🏴‍☠️ Lockbit3 has just published a new victim: kumhotire.com
Kumho Tire (formerly known as Samyang Tire) is a South Korean tire manufacturer. Kumho Tire was previously operated as a business unit of the Kumho Asiana Group. Since 2018, it is a subsidiary of Chinese tire conglomerate Doublestar. Encrypted up...

by Ransomware live - https://r.zerozone.it/post/cAsszgKxsCZY2E1J1

🏴‍☠️ Dragonforce has just published a new victim: KGK Group
KGK - THE BEGINNING OF WORLDWIDE TRUST. The foundation for the worldwide trust that KGK Group enjoys today was laid more than a hundred years ago b...

by Ransomware live - https://r.zerozone.it/post/N1W4U6pQ7ce2mZyb0

🏴‍☠️ Dragonforce has just published a new victim: Zimmerman & Walsh
At Zimmerman & Walsh, LLP, we are dedicated to carrying on the legacy of founder Steven P. Zimmerman who passed away in 2015. Every day, we are proud to serve our fellow community members at an affordable rate as attorney Zimmerman did at his firm for 16 years. With unmatched [...]

by Ransomware live - https://r.zerozone.it/post/nQSFpFKxQmuQnk5fy

🏴‍☠️ Rhysida has just published a new victim: Shenango Area School District
Shenango Area School District The Shenango Area School District is located in southern Lawrence County, conveniently situated 45 miles north of Pittsburgh and 90 miles south of Erie. The district encompasses 25 square miles, which includes both Shenango Township and South New Castle Borough. More

by Ransomware live - https://r.zerozone.it/post/h4VEr6zv5sDZ8Ar5J

🏴‍☠️ Cloak has just published a new victim: Ful************.com
Country: USA

by Ransomware live - https://r.zerozone.it/post/mEaCswgCsdv10RHnh

🏴‍☠️ Cloak has just published a new victim: Te***************.net
Country: italy

by Ransomware live - https://r.zerozone.it/post/ReWDxuQnrRUJGgvzD

🏴‍☠️ Lockbit3 has just published a new victim: chcm.us
Greetings! Today we are posting here the new company, "College Hospital Costa Mesa". Company Denoscription: College Hospital Costa Mesa is a facility specializing in psychiatric and medical/surgical services as well as outpatient telehealth, and...

by Ransomware live - https://r.zerozone.it/post/5MeajS5ahwQhekcuP

🏴‍☠️ Play has just published a new victim: Mile Hi Foods
United States

by Ransomware live - https://r.zerozone.it/post/FzpmdEPg71yAcF465

🏴‍☠️ Ransomhub has just published a new victim: www.naniwa-pump.co.jp
Naniwa Pump Mfg. Co., Ltd. is a Japanese company specializing in the manufacturing of high-quality pumps. Established in 1947, the company offers a wide range of pumping solutions, including centrifugal, vacuum, and submersible pumps, designed for various industrial applications. Naniwa Pump is known for its innovation, reliability, and commitment to [...]

by Ransomware live - https://r.zerozone.it/post/77kpyh4mkpcZ2vAxw

🏴‍☠️ Ransomhub has just published a new victim: www.tokiwa-group.co.jp
Tokiwa Group is a Japanese company that specializes in the production and distribution of cosmetics. Established in 1948, the company is renowned for its innovation in cosmetic packaging, formulations, and applicators. With a strong focus on quality and customer satisfaction, Tokiwa Group collaborates with various global beauty brands to deliver [...]

by Ransomware live - https://r.zerozone.it/post/0cYh44G3EUsWQfnrV

🏴‍☠️ Ransomhub has just published a new victim: www.careco.se
Careco is a Swedish company specializing in assistive technology and mobility solutions. They provide a wide range of products designed to enhance the quality of life for individuals with mobility challenges. Their offerings include wheelchairs, scooters, and various home aids. Careco focuses on innovation, quality, and customer service to ensure [...]

