👁 socat @socat@nanao.cybtex.fr
Peek-a-boo! 👻 / Schrödinger 🐈
Inscrit·e en jan. 2021
Trickbot is one of the most prevalent modular banking trojans. Recently we have discovered a relatively new module that goes by the name masrv.
We believe this module is used as one of Trickbot's network reconnaissance tools to gather more information about the victim's network.
https://www.kryptoslogic.com/blog/2021/02/trickbot-masrv-module/
Les opérateurs derrière le ransomware DopplePaymer revendiquent des attaques contre :
- 🇺🇸 Westside Door, Inc. (
westsidedoor.com)
Specializing in doors, windows, mouldings, skylights & hardware since 1971.
- 🇺🇸 Westech Systems, Inc. (
westechsys.com)
Full service electrical contractor, with proven capabilities of integrating planning, design, construction & maintenance services.
- 🇺🇸 JB Martin (
jbmartin.com)
For 180 years JB Martin has been manufacturing the finest velvets in the world. Situated on over 300 acres, JB Martin's 220,000 square foot mill is a vertical integrated facility.
- 🇺🇸 Georgetown County, S.C. (
georgetowncountysc.org)
Official government page of Georgetown County, SC. Home to a wealth of history and culture, and some of the state's most beautiful beaches, marshes & rivers.
#USA #RANSOMWARE #DOPPLEPAYMER #DATABREACH #COUNTY #OFFICE #GOVERNMENT #TAX #DESIGN #CONSTRUCTION #BUILD #BUSINESS #SHOWROOM #PROJECT #SERVICES #PRODUCTS #TECHNOLOGY #INDUSTRY #TRUCKS #DELIVERY #SUPPORT #ELECTRICAL #DESIGN #PLANNING #CONSTRUCTION #MAINTENANCE #AMERICAN #MANUFACTURER #TEXTILE #PLANTS #EQUIPMENT #TECHNOLOGY #PRODUCTION #TECHNOLOGIES #SOLAR #BUILDING #INNOVATIVE #PERFORMANCE
Les opérateurs derrière le ransomware DopplePaymer diffusent un échantillon de données en lien avec :
- 🇺🇸 Midwest Express Co. (
midwestexpressco.com)
Midwest Express Co. was founded in 1983 in Des Moines, Iowa. The company is an Iowa corporation, with its corporate office located at 1660 Wall Street, Suite 400, Mount Prospect, IL 60056. Midwest Express Co. was formed to provide an expedited line-haul trucking service between Chicago, IL and Des Moines, IA. Since that time, we've expanded into several other marketplaces.
#USA #RANSOMWARE #DOPPLEPAYMER #DATABREACH #OFFICE #TRUCKS #TRUCKING #SERVICES #TRANSPORTATION #LOGISTICS #SUPPLY #SUPPORT #TRANSPORT #MAINTENANCE
Les opérateurs derrière le ransomware Revil revendiquent une attaque contre :
- 🇺🇸 E. & J. Gallo Winery (
gallo.com)
E. & J. Gallo Winery will remain a family-owned company that will be the leader in the U.S. wine industry and the leading provider of California wines in select markets around the world.
Et diffusent des échantillons de données relatives aux clients de :
- 🇫🇷 UCAR (
ucar.fr)
Chez UCAR, nous sommes les spécialistes de la location de véhicules de proximité. Avec nos 165 agences à marque Ucar Rent Smarter réparties sur tout le territoire français.
#FRANCE #USA #RANSOMWARE #REVIL #DATABREACH #COMMERCIAL #INDUSTRY #WINE #GDPR #CARS #SERVICES #RGPD #BUSINESS
We are treating an IT incident that has impacted a number of UKRI-related web assets as a cyber attack that has resulted in data being encrypted by a third party.
The two services impacted are a portal for our UK Research Office (UKRO) based in Brussels and an extranet (often known as the BBSRC extranet) used by our Councils.
Operators behind the Fonix ransomware have suspended their operations and released the decryption master key.
New Ransomware As A Service (RaaS) : Egalyty
Les opérateurs derrière le ransomware Babuk revendiquent une attaque contre :
- 🇬🇧 Serco Group plc (
serco.com)
Serco is a FTSE top 250 company managing over 500 contracts worldwide. Employing over 50,000 people, we operate internationally across four geographies: UK & Europe, North America, Asia Pacific and the Middle East & across five sectors: Defence, Justice & Immigration, Transport, Health and Citizen Services.
Le groupe est l'un des plus larges prestataire mondial de services publics. Actif auprès d'institutions internationales telles que l'Union Européenne ou l'OTAN et auprès de gouvernements dans plus de vingt pays spécialisé dans les prestations de services et de gestion des établissements et des infrastructures dans les domaines de la santé, des transports, de la justice, de l'immigration et de la défense.
#UK #RANSOMWARE #BABUK #DATABREACH #DEFENCE #TECHNOLOGIES #SERVICES #TRANSPORT #AVIATION #HEALTH #EDUCATION #JUSTICE #PRISONS #PATENTS #LEISURE #BORDER #SECURITY #WORK #PENSIONS #SCIENCES #INFRASTRUCTURE #MAINTENANCE #EMPLOYEES #CAREER
La plateforme open source OpenCTI permet de stocker, organiser, visualiser & partager des connaissances relatives aux menaces cyber.
