMWARE
From: x.com  

Polar Aire Heating & Cooling Hit by RansomHub Ransomware Attack

RANSOMWARE
From: t.me  

NoName057 targeted a variety of sectors in Ukraine, from aerospace and maritime industries to energy, defense, and banking

Denial of Service (DoS/DDoS)
From: x.com  

Arabot Breach Claimed by Dark Vault

DATA BREACH

Ghost Tap: Cybercriminals Use NFC to Cash-Out Stolen Funds via Mobile Payment Services

FRAUD

Emerging XenoRAT Campaign via Excel XLL Files

Unknown
From: x.com  

Mobility Compare UK Database Leak

DATA BREACH
From: x.com  

RansomHub ransomware group targets the company City West Commercials in Great Britain

RANSOMWARE
From: x.com  

Bank of Egypt Data Breach Exposes Sensitive Records

DATA BREACH

Equinox Health Organization Hit by Ransomware Attack, Over 21K Clients Affected

RANSOMWARE

Ransomware Attack on Great Plains Regional Medical Center, Oklahoma

RANSOMWARE

China-Linked Liminal Panda Targets Telecoms in South Asia and Africa

Intrusion

Malicious Actors Exploit Misconfigured Jupyter Notebooks for Sports Piracy

DATA BREACH

Ngioweb Botnet's Disruption and Its Impact on NSOCKS Proxy Network

Botnets

Blacklock/ Eldorado ransomware group claimed an attack on the Spanish company Tiendas Carrion & Fernandez S.L.

RANSOMWARE

The district administration in Bergen auf Rugen has fallen victim to a hacker attack

RANSOMWARE
From: x.com  x.com  

Austrian-based acoustic solutions specialist Hutter Acustix fell victim of Akira ransomware group

RANSOMWARE
From: x.com  

Cybercriminals exploit Spotify for malware distribution

Malware
From: www.nu.nl  

Dutch Minister of Economic Affairs warns against apps from countries such as China and Russia

WEB THREATS

The threat actor near2tlg claimed to have breached medical information of approximately 2.250.000 individuals from Mediboard system used by French hospitals

DATA BREACH

Threat actor is allegedly selling citizen's data from France

DATA BREACH

Data of European and US citizens offered for sale on the dark web

DATA BREACH

Fake Bitwarden ads on Facebook spread malicious Chrome extension, targeting Facebook business accounts in Europe

Malware
From: t.me  

Alleged sale of Spotify access credentials

DATA BREACH
From: t.me  

RipperSec targets the website of Comid Srl

Denial of Service (DoS/DDoS)
From: t.me  

Pro-Palestine Hackers Offer Access to French Business Platform for Sale

Denial of Service (DoS/DDoS)
From: t.me  

Alec Blacher Website Hacked: Cybersecurity Breach in the Entertainment Industry

Denial of Service (DoS/DDoS)

Another French Hospital Data Breach Exposes 750,000 Records

DATA BREACH

French Hospital Data Breach Exposes 1.5 Million Patient Records

DATA BREACH
From: t.me  

Alleged Vulnerability leak of Ferratum

WEB THREATS
From: t.me  

NoName057 claimed to have targeted multiple websites in Spain on November 19

Denial of Service (DoS/DDoS)
From: t.me  

Alleged sale of checkout bypass method for GetYourGuide

DATA BREACH

A Threat Actor Has Allegedly Leaked the Data of Stauber GmbH Metalltechnologie

DATA BREACH

US space tech giant Maxar discloses employee data breach

DATA BREACH

US Government Agencies Impersonated in Aggressive DocuSign Phishing Scams

PHISHING

APT Group DONOT Launches Cyberattack on Pakistans Maritime and Defense Industry

Malware

Chinese state-sponsored hacking operation APT41 expands cyberespionage to target Windows

Intrusion
From: hackread.com  

Mozillas 0Din uncovers critical flaws in ChatGPTs sandbox, allowing Python code execution and access to internal configurations

