🏴‍☠️ Ransomhub has just published a new victim: www.tokiwa-group.co.jp
Tokiwa Group is a Japanese company that specializes in the production and distribution of cosmetics. Established in 1948, the company is renowned for its innovation in cosmetic packaging, formulations, and applicators. With a strong focus on quality and customer satisfaction, Tokiwa Group collaborates with various global beauty brands to deliver [...]

by Ransomware live - https://r.zerozone.it/post/0cYh44G3EUsWQfnrV

🏴‍☠️ Ransomhub has just published a new victim: www.careco.se
Careco is a Swedish company specializing in assistive technology and mobility solutions. They provide a wide range of products designed to enhance the quality of life for individuals with mobility challenges. Their offerings include wheelchairs, scooters, and various home aids. Careco focuses on innovation, quality, and customer service to ensure [...]

by Ransomware live - https://r.zerozone.it/post/usjZMqsvC3U5Y5dD2

🏴‍☠️ Ransomhub has just published a new victim: www.vbrlogistica.com.br
VBR Logística is a Brazilian company specializing in comprehensive logistics solutions. They offer a wide range of services including transportation, warehousing, inventory management, and distribution. Known for their reliability and efficiency, VBR Logística leverages advanced technology and a skilled workforce to optimize supply chain operations and meet diverse client needs [...]

by Ransomware live - https://r.zerozone.it/post/C8wsRP5d1VRk6kGqQ

🏴‍☠️ Ransomhub has just published a new victim: www.law-taxes.pl
www.law-taxes.pl is a professional firm based in Poland, offering specialized services in legal and tax advisory. The company assists both individuals and businesses with a wide range of legal matters, tax planning, and compliance issues. Their team of experienced lawyers and tax advisors is dedicated to providing personalized solutions to [...]

by Ransomware live - https://r.zerozone.it/post/C2gGxAXtMdewnyH6T

CISA - Protect and mitigating Active Directory compromised

🏴‍☠️ Medusa has just published a new victim: Xtera Communications
Xtera Communications (founded in 1951) is an provider of sub-sea telecoms solutions and carries an extensive portfolio of intellectual property. The company supplies both un-repeatered and repeatered systems, using its high performance optical amplifiers to deliver traffic directly inland to cities. Xtera Communications corporate office is located in Bates House [...]

by Ransomware live - https://r.zerozone.it/post/6M8rjnTNA3220Y1dC

cups-browsed 打印机发现服务 远程代码执行漏洞（CVE-2024-47176、CVE-2024-47076、CVE-2024-47175、CVE-2024-47177）
cups-browsed 打印机发现服务 远程代码执行漏洞（CVE-2024-47176、CVE-2024-47076、CVE-2024-47175、CVE-2024-47177）

by SeeBug - https://r.zerozone.it/post/S2632xpKZ36CQkgYh

🏴‍☠️ Cactus has just published a new victim: actionfirepros.com
Commercial & Residential Construction “We pride ourselves on our thoroughness and our follow through. We are there until the job is done to the customer's satisfaction. We keep our promises. We are accountable for our work and our word. Our integrity is unwavering and we follow the rules. When [...]

by Ransomware live - https://r.zerozone.it/post/f7Hg9yFgF33UYV9wy

🏴‍☠️ Eldorado has just published a new victim: gccustommetal.com
G&C Custom Metal Fabricators specializes in bespoke metalwork solutions, offering services such as laser cutting, welding, and precision fabrication. Catering to various industries, the company prides itself on high-quality craftsmanship and innovative design. With a focus on customer satisfaction, they deliver custom metal products tailored to meet specific project needs [...]

by Ransomware live - https://r.zerozone.it/post/KNeNJj3mdBWCYDpy6

Vulnerabilità in PHP
(AL03/240927/CSIRT-ITA)
Rilevata una vulnerabilità con gravità “alta” in PHP, noto interprete del linguaggio di noscripting. Tale vulnerabilità, qualora sfruttata, potrebbe consentire l’esecuzione di codice arbitrario sui sistemi target.

by CSIRT - https://r.zerozone.it/post/XRmrnuEnU2dbFASTU

OpenPrinting: rilevata vulnerabilità in CUPS
(AL01/240927/CSIRT-ITA)
Rilevate 4 vulnerabilità di sicurezza in OpenPrinting Common Unix Printing System (CUPS), sistema di gestione della stampa open source integrato nei sistemi operativi Unix-like. Tali vulnerabilità, qualora sfruttate congiuntamente, potrebbero consentire l’esecuzione di comandi arbitrari da remoto sui sistemi interessati.

