🏴‍☠️ Cloak has just published a new victim: Ful************.com
Country: USA

by Ransomware live - https://r.zerozone.it/post/mEaCswgCsdv10RHnh

🏴‍☠️ Cloak has just published a new victim: Te***************.net
Country: italy

by Ransomware live - https://r.zerozone.it/post/ReWDxuQnrRUJGgvzD

🏴‍☠️ Lockbit3 has just published a new victim: chcm.us
Greetings! Today we are posting here the new company, "College Hospital Costa Mesa". Company Denoscription: College Hospital Costa Mesa is a facility specializing in psychiatric and medical/surgical services as well as outpatient telehealth, and...

by Ransomware live - https://r.zerozone.it/post/5MeajS5ahwQhekcuP

🏴‍☠️ Play has just published a new victim: Mile Hi Foods
United States

by Ransomware live - https://r.zerozone.it/post/FzpmdEPg71yAcF465

🏴‍☠️ Ransomhub has just published a new victim: www.naniwa-pump.co.jp
Naniwa Pump Mfg. Co., Ltd. is a Japanese company specializing in the manufacturing of high-quality pumps. Established in 1947, the company offers a wide range of pumping solutions, including centrifugal, vacuum, and submersible pumps, designed for various industrial applications. Naniwa Pump is known for its innovation, reliability, and commitment to [...]

by Ransomware live - https://r.zerozone.it/post/77kpyh4mkpcZ2vAxw

🏴‍☠️ Ransomhub has just published a new victim: www.tokiwa-group.co.jp
Tokiwa Group is a Japanese company that specializes in the production and distribution of cosmetics. Established in 1948, the company is renowned for its innovation in cosmetic packaging, formulations, and applicators. With a strong focus on quality and customer satisfaction, Tokiwa Group collaborates with various global beauty brands to deliver [...]

by Ransomware live - https://r.zerozone.it/post/0cYh44G3EUsWQfnrV

🏴‍☠️ Ransomhub has just published a new victim: www.careco.se
Careco is a Swedish company specializing in assistive technology and mobility solutions. They provide a wide range of products designed to enhance the quality of life for individuals with mobility challenges. Their offerings include wheelchairs, scooters, and various home aids. Careco focuses on innovation, quality, and customer service to ensure [...]

by Ransomware live - https://r.zerozone.it/post/usjZMqsvC3U5Y5dD2

🏴‍☠️ Ransomhub has just published a new victim: www.vbrlogistica.com.br
VBR Logística is a Brazilian company specializing in comprehensive logistics solutions. They offer a wide range of services including transportation, warehousing, inventory management, and distribution. Known for their reliability and efficiency, VBR Logística leverages advanced technology and a skilled workforce to optimize supply chain operations and meet diverse client needs [...]

by Ransomware live - https://r.zerozone.it/post/C8wsRP5d1VRk6kGqQ

🏴‍☠️ Ransomhub has just published a new victim: www.law-taxes.pl
www.law-taxes.pl is a professional firm based in Poland, offering specialized services in legal and tax advisory. The company assists both individuals and businesses with a wide range of legal matters, tax planning, and compliance issues. Their team of experienced lawyers and tax advisors is dedicated to providing personalized solutions to [...]

by Ransomware live - https://r.zerozone.it/post/C2gGxAXtMdewnyH6T

CISA - Protect and mitigating Active Directory compromised

🏴‍☠️ Medusa has just published a new victim: Xtera Communications
Xtera Communications (founded in 1951) is an provider of sub-sea telecoms solutions and carries an extensive portfolio of intellectual property. The company supplies both un-repeatered and repeatered systems, using its high performance optical amplifiers to deliver traffic directly inland to cities. Xtera Communications corporate office is located in Bates House [...]