🇫🇷 Les systèmes informatiques et téléphoniques de la ville de Houilles (ville-houilles.fr), commune du département des Yvelines, paralysés par une attaque informatique perpétrée le samedi 30 janvier 2021.
✝ Alice (Maria) Recoque, informaticienne française, décédée le 28 janvier 2021.
https://linuxfr.org/news/alice-recoque-pionniere-de-l-informatique-et-de-l-intelligence-artificielle
Les opérateurs derrière le ransomware Revil revendiquent une attaque contre :
- 🇺🇸 Weiland Trucking Co., Inc (
weilandlogistics.com)
Established in 1961. Family owned/operated trucking company with a Refrigerated warehouse and Logistics division. We have been proud haulers of some of Wisconsin's finest beers and cheeses along with many other commodities throughout Wisconsin & the Midwest.
Et précédement envers :
- 🇺🇸 Ghilotti Bros., Inc (
gbi1914.com)
GBI's expertise in commercial & residential infrastructure and site development projects allows us to self-perform an array of construction services.
105 years in business, 281 employees, 2,500 projects completed.
- 🇺🇸 Preferred Home Care (
preferredhcny.com)
Preferred Home Care of New York offers home health services to those in need in the New York City metropolitan area. 14 counties serviced across New York State, 250 on-site coordinators & case managers, 40,000 clients served.
nb: simple annonce - absence d'échantillon de données
#USA #RANSOMWARE #REVIL #DATABREACH #COMMERCIAL #INFRASTRUCTURE #PROJECTS #CONSTRUCTION #EQUIPMENT #SERVICES #DESIGN #BUILDING #COMMUNITY #RESIDENTIAL #PRODUCTS #INVESTMENT #INDUSTRIAL #BUSINESS #COMMERCIAL #COMPANY #EMPLOYEES #CAREER #REFRIGERATION #TRANSPORTATION #TRUCKING #LOGISTICS #TRUCK
Comme vous le savez, Emotet a été décapité.
Investigators have now taken control of its infrastructure in an international coordinated action. This operation is the result of a collaborative effort between authorities in the Netherlands, Germany, the United States, the United Kingdom, France, Lithuania, Canada & Ukraine, with international activity coordinated by Europol & Eurojust.
The U.S Justice Department today announced its participation in a multinational operation involving actions in the United States, Canada, France, Germany, the Netherlands, and the United Kingdom to disrupt and take down the infrastructure of the malware and botnet known as Emotet.
💢 Augmentation significative de tentatives d'exploitation suite aux diffusions ITW de codes fonctionnels pour CVE-2021-3156.
sudo apt-get update
sudo apt-get --only-upgrade install sudo
Les opérateurs derrière le ransomware RagnarLocker revendiquent une attaque contre :
- 🇺🇸 Cornerstone Building Brands (
cornerstonebuildingbrands.com)
As the largest manufacturer of exterior building products, we provide comprehensive residential and commercial building solutions, residential and repair & remodel markets for our customers nationwide.
#USA #RANSOMWARE #RAGNARLOCKER #DATABREACH #CONSTRUCTION #BUILDING #OFFICE #HOUSE #DESIGN #MARKET #PRODUCTS #RESIDENTIAL #COMMUNAUTY #MANUFACTURER #MANAGEMENT #INVESTMENT #INDUSTRIAL #INVESTORS #BUSINESS #COMMERCIAL #DIGITAL #WORKPLACE #URBAN #FACILITIES #EXTERIOR #ARCHITECTURAL #PROJECTS
🇪🇺 Europol Decryption Platform
A new decryption platform marks a milestone in the fight against organised crime and terrorism in Europe. In full respect of fundamental rights and without limiting or weakening encryption, this initiative will be available to national law enforcement authorities of all Member States to help keep societies and citizens safe & secure.
La plateforme, basée dans le nord de l'Italie, à Ispra n'est autre qu'un super-calculateur capable de casser des terminaux chiffrés inaccessibles aux enquêteurs.
💪 Le projet CERBERUS a été intialisé par le 🇫🇷 colonel Jean Dominique Nollet.
#EUROPE #FRANCE #CERBERUS #CYBER #THREATS #TERRORISM #IRCGN #TERRORISME #PJGN #RANSOMWARE #INFORMATIQUE #CLUSTER #EUROPOL #EC3 #CRYPTO #ITALIE #CRYPTOGRAPHIC
🇫🇷 Vous avez découvert une vulnérabilité / une faille de sécurité et vous souhaitez en faire part au gouvernement ?
Citoyens, signaler, c'est agir !
Vérifiez d'abord que la faille / vulnérabilité ne soit pas déjà connue et suffisamment sérieuse pour être notifiée par ce moyen. Ensuite, prenez le temps nécessaire afin de produire un rapport complet avec les détails techniques de l'exploitation.
https://www.ssi.gouv.fr/actualite/vous-souhaitez-declarer-une-faille-de-securite/
🇺🇸 The Department of Justice announced a coordinated international law enforcement action to disrupt a sophisticated form of ransomware known as NetWalker.
🇧🇬 Authorities in Bulgaria also seized a dark web hidden resource used by NetWalker ransomware affiliates to provide payment instructions & communicate with victims.
#USA #DOJ #FBI #DARKWEB #RANSOMWARE #BULGARIA #NETWALKER #JUSTICE #BULGARIE
Peek-a-boo! 👻 / Schrödinger 🐈
Inscrit·e en jan. 2021
👁 socat recommande :