by Ransomware live - https://r.zerozone.it/post/usjZMqsvC3U5Y5dD2

🏴‍☠️ Ransomhub has just published a new victim: www.vbrlogistica.com.br
VBR Logística is a Brazilian company specializing in comprehensive logistics solutions. They offer a wide range of services including transportation, warehousing, inventory management, and distribution. Known for their reliability and efficiency, VBR Logística leverages advanced technology and a skilled workforce to optimize supply chain operations and meet diverse client needs [...]

by Ransomware live - https://r.zerozone.it/post/C8wsRP5d1VRk6kGqQ

🏴‍☠️ Ransomhub has just published a new victim: www.law-taxes.pl
www.law-taxes.pl is a professional firm based in Poland, offering specialized services in legal and tax advisory. The company assists both individuals and businesses with a wide range of legal matters, tax planning, and compliance issues. Their team of experienced lawyers and tax advisors is dedicated to providing personalized solutions to [...]

by Ransomware live - https://r.zerozone.it/post/C2gGxAXtMdewnyH6T

CISA - Protect and mitigating Active Directory compromised

🏴‍☠️ Medusa has just published a new victim: Xtera Communications
Xtera Communications (founded in 1951) is an provider of sub-sea telecoms solutions and carries an extensive portfolio of intellectual property. The company supplies both un-repeatered and repeatered systems, using its high performance optical amplifiers to deliver traffic directly inland to cities. Xtera Communications corporate office is located in Bates House [...]

by Ransomware live - https://r.zerozone.it/post/6M8rjnTNA3220Y1dC

cups-browsed 打印机发现服务 远程代码执行漏洞（CVE-2024-47176、CVE-2024-47076、CVE-2024-47175、CVE-2024-47177）
cups-browsed 打印机发现服务 远程代码执行漏洞（CVE-2024-47176、CVE-2024-47076、CVE-2024-47175、CVE-2024-47177）

by SeeBug - https://r.zerozone.it/post/S2632xpKZ36CQkgYh

🏴‍☠️ Cactus has just published a new victim: actionfirepros.com
Commercial & Residential Construction “We pride ourselves on our thoroughness and our follow through. We are there until the job is done to the customer's satisfaction. We keep our promises. We are accountable for our work and our word. Our integrity is unwavering and we follow the rules. When [...]

by Ransomware live - https://r.zerozone.it/post/f7Hg9yFgF33UYV9wy

🏴‍☠️ Eldorado has just published a new victim: gccustommetal.com
G&C Custom Metal Fabricators specializes in bespoke metalwork solutions, offering services such as laser cutting, welding, and precision fabrication. Catering to various industries, the company prides itself on high-quality craftsmanship and innovative design. With a focus on customer satisfaction, they deliver custom metal products tailored to meet specific project needs [...]

by Ransomware live - https://r.zerozone.it/post/KNeNJj3mdBWCYDpy6

Vulnerabilità in PHP
(AL03/240927/CSIRT-ITA)
Rilevata una vulnerabilità con gravità “alta” in PHP, noto interprete del linguaggio di noscripting. Tale vulnerabilità, qualora sfruttata, potrebbe consentire l’esecuzione di codice arbitrario sui sistemi target.

by CSIRT - https://r.zerozone.it/post/XRmrnuEnU2dbFASTU

OpenPrinting: rilevata vulnerabilità in CUPS
(AL01/240927/CSIRT-ITA)
Rilevate 4 vulnerabilità di sicurezza in OpenPrinting Common Unix Printing System (CUPS), sistema di gestione della stampa open source integrato nei sistemi operativi Unix-like. Tali vulnerabilità, qualora sfruttate congiuntamente, potrebbero consentire l’esecuzione di comandi arbitrari da remoto sui sistemi interessati.

by CSIRT - https://r.zerozone.it/post/fDva0QdEVweaHgxyv

Sintesi riepilogativa delle campagne malevole nella settimana del 21 – 27 settembre
In questa settimana, il CERT-AGID ha riscontrato ed analizzato, nello scenario italiano di suo riferimento un totale di 39 campagne malevole, di cui 20 con obiettivi italiani e 19 generiche che hanno comunque interessato l’Italia, mettendo a disposizione dei suoi enti accreditati i relativi 475 indicatori di compromissione (IoC) individuati.

by CERT-AgID - https://r.zerozone.it/post/UdeYd7P3uQP0M2vzz