by Ransomware live - https://r.zerozone.it/post/6M8rjnTNA3220Y1dC

cups-browsed 打印机发现服务 远程代码执行漏洞（CVE-2024-47176、CVE-2024-47076、CVE-2024-47175、CVE-2024-47177）
cups-browsed 打印机发现服务 远程代码执行漏洞（CVE-2024-47176、CVE-2024-47076、CVE-2024-47175、CVE-2024-47177）

by SeeBug - https://r.zerozone.it/post/S2632xpKZ36CQkgYh

🏴‍☠️ Cactus has just published a new victim: actionfirepros.com
Commercial & Residential Construction “We pride ourselves on our thoroughness and our follow through. We are there until the job is done to the customer's satisfaction. We keep our promises. We are accountable for our work and our word. Our integrity is unwavering and we follow the rules. When [...]

by Ransomware live - https://r.zerozone.it/post/f7Hg9yFgF33UYV9wy

🏴‍☠️ Eldorado has just published a new victim: gccustommetal.com
G&C Custom Metal Fabricators specializes in bespoke metalwork solutions, offering services such as laser cutting, welding, and precision fabrication. Catering to various industries, the company prides itself on high-quality craftsmanship and innovative design. With a focus on customer satisfaction, they deliver custom metal products tailored to meet specific project needs [...]

by Ransomware live - https://r.zerozone.it/post/KNeNJj3mdBWCYDpy6

Vulnerabilità in PHP
(AL03/240927/CSIRT-ITA)
Rilevata una vulnerabilità con gravità “alta” in PHP, noto interprete del linguaggio di noscripting. Tale vulnerabilità, qualora sfruttata, potrebbe consentire l’esecuzione di codice arbitrario sui sistemi target.

by CSIRT - https://r.zerozone.it/post/XRmrnuEnU2dbFASTU

OpenPrinting: rilevata vulnerabilità in CUPS
(AL01/240927/CSIRT-ITA)
Rilevate 4 vulnerabilità di sicurezza in OpenPrinting Common Unix Printing System (CUPS), sistema di gestione della stampa open source integrato nei sistemi operativi Unix-like. Tali vulnerabilità, qualora sfruttate congiuntamente, potrebbero consentire l’esecuzione di comandi arbitrari da remoto sui sistemi interessati.

by CSIRT - https://r.zerozone.it/post/fDva0QdEVweaHgxyv

Sintesi riepilogativa delle campagne malevole nella settimana del 21 – 27 settembre
In questa settimana, il CERT-AGID ha riscontrato ed analizzato, nello scenario italiano di suo riferimento un totale di 39 campagne malevole, di cui 20 con obiettivi italiani e 19 generiche che hanno comunque interessato l’Italia, mettendo a disposizione dei suoi enti accreditati i relativi 475 indicatori di compromissione (IoC) individuati.

by CERT-AgID - https://r.zerozone.it/post/UdeYd7P3uQP0M2vzz

Aggiornamento di sicurezza per prodotti Synology
(AL02/240927/CSIRT-ITA)
Aggiornamenti di sicurezza sanano 6 vulnerabilità, di cui due con gravità “alta”, presenti nel prodotto Synology Drive Client.

by CSIRT - https://r.zerozone.it/post/XuuffGcaz3AKbB0se

🏴‍☠️ Killsec has just published a new victim: infina.vn
Infina is a trusted investment and savings application used by over 1,000,000 users. Our platform enables users to invest easily, safely, and effectively with minimal capital.

by Ransomware live - https://r.zerozone.it/post/9n6ZUTBhuTk3N8ZHu

🏴‍☠️ Incransom has just published a new victim: Direct Access Partners
Direct Access Partners was a financial services firm that specialized in providing brokerage and investment advisory services. The company offered institutional clients access to global markets, trade execution, and research services. It was known for its expertise in emerging markets and fixed-income trading. However, it faced legal issues and regulatory [...]

by Ransomware live - https://r.zerozone.it/post/XkZAmQuPsp0dmSd7U