Intrusion
From: threatmon.io  

Highly sophisticated and stealthy malware X-ZIGZAG RAT targets Windows systems

Malware

New Stealthy BabbleLoader Malware Spotted Delivering WhiteSnake and Meduza Stealers

Malware

New 'Helldown' Ransomware Variant Expands Attacks to VMware and Linux Systems

RANSOMWARE
From: x.com  

Russian Cyber Army claims to have targeted the website of Bilgorod-Dnistrovska City Council

Denial of Service (DoS/DDoS)
From: t.me  t.me  

Ukrainian websites were targeted by NoName057 on November 19

Denial of Service (DoS/DDoS)
From: t.me  

RipperSec claimed DDoS attacks against the websites of SodaStream Israel and H.Y. Group's LG monitors

Denial of Service (DoS/DDoS)
From: t.me  

Cyber Fattah Team claimed the defacement of the website of the Israeli Solar Energy Company

Intrusion
From: x.com  

Liquid Blood claimed to have targeted the website of Ukrainian TASCOMBANK

Denial of Service (DoS/DDoS)
From: x.com  

Cyber Army of Russia Reborn claimed to have targeted the website of First medical association of Lviv

Denial of Service (DoS/DDoS)
From: x.com  

Leading network of addiction treatment facilities in the United States hit by Rhysida ransomware group

RANSOMWARE
From: x.com  

Cyber Army of Russia Reborn claims to have targeted the website of MARTA (Mental Adaptation and Rehabilitation Tools and Analysis) in Ukraine

Denial of Service (DoS/DDoS)
From: x.com  

British wholesale company John Hornby Skewes & Co. Ltd. victim of RansomHub ransomware group

RANSOMWARE
From: x.com  

The Egyptian Tax Authority hit by Money Message ransomware group

RANSOMWARE

Fake letters on behalf of MeteoSwiss prompts download of Weather Warning App that disseminates malware

Malware
From: t.me  

OverFlame claimed to have targeted the website of Baltic News Network (BNN) in Latvia

Denial of Service (DoS/DDoS)

Vidar Malware Campaign Targets Italian PEC Accounts

Malware
From: www.incibe.es  

Website Impersonation and Fraudulent Activity Targeting a Business

PHISHING
From: t.me  

OverFlame targets the website of Telia Eesti in Estonia

Denial of Service (DoS/DDoS)
From: x.com  

Akira Ransomware Group Breaches Hager Group

DATA BREACH
From: x.com  

Stauberstahl Database Breach

DATA BREACH
From: t.me  

OverFlame Targets SHAPE Website on November 19

Denial of Service (DoS/DDoS)
From: x.com  

State Border Service of Ukraine allegedly targeted by Cyber Army of Russia Reborn

DOS/DDOS
From: t.me  

RipperSec claimed a DDoS attack against a portal of Edinburgh Napier University

DOS/DDOS
From: t.me  

NATO's Center for Defense Research and Security (CDR COE) allegedly victim of OverFlame group

DOS/DDOS
From: x.com  t.me  

OverFlame claimed a DDoS attack against the website of Belgium-based, NATO's Munitions Safety Information Analysis Center (MSIAC)

DOS/DDOS
From: x.com  

RAO doo Targeted by BASHE Ransomware

DATA BREACH
From: t.me  

RipperSec claimed to have targeted the website of Uniform company in France on November 21

Denial of Service (DoS/DDoS)

Alixsec group claimed DDoS attacks against the Austrian municipality of Gemeinde Molbling and OOVV Transport Association

Denial of Service (DoS/DDoS)
From: t.me  

The Ministry of Defence of Austria allegedly targeted by Dark Strom Team

Denial of Service (DoS/DDoS)
From: t.me  

Vienna Stock Exchange (Wiener Borse) was targeted by Alixsec group

Denial of Service (DoS/DDoS)