by CSIRT - https://r.zerozone.it/post/fDva0QdEVweaHgxyv

Sintesi riepilogativa delle campagne malevole nella settimana del 21 – 27 settembre
In questa settimana, il CERT-AGID ha riscontrato ed analizzato, nello scenario italiano di suo riferimento un totale di 39 campagne malevole, di cui 20 con obiettivi italiani e 19 generiche che hanno comunque interessato l’Italia, mettendo a disposizione dei suoi enti accreditati i relativi 475 indicatori di compromissione (IoC) individuati.

by CERT-AgID - https://r.zerozone.it/post/UdeYd7P3uQP0M2vzz

Aggiornamento di sicurezza per prodotti Synology
(AL02/240927/CSIRT-ITA)
Aggiornamenti di sicurezza sanano 6 vulnerabilità, di cui due con gravità “alta”, presenti nel prodotto Synology Drive Client.

by CSIRT - https://r.zerozone.it/post/XuuffGcaz3AKbB0se

🏴‍☠️ Killsec has just published a new victim: infina.vn
Infina is a trusted investment and savings application used by over 1,000,000 users. Our platform enables users to invest easily, safely, and effectively with minimal capital.

by Ransomware live - https://r.zerozone.it/post/9n6ZUTBhuTk3N8ZHu

🏴‍☠️ Incransom has just published a new victim: Direct Access Partners
Direct Access Partners was a financial services firm that specialized in providing brokerage and investment advisory services. The company offered institutional clients access to global markets, trade execution, and research services. It was known for its expertise in emerging markets and fixed-income trading. However, it faced legal issues and regulatory [...]

by Ransomware live - https://r.zerozone.it/post/XkZAmQuPsp0dmSd7U

🏴‍☠️ Ciphbit has just published a new victim: Southern Fire Sprinkler
Southern Fire Sprinkler is a specialized company dedicated to the design, installation, and maintenance of fire sprinkler systems. They offer comprehensive fire protection solutions for both residential and commercial properties, ensuring compliance with safety regulations. With a team of experienced professionals, they focus on high-quality service, reliability, and customer satisfaction [...]

by Ransomware live - https://r.zerozone.it/post/BEm6Z5CpMNZvkeN2n

🏴‍☠️ Ransomhub has just published a new victim: PipelBiz.com
PipelBiz.com is a crowdfunding platform focused on equity-based investments. It enables startups and small businesses to raise capital by connecting with potential investors. Entrepreneurs can present their business ideas and growth plans, while investors can diversify their portfolios by investing in innovative ventures. The platform ensures compliance with regulatory standards [...]

by Ransomware live - https://r.zerozone.it/post/cPRqh8rgFAaGMk5Pn

🏴‍☠️ Ransomhub has just published a new victim: www.contegritygroup.com
Contegrity Group, Inc. specializes in professional development and organizational consulting. They focus on enhancing leadership capabilities and fostering effective teamwork within organizations. Their services include workshops, coaching, and tailored consulting engagements aimed at improving communication, productivity, and overall organizational health.

by Ransomware live - https://r.zerozone.it/post/nXyHHHFkPAm83Px3x

🏴‍☠️ Ransomhub has just published a new victim: rockymountaingastro.com
Rocky Mountain Gastroenterology is a healthcare provider specializing in the diagnosis and treatment of gastrointestinal disorders. They offer a range of services including endoscopy, colonoscopy, and liver disease management. The practice is committed to patient-centered care, utilizing advanced technology and a team of experienced gastroenterologists to ensure high-quality medical treatment.

by Ransomware live - https://r.zerozone.it/post/CAhjurqbp5ZAFwY5Y

🏴‍☠️ Ransomhub has just published a new victim: appweb.usinacoruripe.com.br
The company "appweb.usinacoruripe.com.br" is associated with Usina Coruripe, a major player in the Brazilian sugar and ethanol industry. Usina Coruripe specializes in the cultivation, processing, and marketing of sugarcane products, including sugar, ethanol, and bioenergy. The company is known for its commitment to sustainability and innovation in the agribusiness sector.

by Ransomware live - https://r.zerozone.it/post/XhXnDt99n3GhhWBCV