March 23, 2023

The City of Toronto confirm unauthorized access following Clop’s claims

This week has seen the City of Toronto added to Clop’s TOR data leak site following the ongoing GoAnywhere attack spree. The City of Toronto has claimed that they became aware of potential unauthorized access to City data On Monday 20th of March 2023. However, the City of Toronto has confirmed that unauthorized access to City data did occur through […]
March 21, 2023

Saks Fifth Avenue confirms cyber security incident concerning Clop ransomware gang’s claims

On Monday 20th of March 2023, the Clop ransomware gang claimed to have attacked Saks Fifth Avenue on its dark web leak site. It is believed that the incident is a part of the gang’s ongoing attacks against vulnerable GoAnywhere MFT servers using the CVE-2023-0669 vulnerability. Since the post was released, sources have contacted Saks and a spokesperson confirmed the […]
March 17, 2023

Hitachi Energy confirms data breach after CL0P’s wave of GoAnywhere attacks

On Friday 17th of March 2023, Hitachi Energy, a department of Japanese engineering and technology giant Hitachi confirmed it suffered a data breach after the Clop ransomware gang stole data using a zero-day vulnerability (CVE-2023-0669) in the Fortra GoAnywhere MFT (Managed File Transfer), that was first disclosed on February 2023. “We recently learned that a third-party software provider called FORTRA […]
March 13, 2023

HACLA housing authority discloses data breach after LockBit ransomware attack

Recently, the Housing Authority of the City of Los Angeles (HACLA) released a data breach notice following the LockBit ransomware gang listing HACLA on their Tor leak site. The data breach revealed that on Saturday 31st of December 2022, HACLA discovered that computer systems on its network had been encrypted which resulted in them being forced to shut down all […]
March 8, 2023

Medusa ransomware gang releases video of data stolen from Minneapolis Public Schools district

On Tuesday 7th of March 2023, the Medusa ransomware gang listed the Minneapolis Public Schools district as a victim on its Tor data leak site, threatening to publish all data it allegedly stole from the public school district by Friday the 17th of March 2023. The ransomware gang has demanded a payment of $1 million for the deletion of all data […]
March 7, 2023

Hospital Clínic de Barcelona heavily impacted by a ransomware attack

On Sunday 5th of March 2023, the Hospital Clínic de Barcelona suffered a ransomware attack that resulted in severe disruptions to its healthcare services after the organisation’s virtual machines were targeted by the attack. Following a statement issued by the Government of Catalonia, the Hospital Clínic de Barcelona suffered an attack by the RansomHouse ransomware operation. The statement also revealed […]
March 2, 2023

FBI releases joint advisory alert against the Royal ransomware gang

On Thursday 2nd of March 2023, the United States Federal Bureau of Investigation (FBI) released a joint TLP:WHITE cybersecurity advisory which revealed threat actors have been using the Royal ransomware since September 2022 where they have targeted numerous critical infrastructure sectors including, but not limited to, Manufacturing, Communications, Healthcare and Public Healthcare (HPH), and Education. It is believed that the […]